Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves 29 vulnerabilities can now be installed.. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:3089-1 Release Date: 2026-07-17T01:35:33Z Rating: important References: * bsc#1264097 * bsc#1264145 * bsc#1265421 * bsc#1267381 * bsc#1267531 * bsc#1267567 * bsc#1267635 * bsc#1267684 * bsc#1267722 * bsc#1267918 * bsc#1267993 * bsc#1268022 * bsc#1268660 * bsc#1269022 * bsc#1269033 * bsc#1269036 * bsc#1269090 * bsc#1269100 * bsc#1269159 * bsc#1269184 * bsc#1269193 * bsc#1269195 * bsc#1269310 * bsc#1269398 * bsc#1269574 * bsc#1269678 * bsc#1269681 * bsc#1269821 * bsc#1270059 Cross-References: * CVE-2026-31771 * CVE-2026-43038 * CVE-2026-46090 * CVE-2026-46173 * CVE-2026-46197 * CVE-2026-46229 * CVE-2026-46253 * CVE-2026-46266 * CVE-2026-46274 * CVE-2026-46319 * CVE-2026-46320 * CVE-2026-46331 * CVE-2026-52909 * CVE-2026-52918 * CVE-2026-52923 * CVE-2026-52924 * CVE-2026-52943 * CVE-2026-52955 * CVE-2026-52969 * CVE-2026-52972 * CVE-2026-52993 * CVE-2026-53016 * CVE-2026-53041 * CVE-2026-53053 * CVE-2026-53071 * CVE-2026-53072 * CVE-2026-53133 * CVE-2026-53253 * CVE-2026-53359 CVSS scores: * CVE-2026-31771 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31771 ( SUSE ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31771 ( NVD ): 8.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-43038 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-43038 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43038 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-46090 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46090 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46090 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46173 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46173 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46173 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46197 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46197 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46197 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46229 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46229 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-46229 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46253 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46253 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46266 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46266 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-46274 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46274 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46319 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46319 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46320 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-46320 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-46320 ( NVD ): 7.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H * CVE-2026-46331 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46331 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46331 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52909 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-52909 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H *CVE-2026-52909 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52918 ( SUSE ): 8.6 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-52918 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52918 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52923 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-52923 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52923 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52923 ( NVD ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-52924 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-52924 ( SUSE ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-52924 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52924 ( NVD ): 7.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-52943 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-52943 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52943 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52943 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52955 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-52955 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52955 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-52969 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52969 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52969 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52972 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-52972 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52972 ( NVD ): 7.0CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52972 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-52993 ( SUSE ): 9.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-52993 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52993 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-52993 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53016 ( SUSE ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-53016 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53016 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53041 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-53041 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-53053 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-53053 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53053 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-53071 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53071 ( NVD ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53071 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53072 ( SUSE ): 7.5 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53072 ( NVD ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53133 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-53133 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53133 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-53253 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-53253 ( NVD ): 7.1 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-53359 ( SUSE ): 9.3 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-53359 ( SUSE): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 29 vulnerabilities can now be installed. ## Description: The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2026-31771: Bluetooth: Ignore HCI_ERROR_CANCELLED_BY_HOST on adv set terminated event (bsc#1264145). * CVE-2026-43038: ipv6: icmp: clear skb2-> cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). * CVE-2026-46090: ALSA: aloop: Fix peer runtime UAF during format-change stop (bsc#1267531). * CVE-2026-46173: exit: prevent preemption of oopsing TASK_DEAD task (bsc#1267722). * CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). * CVE-2026-46229: drm/amdkfd: Clear VRAM on allocation to prevent stale data exposure (bsc#1267567). * CVE-2026-46253: pstore/ram: fix buffer overflow in persistent_ram_save_old() (bsc#1267635). * CVE-2026-46266: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP (bsc#1267684). * CVE-2026-46319: net/sched: act_ct: Only release RCU read lock after ct_ft (bsc#1268022). * CVE-2026-46320: tap: free page on error paths in tap_get_user_xdp() (bsc#1267993). * CVE-2026-46331: net/sched: fix pedit partial COW leading to page cache (bsc#1265421). * CVE-2026-52909: ip6_vti: set netns_immutable on the fallback device (bsc#1268660). * CVE-2026-52918: Bluetooth: serialize accept_q access (bsc#1269100). * CVE-2026-52923:ipc: limit next_id allocation to the valid ID range (bsc#1269033). * CVE-2026-52924: sctp: purge outqueue on stale COOKIE-ECHO handling (bsc#1269036). * CVE-2026-52943: net: skbuff: fix missing zerocopy reference in pskb_carve helpers (bsc#1269022). * CVE-2026-52955: libceph: Fix potential out-of-bounds access in crush_decode() (bsc#1269159). * CVE-2026-52969: KVM: Reject wrapped offset in kvm_reset_dirty_gfn() (bsc#1269184). * CVE-2026-52972: crypto: af_alg - Cap AEAD AD length to 0x80000000 (bsc#1269195). * CVE-2026-52993: tipc: fix double-free in tipc_buf_append() (bsc#1269193). * CVE-2026-53016: crypto: ccp - copy IV using skcipher ivsize (bsc#1269090). * CVE-2026-53041: ocfs2: fix listxattr handling when the buffer is full (bsc#1269398). * CVE-2026-53053: iommu/amd: Fix clone_alias() to use the original device's devid (bsc#1269310). * CVE-2026-53071: Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (bsc#1269678). * CVE-2026-53072: Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (bsc#1269681). * CVE-2026-53133: RDMA/umem: Fix truncation for block sizes > = 4G (bsc#1269821). * CVE-2026-53253: Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (bsc#1269574). * CVE-2026-53359: KVM: x86: Fix shadow paging use-after-free due to unexpected role (bsc#1270059). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-3089=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-3089=1 * SUSE Linux Enterprise Server 15 SP5LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-3089=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-3089=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-3089=1 * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-3089=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-3089=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * kernel-obs-build-debugsource-5.14.21-150500.55.177.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * ocfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-obs-build-5.14.21-150500.55.177.1 * kernel-default-devel-5.14.21-150500.55.177.1 * reiserfs-kmp-default-5.14.21-150500.55.177.1 * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.177.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.177.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.177.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.177.1 * cluster-md-kmp-default-5.14.21-150500.55.177.1 * kernel-default-base-5.14.21-150500.55.177.1.150500.6.83.2 * dlm-kmp-default-5.14.21-150500.55.177.1 * kernel-syms-5.14.21-150500.55.177.1 * kernel-default-debuginfo-5.14.21-150500.55.177.1 * gfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-default-debugsource-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * kernel-macros-5.14.21-150500.55.177.1 * kernel-devel-5.14.21-150500.55.177.1 * kernel-source-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (nosrc ppc64le x86_64) * kernel-default-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.177.1 * SUSE Linux EnterpriseServer 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * kernel-obs-build-debugsource-5.14.21-150500.55.177.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-obs-build-5.14.21-150500.55.177.1 * ocfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-default-devel-5.14.21-150500.55.177.1 * reiserfs-kmp-default-5.14.21-150500.55.177.1 * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.177.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.177.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.177.1 * cluster-md-kmp-default-5.14.21-150500.55.177.1 * kernel-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.177.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * dlm-kmp-default-5.14.21-150500.55.177.1 * kernel-syms-5.14.21-150500.55.177.1 * gfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-default-debugsource-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch nosrc) * kernel-docs-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * kernel-macros-5.14.21-150500.55.177.1 * kernel-devel-5.14.21-150500.55.177.1 * kernel-source-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64) * kernel-64kb-debuginfo-5.14.21-150500.55.177.1 * kernel-64kb-debugsource-5.14.21-150500.55.177.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.177.1 * kernel-64kb-devel-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150500.55.177.1.150500.6.83.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (s390x) * kernel-zfcpdump-debugsource-5.14.21-150500.55.177.1 *kernel-zfcpdump-debuginfo-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (nosrc s390x) * kernel-zfcpdump-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * kernel-macros-5.14.21-150500.55.177.1 * kernel-devel-5.14.21-150500.55.177.1 * kernel-source-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * kernel-syms-5.14.21-150500.55.177.1 * kernel-obs-build-debugsource-5.14.21-150500.55.177.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * ocfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-obs-build-5.14.21-150500.55.177.1 * kernel-default-devel-5.14.21-150500.55.177.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.177.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.177.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.177.1 * cluster-md-kmp-default-5.14.21-150500.55.177.1 * kernel-default-base-5.14.21-150500.55.177.1.150500.6.83.2 * dlm-kmp-default-5.14.21-150500.55.177.1 * kernel-default-debuginfo-5.14.21-150500.55.177.1 * gfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-default-debugsource-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64) * kernel-64kb-debuginfo-5.14.21-150500.55.177.1 * kernel-64kb-debugsource-5.14.21-150500.55.177.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.177.1 * kernel-64kb-devel-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Live Patching 15-SP5 (ppc64les390x x86_64) * kernel-default-debugsource-5.14.21-150500.55.177.1 * kernel-livepatch-5_14_21-150500_55_177-default-debuginfo-1-150500.11.5.1 * kernel-livepatch-SLE15-SP5_Update_43-debugsource-1-150500.11.5.1 * kernel-default-livepatch-5.14.21-150500.55.177.1 * kernel-livepatch-5_14_21-150500_55_177-default-1-150500.11.5.1 * kernel-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-livepatch-devel-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Live Patching 15-SP5 (nosrc) * kernel-default-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (nosrc s390x) * kernel-zfcpdump-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * kernel-default-devel-5.14.21-150500.55.177.1 * reiserfs-kmp-default-debuginfo-5.14.21-150500.55.177.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-optional-5.14.21-150500.55.177.1 * ocfs2-kmp-default-5.14.21-150500.55.177.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-devel-debuginfo-5.14.21-150500.55.177.1 * dlm-kmp-default-5.14.21-150500.55.177.1 * kernel-default-extra-5.14.21-150500.55.177.1 * kselftests-kmp-default-debuginfo-5.14.21-150500.55.177.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-obs-build-5.14.21-150500.55.177.1 * kernel-default-extra-debuginfo-5.14.21-150500.55.177.1 * cluster-md-kmp-default-5.14.21-150500.55.177.1 * kernel-syms-5.14.21-150500.55.177.1 * kernel-obs-qa-5.14.21-150500.55.177.1 * kernel-obs-build-debugsource-5.14.21-150500.55.177.1 * kernel-default-optional-debuginfo-5.14.21-150500.55.177.1 * reiserfs-kmp-default-5.14.21-150500.55.177.1 * kernel-default-livepatch-5.14.21-150500.55.177.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * gfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-default-debugsource-5.14.21-150500.55.177.1 *kselftests-kmp-default-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (aarch64) * reiserfs-kmp-64kb-5.14.21-150500.55.177.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.177.1 * dtb-amazon-5.14.21-150500.55.177.1 * dtb-nvidia-5.14.21-150500.55.177.1 * kernel-64kb-devel-5.14.21-150500.55.177.1 * dtb-mediatek-5.14.21-150500.55.177.1 * cluster-md-kmp-64kb-5.14.21-150500.55.177.1 * dtb-renesas-5.14.21-150500.55.177.1 * kselftests-kmp-64kb-5.14.21-150500.55.177.1 * reiserfs-kmp-64kb-debuginfo-5.14.21-150500.55.177.1 * dtb-allwinner-5.14.21-150500.55.177.1 * kernel-64kb-debuginfo-5.14.21-150500.55.177.1 * dtb-amlogic-5.14.21-150500.55.177.1 * dtb-socionext-5.14.21-150500.55.177.1 * kselftests-kmp-64kb-debuginfo-5.14.21-150500.55.177.1 * dtb-amd-5.14.21-150500.55.177.1 * dtb-broadcom-5.14.21-150500.55.177.1 * dtb-freescale-5.14.21-150500.55.177.1 * kernel-64kb-optional-debuginfo-5.14.21-150500.55.177.1 * dtb-rockchip-5.14.21-150500.55.177.1 * kernel-64kb-optional-5.14.21-150500.55.177.1 * dtb-xilinx-5.14.21-150500.55.177.1 * kernel-64kb-extra-debuginfo-5.14.21-150500.55.177.1 * dtb-sprd-5.14.21-150500.55.177.1 * dlm-kmp-64kb-5.14.21-150500.55.177.1 * dtb-arm-5.14.21-150500.55.177.1 * kernel-64kb-extra-5.14.21-150500.55.177.1 * dtb-apm-5.14.21-150500.55.177.1 * dtb-cavium-5.14.21-150500.55.177.1 * dtb-exynos-5.14.21-150500.55.177.1 * dtb-qcom-5.14.21-150500.55.177.1 * gfs2-kmp-64kb-5.14.21-150500.55.177.1 * cluster-md-kmp-64kb-debuginfo-5.14.21-150500.55.177.1 * kernel-64kb-debugsource-5.14.21-150500.55.177.1 * dlm-kmp-64kb-debuginfo-5.14.21-150500.55.177.1 * gfs2-kmp-64kb-debuginfo-5.14.21-150500.55.177.1 * dtb-apple-5.14.21-150500.55.177.1 * ocfs2-kmp-64kb-debuginfo-5.14.21-150500.55.177.1 * dtb-marvell-5.14.21-150500.55.177.1 * dtb-hisilicon-5.14.21-150500.55.177.1 * dtb-altera-5.14.21-150500.55.177.1 * ocfs2-kmp-64kb-5.14.21-150500.55.177.1 *dtb-lg-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (aarch64 ppc64le x86_64) * kernel-kvmsmall-devel-5.14.21-150500.55.177.1 * kernel-kvmsmall-debuginfo-5.14.21-150500.55.177.1 * kernel-kvmsmall-devel-debuginfo-5.14.21-150500.55.177.1 * kernel-default-base-5.14.21-150500.55.177.1.150500.6.83.2 * kernel-default-base-rebuild-5.14.21-150500.55.177.1.150500.6.83.2 * kernel-kvmsmall-debugsource-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (aarch64 nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_177-default-debuginfo-1-150500.11.5.1 * kernel-livepatch-SLE15-SP5_Update_43-debugsource-1-150500.11.5.1 * kernel-livepatch-5_14_21-150500_55_177-default-1-150500.11.5.1 * kernel-default-livepatch-devel-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (nosrc) * dtb-aarch64-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (x86_64) * kernel-kvmsmall-vdso-debuginfo-5.14.21-150500.55.177.1 * kernel-default-vdso-5.14.21-150500.55.177.1 * kernel-kvmsmall-vdso-5.14.21-150500.55.177.1 * kernel-default-vdso-debuginfo-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (noarch) * kernel-macros-5.14.21-150500.55.177.1 * kernel-docs-html-5.14.21-150500.55.177.1 * kernel-devel-5.14.21-150500.55.177.1 * kernel-source-5.14.21-150500.55.177.1 * kernel-source-vanilla-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-5.14.21-150500.55.177.1 * openSUSE Leap 15.5 (s390x) * kernel-zfcpdump-debugsource-5.14.21-150500.55.177.1 * kernel-zfcpdump-debuginfo-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * kernel-macros-5.14.21-150500.55.177.1 * kernel-devel-5.14.21-150500.55.177.1 *kernel-source-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * kernel-default-devel-debuginfo-5.14.21-150500.55.177.1 * kernel-obs-build-debugsource-5.14.21-150500.55.177.1 * gfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-obs-build-5.14.21-150500.55.177.1 * ocfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-default-devel-5.14.21-150500.55.177.1 * cluster-md-kmp-default-debuginfo-5.14.21-150500.55.177.1 * dlm-kmp-default-debuginfo-5.14.21-150500.55.177.1 * ocfs2-kmp-default-debuginfo-5.14.21-150500.55.177.1 * kernel-default-debuginfo-5.14.21-150500.55.177.1 * cluster-md-kmp-default-5.14.21-150500.55.177.1 * kernel-default-base-5.14.21-150500.55.177.1.150500.6.83.2 * dlm-kmp-default-5.14.21-150500.55.177.1 * kernel-syms-5.14.21-150500.55.177.1 * gfs2-kmp-default-5.14.21-150500.55.177.1 * kernel-default-debugsource-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 nosrc) * kernel-64kb-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch nosrc) * kernel-docs-5.14.21-150500.55.177.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64) * kernel-64kb-debuginfo-5.14.21-150500.55.177.1 * kernel-64kb-debugsource-5.14.21-150500.55.177.1 * kernel-64kb-devel-debuginfo-5.14.21-150500.55.177.1 * kernel-64kb-devel-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Micro 5.5 (noarch) * kernel-macros-5.14.21-150500.55.177.1 * kernel-source-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * kernel-default-debuginfo-5.14.21-150500.55.177.1 *kernel-default-debugsource-5.14.21-150500.55.177.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * kernel-default-base-5.14.21-150500.55.177.1.150500.6.83.2 ## References: * https://www.suse.com/security/cve/CVE-2026-31771.html * https://www.suse.com/security/cve/CVE-2026-43038.html * https://www.suse.com/security/cve/CVE-2026-46090.html * https://www.suse.com/security/cve/CVE-2026-46173.html * https://www.suse.com/security/cve/CVE-2026-46197.html * https://www.suse.com/security/cve/CVE-2026-46229.html * https://www.suse.com/security/cve/CVE-2026-46253.html * https://www.suse.com/security/cve/CVE-2026-46266.html * https://www.suse.com/security/cve/CVE-2026-46274.html * https://www.suse.com/security/cve/CVE-2026-46319.html * https://www.suse.com/security/cve/CVE-2026-46320.html * https://www.suse.com/security/cve/CVE-2026-46331.html * https://www.suse.com/security/cve/CVE-2026-52909.html * https://www.suse.com/security/cve/CVE-2026-52918.html * https://www.suse.com/security/cve/CVE-2026-52923.html * https://www.suse.com/security/cve/CVE-2026-52924.html * https://www.suse.com/security/cve/CVE-2026-52943.html * https://www.suse.com/security/cve/CVE-2026-52955.html * https://www.suse.com/security/cve/CVE-2026-52969.html * https://www.suse.com/security/cve/CVE-2026-52972.html * https://www.suse.com/security/cve/CVE-2026-52993.html * https://www.suse.com/security/cve/CVE-2026-53016.html * https://www.suse.com/security/cve/CVE-2026-53041.html * https://www.suse.com/security/cve/CVE-2026-53053.html * https://www.suse.com/security/cve/CVE-2026-53071.html * https://www.suse.com/security/cve/CVE-2026-53072.html * https://www.suse.com/security/cve/CVE-2026-53133.html * https://www.suse.com/security/cve/CVE-2026-53253.html * https://www.suse.com/security/cve/CVE-2026-53359.html * https://bugzilla.suse.com/show_bug.cgi?id=1264097 * https://bugzilla.suse.com/show_bug.cgi?id=1264145 * https://bugzilla.suse.com/show_bug.cgi?id=1265421 *https://bugzilla.suse.com/show_bug.cgi?id=1267381 * https://bugzilla.suse.com/show_bug.cgi?id=1267531 * https://bugzilla.suse.com/show_bug.cgi?id=1267567 * https://bugzilla.suse.com/show_bug.cgi?id=1267635 * https://bugzilla.suse.com/show_bug.cgi?id=1267684 * https://bugzilla.suse.com/show_bug.cgi?id=1267722 * https://bugzilla.suse.com/show_bug.cgi?id=1267918 * https://bugzilla.suse.com/show_bug.cgi?id=1267993 * https://bugzilla.suse.com/show_bug.cgi?id=1268022 * https://bugzilla.suse.com/show_bug.cgi?id=1268660 * https://bugzilla.suse.com/show_bug.cgi?id=1269022 * https://bugzilla.suse.com/show_bug.cgi?id=1269033 * https://bugzilla.suse.com/show_bug.cgi?id=1269036 * https://bugzilla.suse.com/show_bug.cgi?id=1269090 * https://bugzilla.suse.com/show_bug.cgi?id=1269100 * https://bugzilla.suse.com/show_bug.cgi?id=1269159 * https://bugzilla.suse.com/show_bug.cgi?id=1269184 * https://bugzilla.suse.com/show_bug.cgi?id=1269193 * https://bugzilla.suse.com/show_bug.cgi?id=1269195 * https://bugzilla.suse.com/show_bug.cgi?id=1269310 * https://bugzilla.suse.com/show_bug.cgi?id=1269398 * https://bugzilla.suse.com/show_bug.cgi?id=1269574 * https://bugzilla.suse.com/show_bug.cgi?id=1269678 * https://bugzilla.suse.com/show_bug.cgi?id=1269681 * https://bugzilla.suse.com/show_bug.cgi?id=1269821 * https://bugzilla.suse.com/show_bug.cgi?id=1270059 . Install critical kernel update for openSUSE to resolve 29 security issues and improve system stability.. openSUSE kernel update security important patch system. . Severity: Important. LinuxSecurity.com Team
# Security update for runc Announcement ID: SUSE-SU-2026:2414-1 Release Date: 2026-06-16T12:22:39Z Rating: important References:. # Security update for runc Announcement ID: SUSE-SU-2026:2414-1 Release Date: 2026-06-16T12:22:39Z Rating: important References: Affected Products: * Basesystem Module 15-SP7 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that can now be installed. ## Description: This update for runc rebuilds it against the current go security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2414=1 *Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2414=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2414=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2414=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2414=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2414=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2414=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2414=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2414=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2414=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2026-2414=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2414=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2414=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2414=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2414=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2414=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2414=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * BasesystemModule 15-SP7 (aarch64 ppc64le s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) *runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * runc-debuginfo-1.3.4-150000.96.1 * runc-1.3.4-150000.96.1 . Important security update available for runc in SUSE distribution to enhance system safety against potential threats.. runc security update,SUSE Linux security,container runtime security. . Severity: Important. LinuxSecurity.com Team
A new prerelease of Python 3.15 with fixes to several CVEs.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-e7dc1a8950 2026-05-23 16:00:29.000881+00:00 -------------------------------------------------------------------------------- Name : python3.15 Product : Fedora 42 Version : 3.15.0~b1 Release : 1.fc42 URL : https://www.python.org/ Summary : Version 3.15 of the Python interpreter Description : Python 3.15 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3.15 package provides the "python3.15" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3.15-libs package, which should be installed automatically along with python3.15. The remaining parts of the Python standard library are broken out into the python3.15-tkinter and python3.15-test packages, which may need to be installed separately. Documentation for Python is provided in the python3.15-docs package. Packages containing additional libraries for Python are generally named with the "python3.15-" prefix. -------------------------------------------------------------------------------- Update Information: A new prerelease of Python 3.15 with fixes to several CVEs. -------------------------------------------------------------------------------- ChangeLog: * Mon May 11 2026 Karolina Surma - 3.15.0~b1-1 - Update to Python 3.15.0b1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2457945 - CVE-2026-1502 python3.15: Python: HTTP header injection via CR/LF in proxy tunnel headers [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2457945 [ 2 ] Bug #2458017 - CVE-2026-6100python3.15: Python: Arbitrary code execution or information disclosure via use-after-free in decompression modules [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2458017 [ 3 ] Bug #2458225 - CVE-2026-4786 python3.15: Python: Arbitrary code execution via command injection in webbrowser.open() API [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2458225 [ 4 ] Bug #2458489 - CVE-2026-5713 python3.15: Python: Information disclosure and arbitrary code execution via remote debugging with a malicious process. [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2458489 [ 5 ] Bug #2461289 - CVE-2026-3219 python3.15: pip: Incorrect file installation due to improper archive handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2461289 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e7dc1a8950' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Update to version 1.10.2. Addresses CVE-2026-2625.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-a15009ab19 2026-04-30 00:52:11.847715+00:00 -------------------------------------------------------------------------------- Name : rust-rpm-sequoia Product : Fedora 44 Version : 1.10.2 Release : 1.fc44 URL : https://crates.io/crates/rpm-sequoia Summary : Implementation of the RPM PGP interface using Sequoia Description : An implementation of the RPM PGP interface using Sequoia. -------------------------------------------------------------------------------- Update Information: Update to version 1.10.2. Addresses CVE-2026-2625. -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 25 2026 Fabio Valentini - 1.10.2-1 - Update to version 1.10.2; Fixes RHBZ#2461620 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2461620 - rust-rpm-sequoia-1.10.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=2461620 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-a15009ab19' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
An update that can now be installed.. # Security update for cosign Announcement ID: SUSE-SU-2026:1098-1 Release Date: 2026-03-26T21:24:08Z Rating: important References: Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that can now be installed. ## Description: This update for cosign rebuilds it against the current go 1.25 security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1098=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-1098=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1098=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1098=1 * SUSE Linux EnterpriseHigh Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1098=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1098=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1098=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1098=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1098=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1098=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1098=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1098=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1098=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * cosign-debuginfo-3.0.5-150400.3.37.1 * cosign-3.0.5-150400.3.37.1 * openSUSE Leap 15.4 (noarch) * cosign-bash-completion-3.0.5-150400.3.37.1 * cosign-zsh-completion-3.0.5-150400.3.37.1 * cosign-fish-completion-3.0.5-150400.3.37.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * cosign-debuginfo-3.0.5-150400.3.37.1 * cosign-3.0.5-150400.3.37.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * cosign-debuginfo-3.0.5-150400.3.37.1 * cosign-3.0.5-150400.3.37.1 * Basesystem Module 15-SP7 (noarch) * cosign-bash-completion-3.0.5-150400.3.37.1 * cosign-zsh-completion-3.0.5-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4(aarch64 x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * cosign-debuginfo-3.0.5-150400.3.37.1 * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * cosign-3.0.5-150400.3.37.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * cosign-debuginfo-3.0.5-150400.3.37.1 * cosign-3.0.5-150400.3.37.1 . Important security update for cosign in openSUSE affects multiple products. Critical fixes for system security and integrity.. openSUSE security patch, cosign update, important security release. . Severity: Important. LinuxSecurity.com Team
An update that solves seven vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5) Announcement ID: SUSE-SU-2026:1059-1 Release Date: 2026-03-26T10:04:28Z Rating: important References: * bsc#1255378 * bsc#1255402 * bsc#1255595 * bsc#1256624 * bsc#1256644 * bsc#1257118 * bsc#1257629 Cross-References: * CVE-2022-50697 * CVE-2025-21738 * CVE-2025-38159 * CVE-2025-68284 * CVE-2025-68285 * CVE-2025-68813 * CVE-2025-71085 CVSS scores: * CVE-2022-50697 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2022-50697 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21738 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-21738 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-21738 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-38159 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38159 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38159 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2025-68284 ( SUSE ): 7.0 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-68284 ( SUSE ): 7.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-68285 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-68285 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-68813 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-68813 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71085 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-71085 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-71085 ( NVD ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Live Patching 15-SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves seven vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.133 fixes various security issues The following security issues were fixed: * CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit (bsc#1255595). * CVE-2025-21738: ata: libata-sff: ensure that we cannot write outside the allocated buffer (bsc#1257118). * CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds (bsc#1257629). * CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255378). * CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255402). * CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256644). * CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256624). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-1059=1 * SUSE Linux Enterprise Live Patching 15-SP5 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2026-1059=1 ## Package List: * openSUSE Leap 15.5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_133-default-debuginfo-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_133-default-3-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_34-debugsource-3-150500.2.1 * SUSE LinuxEnterprise Live Patching 15-SP5 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150500_55_133-default-debuginfo-3-150500.2.1 * kernel-livepatch-5_14_21-150500_55_133-default-3-150500.2.1 * kernel-livepatch-SLE15-SP5_Update_34-debugsource-3-150500.2.1 ## References: * https://www.suse.com/security/cve/CVE-2022-50697.html * https://www.suse.com/security/cve/CVE-2025-21738.html * https://www.suse.com/security/cve/CVE-2025-38159.html * https://www.suse.com/security/cve/CVE-2025-68284.html * https://www.suse.com/security/cve/CVE-2025-68285.html * https://www.suse.com/security/cve/CVE-2025-68813.html * https://www.suse.com/security/cve/CVE-2025-71085.html * https://bugzilla.suse.com/show_bug.cgi?id=1255378 * https://bugzilla.suse.com/show_bug.cgi?id=1255402 * https://bugzilla.suse.com/show_bug.cgi?id=1255595 * https://bugzilla.suse.com/show_bug.cgi?id=1256624 * https://bugzilla.suse.com/show_bug.cgi?id=1256644 * https://bugzilla.suse.com/show_bug.cgi?id=1257118 * https://bugzilla.suse.com/show_bug.cgi?id=1257629 . SUSE Linux Kernel security update addresses multiple high-risk issues with various fixes available now.. SUSE Linux Kernel, openSUSE update, security issue, high risk patch, important security fixes. . Severity: Important. LinuxSecurity.com Team
Backport fix for CVE-2025-22921. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-de1151d09b 2026-01-11 00:54:21.425419+00:00 -------------------------------------------------------------------------------- Name : wasmedge Product : Fedora 42 Version : 0.15.0 Release : 4.fc42 URL : https://github.com/WasmEdge/WasmEdge Summary : High performance WebAssembly Virtual Machine Description : High performance WebAssembly Virtual Machine -------------------------------------------------------------------------------- Update Information: Backport fix for CVE-2025-22921 -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 2 2026 dm4 - 0.15.0-4 - Backport fix for CVE-2025-22921 * Fri Jan 2 2026 dm4 - 0.15.0-3 - Remove the unused patch file * Mon Dec 15 2025 Marcin Juszkiewicz - 0.15.0-2 - enable RISC-V 64-bit port -------------------------------------------------------------------------------- References: [ 1 ] Bug #2426612 - CVE-2025-69261 wasmedge: WasmEdge: Denial of Service via incorrect memory access [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2426612 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-de1151d09b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
* bsc#1250232 Cross-References: * CVE-2025-9230 . # Security update for openssl-3 Announcement ID: SUSE-SU-2025:03439-1 Release Date: 2025-09-30T14:50:36Z Rating: important References: * bsc#1250232 Cross-References: * CVE-2025-9230 CVSS scores: * CVE-2025-9230 ( SUSE ): 7.7 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-9230 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Proxy 4.3 LTS * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Retail Branch Server 4.3 LTS * SUSE Manager Server 4.3 * SUSE Manager Server 4.3 LTS An update that solves one vulnerability can now be installed. ## Description: This update for openssl-3 fixes the following issues: * CVE-2025-9230: incorrect check of key size can lead to out-of-bounds read and write in RFC 3211 KEK unwrap (bsc#1250232). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3439=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3439=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patchSUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3439=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3439=1 * SUSE Manager Proxy 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-LTS-2025-3439=1 * SUSE Manager Retail Branch Server 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-LTS-2025-3439=1 * SUSE Manager Server 4.3 LTS zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-LTS-2025-3439=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-3439=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3439=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3439=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3439=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3439=1 ## Package List: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 *libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Manager Proxy 4.3 LTS (x86_64) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Manager Retail Branch Server 4.3 LTS (x86_64) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Manager Server 4.3 LTS (ppc64le s390x x86_64) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * openssl-3-3.0.8-150400.4.75.1 * libopenssl-3-devel-3.0.8-150400.4.75.1 * openssl-3-debuginfo-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * openSUSE Leap 15.4 (x86_64) * libopenssl-3-devel-32bit-3.0.8-150400.4.75.1 * libopenssl3-32bit-debuginfo-3.0.8-150400.4.75.1 * libopenssl3-32bit-3.0.8-150400.4.75.1 * openSUSE Leap 15.4 (noarch) * openssl-3-doc-3.0.8-150400.4.75.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libopenssl3-64bit-3.0.8-150400.4.75.1 * libopenssl-3-devel-64bit-3.0.8-150400.4.75.1 *libopenssl3-64bit-debuginfo-3.0.8-150400.4.75.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.75.1 * openssl-3-debugsource-3.0.8-150400.4.75.1 * libopenssl3-debuginfo-3.0.8-150400.4.75.1 ## References: * https://www.suse.com/security/cve/CVE-2025-9230.html * https://bugzilla.suse.com/show_bug.cgi?id=1250232 . Critical update for openssl-3 in openSUSE addresses important out-of-bounds issue, ensuring system integrity.. openssl update, security patch, SUSE Linux, system vulnerability. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.