Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves eight vulnerabilities can now be installed.. # Security update for python-cryptography Announcement ID: SUSE-SU-2026:3040-1 Release Date: 2026-07-15T11:48:45Z Rating: important References: * bsc#1270208 * bsc#1270515 * bsc#1270620 * bsc#1270706 * bsc#1270772 * bsc#1270801 * bsc#1270936 * bsc#1270994 Cross-References: * CVE-2026-41676 * CVE-2026-41677 * CVE-2026-41678 * CVE-2026-41681 * CVE-2026-41898 * CVE-2026-42327 * CVE-2026-44662 * CVE-2026-45784 CVSS scores: * CVE-2026-41676 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-41676 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-41676 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41676 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-41677 ( SUSE ): 1.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U * CVE-2026-41677 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-41677 ( NVD ): 1.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41677 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-41678 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-41678 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2026-41678 ( NVD ): 7.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41678 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-41681 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-41681 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-41681 ( NVD ): 8.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41681 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-41898 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-41898 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L * CVE-2026-41898 ( NVD ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41898 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-42327 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-42327 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-42327 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-44662 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-44662 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-44662 ( NVD ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-45784 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-45784 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L Affected Products: * openSUSE Leap 15.4 * Public Cloud Module 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise HighPerformance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves eight vulnerabilities can now be installed. ## Description: This update for python-cryptography fixes the following issues: * CVE-2026-41676: openssl: `Deriver:derive` and `PkeyCtxRef:derive` can overflow short buffers on OpenSSL 1.1.1 (bsc#1270208). * CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length (bsc#1270620). * CVE-2026-41678: openssl: out-of-bounds write due to incorrect bounds assertion in `aes::unwrap_key()` (bsc#1270706). * CVE-2026-41681: openssl: `MdCtxRef::digest_final()` writes past caller buffer with no length check (bsc#1270772). * CVE-2026-41898: openssl: unchecked callback-returned length in PSK and cookie generate trampolines can leak adjacent memory to the network (bsc#1270801). * CVE-2026-42327: openssl: undefined behavior in `X509Ref::ocsp_responders` for certificates with non-UTF-8 OCSP URLs (bsc#1270515). * CVE-2026-44662: openssl: heap buffer overflow when encrypting with AES key- wrap-with-padding due to incorrectly sized output buffers (bsc#1270936). * CVE-2026-45784: openssl: out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers due to incorrectly sized output buffer (bsc#1270994). ## Patch Instructions: To install this SUSE update use the SUSErecommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Public Cloud Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP4-2026-3040=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-3040=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-3040=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-3040=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-3040=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-3040=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-3040=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-3040=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-3040=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-3040=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * openSUSE Leap 15.4 (aarch64 i586 ppc64le s390x x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * SUSE Linux EnterpriseServer 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * Public Cloud Module 15-SP4 (aarch64 ppc64le s390x x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * python311-cryptography-41.0.3-150400.16.25.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * python311-cryptography-41.0.3-150400.16.25.1 ## References: * https://www.suse.com/security/cve/CVE-2026-41676.html * https://www.suse.com/security/cve/CVE-2026-41677.html * https://www.suse.com/security/cve/CVE-2026-41678.html * https://www.suse.com/security/cve/CVE-2026-41681.html * https://www.suse.com/security/cve/CVE-2026-41898.html * https://www.suse.com/security/cve/CVE-2026-42327.html * https://www.suse.com/security/cve/CVE-2026-44662.html * https://www.suse.com/security/cve/CVE-2026-45784.html * https://bugzilla.suse.com/show_bug.cgi?id=1270208 * https://bugzilla.suse.com/show_bug.cgi?id=1270515 * https://bugzilla.suse.com/show_bug.cgi?id=1270620 * https://bugzilla.suse.com/show_bug.cgi?id=1270706 * https://bugzilla.suse.com/show_bug.cgi?id=1270772 * https://bugzilla.suse.com/show_bug.cgi?id=1270801 * https://bugzilla.suse.com/show_bug.cgi?id=1270936 * https://bugzilla.suse.com/show_bug.cgi?id=1270994 . This security update for python-cryptography fixes eight important issues, enhancing openSUSE's resilience against data risks.. python cryptography update, openSUSE security fix, critical Linux patches. . Severity: Important. LinuxSecurity.com Team
Moderate: cups security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:39316", "synopsis": "Moderate: cups security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for cups.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The Common UNIX Printing System (CUPS) provides a portable printing layer for Linux, UNIX, and similar operating systems.\n\nSecurity Fix(es):\n\n* cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach `lp` code execution over the network (CVE-2026-34980)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2454954", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2454954", "description": ""}], "cves": [{"name": "CVE-2026-34980", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34980", "cvss3ScoringVector": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L", "cvss3BaseScore": "6.4", "cwe": "CWE-78"}], "references": [], "publishedAt": "2026-07-15T12:03:43.176942Z", "rpms": {"Rocky Linux 9": {"nvras": ["cups-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-1:2.3.3op2-39.el9_8.src.rpm", "cups-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-client-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-client-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-client-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-client-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-client-debuginfo-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-client-debuginfo-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-client-debuginfo-1:2.3.3op2-39.el9_8.s390x.rpm","cups-client-debuginfo-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-debuginfo-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-debuginfo-1:2.3.3op2-39.el9_8.i686.rpm", "cups-debuginfo-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-debuginfo-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-debuginfo-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-debugsource-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-debugsource-1:2.3.3op2-39.el9_8.i686.rpm", "cups-debugsource-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-debugsource-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-debugsource-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-devel-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-devel-1:2.3.3op2-39.el9_8.i686.rpm", "cups-devel-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-devel-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-devel-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-filesystem-1:2.3.3op2-39.el9_8.noarch.rpm", "cups-ipptool-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-ipptool-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-ipptool-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-ipptool-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-ipptool-debuginfo-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-ipptool-debuginfo-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-ipptool-debuginfo-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-ipptool-debuginfo-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-libs-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-libs-1:2.3.3op2-39.el9_8.i686.rpm", "cups-libs-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-libs-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-libs-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-libs-debuginfo-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-libs-debuginfo-1:2.3.3op2-39.el9_8.i686.rpm", "cups-libs-debuginfo-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-libs-debuginfo-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-libs-debuginfo-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-lpd-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-lpd-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-lpd-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-lpd-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-lpd-debuginfo-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-lpd-debuginfo-1:2.3.3op2-39.el9_8.ppc64le.rpm","cups-lpd-debuginfo-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-lpd-debuginfo-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-printerapp-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-printerapp-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-printerapp-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-printerapp-1:2.3.3op2-39.el9_8.x86_64.rpm", "cups-printerapp-debuginfo-1:2.3.3op2-39.el9_8.aarch64.rpm", "cups-printerapp-debuginfo-1:2.3.3op2-39.el9_8.ppc64le.rpm", "cups-printerapp-debuginfo-1:2.3.3op2-39.el9_8.s390x.rpm", "cups-printerapp-debuginfo-1:2.3.3op2-39.el9_8.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A moderate cups security update is now available for Rocky Linux 9, addressing critical issues in the printing system.. CUPS update, Rocky Linux security, moderate severity, network attack, code execution. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for libnfs Announcement ID: SUSE-SU-2026:2760-1 Release Date: 2026-07-06T04:05:32Z Rating: important References: * bsc#1268135 Cross-References: * CVE-2026-53689 CVSS scores: * CVE-2026-53689 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L * CVE-2026-53689 ( NVD ): 7.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L Affected Products: * Basesystem Module 15-SP7 * Desktop Applications Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for libnfs fixes the following issue * CVE-2026-53689: integer overflow during a connection to a crafted NFS server (bsc#1268135). Changes for libnfs: * Add libnfs-CVE-2026-53689.patch: ZDR: check the string size for sanity (bsc#1268135 CVE-2026-53689). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-2760=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2760=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2760=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2760=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2760=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2760=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2760=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2760=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2760=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2760=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2760=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2760=1 ## Package List: * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 *libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libnfs8-1.11.0-150000.3.3.1 * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5(aarch64 x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * libnfs-debuginfo-1.11.0-150000.3.3.1 * libnfs8-1.11.0-150000.3.3.1 * libnfs8-debuginfo-1.11.0-150000.3.3.1 * libnfs-devel-1.11.0-150000.3.3.1 * libnfs-debugsource-1.11.0-150000.3.3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-53689.html * https://bugzilla.suse.com/show_bug.cgi?id=1268135 . Update available for libnfs on SUSE to address critical security concerns. Immediate installation recommended for safety.. SUSE security update, libnfs patch, integer overflow risk, vulnerability management, important security fixes. . Severity: Important. LinuxSecurity.com Team
An update that solves six vulnerabilities and has one fix can now be installed.. # Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 16) Announcement ID: SUSE-SU-2026:22388-1 Release Date: 2026-06-25T11:19:45Z Rating: important References: * bsc#1261640 * bsc#1263088 * bsc#1263108 * bsc#1263902 * bsc#1266229 * bsc#1267625 * bsc#1268282 Cross-References: * CVE-2026-31402 * CVE-2026-31504 * CVE-2026-31554 * CVE-2026-31694 * CVE-2026-43503 * CVE-2026-46323 CVSS scores: * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31402 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31554 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31554 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31554 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46323 ( SUSE ): 7.0CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves six vulnerabilities and has one fix can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.28.1 fixes various security issues The following security issues were fixed: * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261640). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263088). * CVE-2026-31554: futex: Require sys_futex_requeue() to have identical flags (bsc#1263108). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263902). * CVE-2026-43503: final dirty.frag related fixes (bsc#1266229). * CVE-2026-46323: net: gro: don't merge zcopy skbs (bsc#1268282). * net/sched: fix pedit partial COW leading to page cache (bsc#1267625). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-1073=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-1073=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (ppc64le s390x x86_64) * kernel-livepatch-SLE16_Update_7-debugsource-5-160000.1.1 * kernel-livepatch-6_12_0-160000_28-default-debuginfo-5-160000.1.1 * kernel-livepatch-6_12_0-160000_28-default-5-160000.1.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * kernel-livepatch-SLE16_Update_7-debugsource-5-160000.1.1 * kernel-livepatch-6_12_0-160000_28-default-debuginfo-5-160000.1.1 *kernel-livepatch-6_12_0-160000_28-default-5-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31554.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46323.html * https://bugzilla.suse.com/show_bug.cgi?id=1261640 * https://bugzilla.suse.com/show_bug.cgi?id=1263088 * https://bugzilla.suse.com/show_bug.cgi?id=1263108 * https://bugzilla.suse.com/show_bug.cgi?id=1263902 * https://bugzilla.suse.com/show_bug.cgi?id=1266229 * https://bugzilla.suse.com/show_bug.cgi?id=1267625 * https://bugzilla.suse.com/show_bug.cgi?id=1268282 . SUSE's security update fixes six vulnerabilities including network and heap overflow issues. Immediate updates recommended.. SUSE kernel patch, security vulnerabilities, important update. . Severity: Important. LinuxSecurity.com Team
cpp-httplib could mishandle HTTP requests if it received specially crafted network traffic.. ========================================================================== Ubuntu Security Notice USN-8470-1 June 25, 2026 cpp-httplib vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: cpp-httplib could mishandle HTTP requests if it received specially crafted network traffic. Software Description: - cpp-httplib: A C++ header-only HTTP/HTTPS server and client library Details: It was discovered that cpp-httplib incorrectly percent-decoded HTTP request header values. A remote attacker could use this to inject crafted header content possibly leading to response splitting, log injection or proxy smuggling. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS libcpp-httplib-dev 0.26.0+ds-2ubuntu3+esm1 Available with Ubuntu Pro libcpp-httplib0.26 0.26.0+ds-2ubuntu3+esm1 Available with Ubuntu Pro Ubuntu 25.10 libcpp-httplib-dev 0.18.7-1ubuntu0.25.10.2 libcpp-httplib0.18 0.18.7-1ubuntu0.25.10.2 Ubuntu 24.04 LTS libcpp-httplib-dev 0.14.3+ds-1.1ubuntu0.1~esm2 Available with Ubuntu Pro libcpp-httplib0.14t64 0.14.3+ds-1.1ubuntu0.1~esm2 Available with Ubuntu Pro Ubuntu 22.04 LTS libcpp-httplib-dev 0.10.3+ds-1ubuntu0.1~esm2 Available with Ubuntu Pro libcpp-httplib0 0.10.3+ds-1ubuntu0.1~esm2 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8470-1 CVE-2026-45372 Package Information: https://launchpad.net/ubuntu/+source/cpp-httplib/0.18.7-1ubuntu0.25.10.2 . Critical update for cpp-httplib in Ubuntu fixes network request handling issue introducing security risks.. cpp-httplib update, Ubuntu security, HTTP request vulnerability. . Severity: Important. LinuxSecurity.com Team
An update that solves 60 vulnerabilities and has 64 bug fixes can now be installed.. openSUSE security update: security update for the linux kernel ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20965-1 Rating: important References: * bsc#1259884 * bsc#1260502 * bsc#1260548 * bsc#1261041 * bsc#1261603 * bsc#1261619 * bsc#1261791 * bsc#1262606 * bsc#1262615 * bsc#1262619 * bsc#1262622 * bsc#1262624 * bsc#1263006 * bsc#1263058 * bsc#1263062 * bsc#1263115 * bsc#1263180 * bsc#1263579 * bsc#1263594 * bsc#1263724 * bsc#1263794 * bsc#1263883 * bsc#1263932 * bsc#1264000 * bsc#1264040 * bsc#1264091 * bsc#1264196 * bsc#1264243 * bsc#1264245 * bsc#1264255 * bsc#1264415 * bsc#1264484 * bsc#1264609 * bsc#1264622 * bsc#1264672 * bsc#1264723 * bsc#1264765 * bsc#1265081 * bsc#1265114 * bsc#1265170 * bsc#1265186 * bsc#1265579 * bsc#1266394 * bsc#1266400 * bsc#1266696 * bsc#1266711 * bsc#1266720 * bsc#1266810 * bsc#1266816 * bsc#1266826 * bsc#1266827 * bsc#1266888 * bsc#1266889 * bsc#1266901 * bsc#1266914 * bsc#1266927 * bsc#1266972 * bsc#1267205 * bsc#1267214 * bsc#1267220 * bsc#1267531 * bsc#1267652 * bsc#1267875 * bsc#1268018 Cross-References: * CVE-2026-23254 * CVE-2026-23303 * CVE-2026-23327 * CVE-2026-23438 * CVE-2026-31396 * CVE-2026-31401 * CVE-2026-31446 * CVE-2026-31448 * CVE-2026-31454 * CVE-2026-31455 * CVE-2026-31518 * CVE-2026-31546 * CVE-2026-31556 * CVE-2026-31562 * CVE-2026-31584 * CVE-2026-31645 * CVE-2026-31648 * CVE-2026-31655 * CVE-2026-31671 * CVE-2026-31683 * CVE-2026-31703 * CVE-2026-31774 * CVE-2026-43026 * CVE-2026-43030 * CVE-2026-43040 * CVE-2026-43063 * CVE-2026-43065 * CVE-2026-43066 * CVE-2026-43068 * CVE-2026-43109 * CVE-2026-43150 * CVE-2026-43184 * CVE-2026-43197 * CVE-2026-43332 * CVE-2026-43393 * CVE-2026-43394 * CVE-2026-43411 *CVE-2026-43455 * CVE-2026-45842 * CVE-2026-45846 * CVE-2026-45852 * CVE-2026-45856 * CVE-2026-45886 * CVE-2026-45898 * CVE-2026-45910 * CVE-2026-45932 * CVE-2026-45942 * CVE-2026-45970 * CVE-2026-45984 * CVE-2026-46021 * CVE-2026-46043 * CVE-2026-46083 * CVE-2026-46090 * CVE-2026-46094 * CVE-2026-46114 * CVE-2026-46159 * CVE-2026-46176 * CVE-2026-46181 * CVE-2026-46316 * CVE-2026-46317 CVSS scores: * CVE-2026-23254 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23303 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23327 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23438 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23438 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31396 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31396 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31401 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31401 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31446 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31446 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31448 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31448 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31454 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31454 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31455 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31455 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31518 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31518 ( SUSE ): 5.7CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31546 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31546 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31556 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31556 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31562 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31562 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31584 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31584 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31645 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31645 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-31648 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31648 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31655 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31655 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31671 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31671 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31683 ( SUSE ): 4.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-31683 ( SUSE ): 5.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31703 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31703 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31774 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43026 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43030 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43040 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43063 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43065 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L * CVE-2026-43065 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-43066 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43066 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43068 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43068 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43109 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43109 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43150 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43184 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43184 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43332 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43332 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43393 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43393 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43394 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43394 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43411 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43411 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43455 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-45842 ( SUSE ): 6.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-45842 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L * CVE-2026-45846 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-45846 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-45852 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45852 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45856 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2026-45856 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-45886 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45886 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45898 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45898 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45910 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45910 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45932 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45932 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45942 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-45942 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45970 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45970 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45984 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45984 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46021 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46021 ( SUSE ): 7.3CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46043 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46043 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46083 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46090 ( SUSE ): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46094 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-46094 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-46114 ( SUSE ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-46114 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-46159 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46176 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46316 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 60 vulnerabilities and has 64 bug fixes can now be installed. Description: The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-23254: net: gro: fix outer network offset (bsc#1259884). - CVE-2026-23303: smb: client: Don't log plaintext credentials in cifs_set_cifscreds (bsc#1260502). - CVE-2026-23327: cxl/mbox: validate payload size before accessing contents in cxl_payload_from_user_allowed() (bsc#1260548). - CVE-2026-23438: net: mvpp2: guard flow control update with global_tx_fc in buffer switching (bsc#1261619). - CVE-2026-31396: net: macb: fix use-after-free access to PTP clock (bsc#1261791). - CVE-2026-31401: HID: bpf: prevent buffer overflow in hid_hw_request (bsc#1261603). -CVE-2026-31446: ext4: fix use-after-free in update_super_work when racing with umount (bsc#1262619). - CVE-2026-31448: ext4: avoid infinite loops caused by residual data (bsc#1262622). - CVE-2026-31454: xfs: save ailp before dropping the AIL lock in push callbacks (bsc#1262624). - CVE-2026-31455: xfs: stop reclaim before pushing AIL during unmount (bsc#1262615). - CVE-2026-31518: esp: fix skb leak with espintcp and async crypto (bsc#1262606). - CVE-2026-31546: net: bonding: fix NULL deref in bond_debug_rlb_hash_show (bsc#1263006). - CVE-2026-31556: xfs: scrub: unlock dquot before early return in quota scrub (bsc#1263062). - CVE-2026-31562: drm/mediatek: dsi: Store driver data before invoking mipi_dsi_host_register (bsc#1263058). - CVE-2026-31584: media: mediatek: vcodec: fix use-after-free in encoder release path (bsc#1263180). - CVE-2026-31645: net: lan966x: fix page pool leak in error paths (bsc#1263794). - CVE-2026-31648: mm: filemap: fix nr_pages calculation overflow in filemap_map_pages() (bsc#1263579). - CVE-2026-31655: pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled (bsc#1263724). - CVE-2026-31671: xfrm_user: fix info leak in build_report() (bsc#1263115). - CVE-2026-31683: batman-adv: avoid OGM aggregation when skb tailroom is insufficient (bsc#1263594). - CVE-2026-31703: writeback: Fix use after free in inode_switch_wbs_work_fn() (bsc#1263883). - CVE-2026-31774: io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() (bsc#1264040). - CVE-2026-43026: netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent (bsc#1263932). - CVE-2026-43030: bpf: Fix regsafe() for pointers to packet (bsc#1264000). - CVE-2026-43040: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak (bsc#1264091). - CVE-2026-43063: xfs: don't irele after failing to iget in xfs_attri_recover_work (bsc#1264196). - CVE-2026-43065: ext4: always drain queued discard work in ext4_mb_release() (bsc#1264243). - CVE-2026-43066: ext4: fix iloc.bh leak inext4_fc_replay_inode() error paths (bsc#1264245). - CVE-2026-43068: ext4: avoid allocate block from corrupted group in ext4_mb_find_by_goal() (bsc#1264255). - CVE-2026-43109: x86: shadow stacks: proper error handling for mmap lock (bsc#1264484). - CVE-2026-43150: perf/arm-cmn: Reject unsupported hardware configurations (bsc#1264415). - CVE-2026-43184: rnbd-srv: Zero the rsp buffer before using it (bsc#1264622). - CVE-2026-43197: netconsole: avoid OOB reads, msg is not nul-terminated (bsc#1264609). - CVE-2026-43332: thermal: core: Fix thermal zone device registration error path (bsc#1265114). - CVE-2026-43393: btrfs: fix chunk map leak in btrfs_map_block() after btrfs_chunk_map_num_copies() (bsc#1264723). - CVE-2026-43394: nfsd: Fix cred ref leak in nfsd_nl_listener_set_doit() (bsc#1265081). - CVE-2026-43411: tipc: fix divide-by-zero in tipc_sk_filter_connect() (bsc#1264672). - CVE-2026-43455: net: mctp: Ensure keys maintain only one ref to corresponding dev (bsc#1264765). - CVE-2026-45842: slip: reject VJ receive packets on instances with no rstate array (bsc#1266400). - CVE-2026-45846: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst() (bsc#1266394). - CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). - CVE-2026-45856: RDMA/uverbs: Validate wqe_size before using it in ib_uverbs_post_send (bsc#1266720). - CVE-2026-45886: bpf: Fix bpf_xdp_store_bytes proto for read-only arg (bsc#1266810). - CVE-2026-45898: RDMA/iwcm: Fix workqueue list corruption by removing work_list (bsc#1266888). - CVE-2026-45910: RDMA/rxe: Fix race condition in QP timer handlers (bsc#1266889). - CVE-2026-45932: bpf: Fix tcx/netkit detach permissions when prog fd isn't given (bsc#1266827). - CVE-2026-45942: ext4: fix e4b bitmap inconsistency reports (bsc#1266914). - CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). - CVE-2026-45984: gfs2: Fix use-after-free in iomap inline data write path (bsc#1267214). - CVE-2026-46021: thermal: core: Fix thermal zonegovernor cleanup issues (bsc#1267220). - CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). - CVE-2026-46083: spi: fix resource leaks on device setup failure (bsc#1266696). - CVE-2026-46090: ALSA: aloop: Use guard() for spin locks (bsc#1267531). - CVE-2026-46094: ext4: fix bounds check in check_xattrs() to prevent out-of-bounds access (bsc#1266927). - CVE-2026-46114: RDMA/rxe: Reject non-8-byte ATOMIC_WRITE payloads (bsc#1266972). - CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). - CVE-2026-46176: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init() (bsc#1266816). - CVE-2026-46181: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() (bsc#1266826). The following non security issues were fixed: - accel/ivpu: Add bounds checks for firmware log indices (git-fixes). - accel/ivpu: Add buffer overflow check in MS get_info_ioctl (git-fixes). - ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams (git-fixes). - ALSA: seq: dummy: fix UMP event stack overread (git-fixes). - arm64: tlb: Allow XZR argument to TLBI ops (git-fixes). - arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes). - Bluetooth: bnep: reject short frames before parsing (git-fixes). - Bluetooth: hci_sync: reject oversized Broadcast Announcement prepend (git-fixes). - Bluetooth: ISO: Fix not releasing hdev reference on iso_conn_big_sync (git-fixes). - Bluetooth: MGMT: Fix backward compatibility with userspace (git-fixes). - Bluetooth: MGMT: validate advertising TLV before type checks (git-fixes). - Bluetooth: RFCOMM: hold listener socket in rfcomm_connect_ind() (git-fixes). - Bluetooth: RFCOMM: validate skb length in MCC handlers (git-fixes). - config: remove DEBUG_FS_DISALLOW_MOUNT - debugfs: Remove broken no-mount mode (bsc#1265186). - debugfs: Fix default access mode config check (bsc#1265186). - debugfs: Remove broken no-mount mode (bsc#1265186). - debugfs: Remove redundant access mode checks(bsc#1265186). - drm/amd/display: Bound VBIOS record-chain walk loops (git-fixes). - drm/amd/display: Clamp HDMI HDCP2 rx_id_list read to buffer size (git-fixes). - drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs (git-fixes). - drm/amd/display: Reject gpio_bitshift > = 32 in bios_parser_get_gpio_pin_info() (git-fixes). - drm/amd/display: Use krealloc_array() in dal_vector_reserve() (git-fixes). - drm/amdkfd: Fix buffer overflow in SDMA queue checkpoint/restore on GFX11 (git-fixes). - drm/amdkfd: fix NULL dereference in get_queue_ids() (git-fixes). - drm/imx: Fix three kernel-doc warnings in dcss-scaler.c (git-fixes). - drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups (git-fixes). - drm/xe: Clear pending_disable before signaling suspend fence (git-fixes). - ima: return error early if file xattr cannot be changed (bsc#1261041). - Input: atkbd - skip deactivate for HONOR BCC-N's internal keyboard (git-fixes). - KVM: arm64: Reassign nested_mmus array behind mmu_lock (git-fixes). - KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation (git-fixes). - KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry (git-fixes). - KVM: SEV: Check PSC request indices against the actual size of the buffer (git-fixes). - KVM: SEV: Compute the correct max length of the in-GHCB scratch area (git-fixes). - KVM: SEV: Don't explicitly pass PSC buffer to snp_begin_psc() (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SEV: Reject MMIO requests larger than 8 bytes with GHCB v2+ (git-fixes). - KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use (git-fixes). - KVM: SEV: Use READ_ONCE() when reading entries/indices from PSC buffer (git-fixes). - KVM: SEV: Use the size of the PSC header as the minimum size for PSC requests (git-fixes). - KVM: SEV: WARN if KVM attempts to setup scratch area with min_len==0 (git-fixes). - KVM: SVM: Convert plainerror code numbers to defines (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: Provide helpers to set the error code (git-fixes). - KVM: x86: Consolidate SEV-ES MMIO emulation into a single public API (git-fixes). - KVM: x86: Dedup kvm_sev_es_mmio_{read,write}() (git-fixes). - KVM: x86: Harden SEV-ES MMIO against on-stack use-after-free (git-fixes). - KVM: x86: Move MMIO write tracing into vcpu_mmio_write() (git-fixes). - KVM: x86: Open code handling of completed MMIO reads in emulator_read_write() (git-fixes). - KVM: x86: Open code read vs. write userspace MMIO exits in emulator_read_write() (git-fixes). - KVM: x86: Trace unsatisfied MMIO reads on a per-page basis (git-fixes). - KVM: x86: Use local MMIO fragment variable to clean up emulator_read_write() (git-fixes). - mmc: core: Fix host controller programming for fixed driver type (git-fixes). - mmc: dw_mmc-rockchip: Add missing private data for very old controllers (git-fixes). - mmc: litex_mmc: Set mandatory idle clocks before CMD0 (git-fixes). - mmc: litex_mmc: Use DIV_ROUND_UP for more accurate clock calculation (git-fixes). - mmc: renesas_sdhi: Add OF entry for RZ/G2H SoC (git-fixes). - mmc: sdhci: add signal voltage switch in sdhci_resume_host (git-fixes). - wifi: mac80211: limit injected antenna index in ieee80211_parse_tx_radiotap (git-fixes). - wifi: nl80211: reject oversized EMA RNR lists (git-fixes). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-929=1 Package List: - openSUSE Leap 16.0: cluster-md-kmp-64kb-6.12.0-160000.35.1 cluster-md-kmp-azure-6.12.0-160000.35.1 cluster-md-kmp-default-6.12.0-160000.35.1 cluster-md-kmp-rt-6.12.0-160000.35.1 dlm-kmp-64kb-6.12.0-160000.35.1 dlm-kmp-azure-6.12.0-160000.35.1 dlm-kmp-default-6.12.0-160000.35.1 dlm-kmp-rt-6.12.0-160000.35.1 dtb-allwinner-6.12.0-160000.35.1 dtb-altera-6.12.0-160000.35.1 dtb-amazon-6.12.0-160000.35.1 dtb-amd-6.12.0-160000.35.1 dtb-amlogic-6.12.0-160000.35.1 dtb-apm-6.12.0-160000.35.1 dtb-apple-6.12.0-160000.35.1 dtb-arm-6.12.0-160000.35.1 dtb-broadcom-6.12.0-160000.35.1 dtb-cavium-6.12.0-160000.35.1 dtb-exynos-6.12.0-160000.35.1 dtb-freescale-6.12.0-160000.35.1 dtb-hisilicon-6.12.0-160000.35.1 dtb-lg-6.12.0-160000.35.1 dtb-marvell-6.12.0-160000.35.1 dtb-mediatek-6.12.0-160000.35.1 dtb-nvidia-6.12.0-160000.35.1 dtb-qcom-6.12.0-160000.35.1 dtb-renesas-6.12.0-160000.35.1 dtb-rockchip-6.12.0-160000.35.1 dtb-socionext-6.12.0-160000.35.1 dtb-sprd-6.12.0-160000.35.1 dtb-xilinx-6.12.0-160000.35.1 gfs2-kmp-64kb-6.12.0-160000.35.1 gfs2-kmp-azure-6.12.0-160000.35.1 gfs2-kmp-default-6.12.0-160000.35.1 gfs2-kmp-rt-6.12.0-160000.35.1 kernel-64kb-6.12.0-160000.35.1 kernel-64kb-devel-6.12.0-160000.35.1 kernel-64kb-extra-6.12.0-160000.35.1 kernel-64kb-optional-6.12.0-160000.35.1 kernel-azure-6.12.0-160000.35.1 kernel-azure-devel-6.12.0-160000.35.1 kernel-azure-extra-6.12.0-160000.35.1 kernel-azure-optional-6.12.0-160000.35.1 kernel-azure-vdso-6.12.0-160000.35.1 kernel-default-6.12.0-160000.35.1 kernel-default-base-6.12.0-160000.35.1.160000.2.16 kernel-default-devel-6.12.0-160000.35.1 kernel-default-extra-6.12.0-160000.35.1 kernel-default-optional-6.12.0-160000.35.1 kernel-default-vdso-6.12.0-160000.35.1 kernel-devel-6.12.0-160000.35.1 kernel-docs-6.12.0-160000.35.1 kernel-docs-html-6.12.0-160000.35.1 kernel-kvmsmall-6.12.0-160000.35.1 kernel-kvmsmall-devel-6.12.0-160000.35.1 kernel-kvmsmall-vdso-6.12.0-160000.35.1 kernel-macros-6.12.0-160000.35.1 kernel-obs-build-6.12.0-160000.35.1 kernel-obs-qa-6.12.0-160000.35.1 kernel-rt-6.12.0-160000.35.1 kernel-rt-devel-6.12.0-160000.35.1 kernel-rt-extra-6.12.0-160000.35.1 kernel-rt-optional-6.12.0-160000.35.1 kernel-rt-vdso-6.12.0-160000.35.1 kernel-source-6.12.0-160000.35.1 kernel-source-vanilla-6.12.0-160000.35.1 kernel-syms-6.12.0-160000.35.1 kernel-zfcpdump-6.12.0-160000.35.1 kselftests-kmp-64kb-6.12.0-160000.35.1 kselftests-kmp-azure-6.12.0-160000.35.1 kselftests-kmp-default-6.12.0-160000.35.1 kselftests-kmp-rt-6.12.0-160000.35.1 ocfs2-kmp-64kb-6.12.0-160000.35.1 ocfs2-kmp-azure-6.12.0-160000.35.1 ocfs2-kmp-default-6.12.0-160000.35.1 ocfs2-kmp-rt-6.12.0-160000.35.1 References: * https://www.suse.com/security/cve/CVE-2026-23254.html * https://www.suse.com/security/cve/CVE-2026-23303.html * https://www.suse.com/security/cve/CVE-2026-23327.html * https://www.suse.com/security/cve/CVE-2026-23438.html * https://www.suse.com/security/cve/CVE-2026-31396.html * https://www.suse.com/security/cve/CVE-2026-31401.html * https://www.suse.com/security/cve/CVE-2026-31446.html * https://www.suse.com/security/cve/CVE-2026-31448.html * https://www.suse.com/security/cve/CVE-2026-31454.html * https://www.suse.com/security/cve/CVE-2026-31455.html * https://www.suse.com/security/cve/CVE-2026-31518.html * https://www.suse.com/security/cve/CVE-2026-31546.html * https://www.suse.com/security/cve/CVE-2026-31556.html * https://www.suse.com/security/cve/CVE-2026-31562.html * https://www.suse.com/security/cve/CVE-2026-31584.html * https://www.suse.com/security/cve/CVE-2026-31645.html * https://www.suse.com/security/cve/CVE-2026-31648.html * https://www.suse.com/security/cve/CVE-2026-31655.html * https://www.suse.com/security/cve/CVE-2026-31671.html * https://www.suse.com/security/cve/CVE-2026-31683.html * https://www.suse.com/security/cve/CVE-2026-31703.html * https://www.suse.com/security/cve/CVE-2026-31774.html * https://www.suse.com/security/cve/CVE-2026-43026.html * https://www.suse.com/security/cve/CVE-2026-43030.html * https://www.suse.com/security/cve/CVE-2026-43040.html * https://www.suse.com/security/cve/CVE-2026-43063.html *https://www.suse.com/security/cve/CVE-2026-43065.html * https://www.suse.com/security/cve/CVE-2026-43066.html * https://www.suse.com/security/cve/CVE-2026-43068.html * https://www.suse.com/security/cve/CVE-2026-43109.html * https://www.suse.com/security/cve/CVE-2026-43150.html * https://www.suse.com/security/cve/CVE-2026-43184.html * https://www.suse.com/security/cve/CVE-2026-43197.html * https://www.suse.com/security/cve/CVE-2026-43332.html * https://www.suse.com/security/cve/CVE-2026-43393.html * https://www.suse.com/security/cve/CVE-2026-43394.html * https://www.suse.com/security/cve/CVE-2026-43411.html * https://www.suse.com/security/cve/CVE-2026-43455.html * https://www.suse.com/security/cve/CVE-2026-45842.html * https://www.suse.com/security/cve/CVE-2026-45846.html * https://www.suse.com/security/cve/CVE-2026-45852.html * https://www.suse.com/security/cve/CVE-2026-45856.html * https://www.suse.com/security/cve/CVE-2026-45886.html * https://www.suse.com/security/cve/CVE-2026-45898.html * https://www.suse.com/security/cve/CVE-2026-45910.html * https://www.suse.com/security/cve/CVE-2026-45932.html * https://www.suse.com/security/cve/CVE-2026-45942.html * https://www.suse.com/security/cve/CVE-2026-45970.html * https://www.suse.com/security/cve/CVE-2026-45984.html * https://www.suse.com/security/cve/CVE-2026-46021.html * https://www.suse.com/security/cve/CVE-2026-46043.html * https://www.suse.com/security/cve/CVE-2026-46083.html * https://www.suse.com/security/cve/CVE-2026-46090.html * https://www.suse.com/security/cve/CVE-2026-46094.html * https://www.suse.com/security/cve/CVE-2026-46114.html * https://www.suse.com/security/cve/CVE-2026-46159.html * https://www.suse.com/security/cve/CVE-2026-46176.html * https://www.suse.com/security/cve/CVE-2026-46181.html * https://www.suse.com/security/cve/CVE-2026-46316.html * https://www.suse.com/security/cve/CVE-2026-46317.html . This update addresses 60 vulnerabilities with 64 bug fixes for openSUSEkernel improving system security.. openSUSE update,kernel patch,security vulnerabilities,important advisory. . Severity: Important. LinuxSecurity.com Team
Several security issues were fixed in Robocode.. ========================================================================== Ubuntu Security Notice USN-8385-1 June 04, 2026 robocode vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in Robocode. Software Description: - robocode: An engaging and educational programming game Details: It was discovered that Robocode could be tricked into making network requests to attacker-controlled systems. An attacker could possibly use this issue to cause external service interaction, resulting in information disclosure. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. (CVE-2019-10648) Lim Sim Yee discovered that Robocode did not properly validate file paths in the CacheCleaner component. An attacker could possibly use this issue to delete arbitrary files. (CVE-2025-14306) Lim Sim Yee discovered that Robocode did not securely create temporary files in the AutoExtract component. An attacker could possibly use this issue to manipulate temporary files, resulting in arbitrary code execution. (CVE-2025-14307) Lim Sim Yee discovered that Robocode did not properly validate data lengths in the Buffer class. An attacker could possibly use this issue to trigger an integer overflow, resulting in arbitrary code execution. (CVE-2025-14308) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS robocode 1.9.3.9-4ubuntu0.26.04.1~esm1 Available with Ubuntu Pro Ubuntu 24.04 LTS robocode 1.9.3.9-3ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 22.04 LTS robocode 1.9.3.9-2ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 20.04 LTS robocode 1.9.3.7-1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 18.04 LTS robocode 1.9.3.1-1ubuntu0.1~esm1 Available with Ubuntu Pro Ubuntu 16.04 LTS robocode 1.9.2.5-2ubuntu0.1~esm1 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8385-1 CVE-2019-10648, CVE-2025-14306, CVE-2025-14307, CVE-2025-14308 . Multiple security weaknesses fixed in Robocode for Ubuntu 16.04 to 26.04 LTS, including critical code execution risks.. Robocode vulnerabilities, Ubuntu security issues, security update advisory. . Severity: Critical. LinuxSecurity.com Team
An update that solves 11 vulnerabilities can now be installed.. # Security update for unbound Announcement ID: SUSE-SU-2026:21913-1 Release Date: 2026-05-28T15:43:53Z Rating: important References: * bsc#1265578 * bsc#1265580 * bsc#1265581 * bsc#1265582 * bsc#1265583 * bsc#1265584 * bsc#1265585 * bsc#1265586 * bsc#1265587 * bsc#1265588 * bsc#1265589 Cross-References: * CVE-2026-32792 * CVE-2026-33278 * CVE-2026-40622 * CVE-2026-41292 * CVE-2026-42534 * CVE-2026-42923 * CVE-2026-42944 * CVE-2026-42959 * CVE-2026-42960 * CVE-2026-44390 * CVE-2026-44608 CVSS scores: * CVE-2026-32792 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32792 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Green * CVE-2026-32792 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33278 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-33278 ( NVD ): 9.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-33278 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40622 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-40622 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-40622 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-41292 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41292 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red *CVE-2026-41292 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42534 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42923 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42923 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42923 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42944 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-42944 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42944 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42959 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42960 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-42960 ( NVD ): 5.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:H/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42960 ( NVD ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H * CVE-2026-44390 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44390 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44390 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-44608 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44608 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44608 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for unbound fixes the following issues * CVE-2026-32792: Packet of death with DNSCrypt (bsc#1265583). * CVE-2026-33278: Possible remote code execution during DNSSEC validation (bsc#1265587). * CVE-2026-40622: "Ghost domain name" variant (bsc#1265581). * CVE-2026-41292: Parsing a long list of incoming EDNS options degrades performance (bsc#1265580). * CVE-2026-42534: Jostle logic bypass degrades resolution performance (bsc#1265585). * CVE-2026-42923: Degradation of service with unbounded NSEC3 hash calculations (bsc#1265589). * CVE-2026-42944: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (bsc#1265578). * CVE-2026-42959: Crash during DNSSEC validation of malicious content (bsc#1265586). * CVE-2026-42960: Possible cache poisoning attack while following delegation (bsc#1265588). * CVE-2026-44390: Unbounded name compression in certain cases causes degradation of service (bsc#1265584). * CVE-2026-44608: Use after free and crash in RPZ code (bsc#1265582). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: *SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-732=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * libunbound8-1.22.0-3.1 * unbound-anchor-1.22.0-3.1 * unbound-debugsource-1.22.0-3.1 * unbound-anchor-debuginfo-1.22.0-3.1 * libunbound8-debuginfo-1.22.0-3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32792.html * https://www.suse.com/security/cve/CVE-2026-33278.html * https://www.suse.com/security/cve/CVE-2026-40622.html * https://www.suse.com/security/cve/CVE-2026-41292.html * https://www.suse.com/security/cve/CVE-2026-42534.html * https://www.suse.com/security/cve/CVE-2026-42923.html * https://www.suse.com/security/cve/CVE-2026-42944.html * https://www.suse.com/security/cve/CVE-2026-42959.html * https://www.suse.com/security/cve/CVE-2026-42960.html * https://www.suse.com/security/cve/CVE-2026-44390.html * https://www.suse.com/security/cve/CVE-2026-44608.html * https://bugzilla.suse.com/show_bug.cgi?id=1265578 * https://bugzilla.suse.com/show_bug.cgi?id=1265580 * https://bugzilla.suse.com/show_bug.cgi?id=1265581 * https://bugzilla.suse.com/show_bug.cgi?id=1265582 * https://bugzilla.suse.com/show_bug.cgi?id=1265583 * https://bugzilla.suse.com/show_bug.cgi?id=1265584 * https://bugzilla.suse.com/show_bug.cgi?id=1265585 * https://bugzilla.suse.com/show_bug.cgi?id=1265586 * https://bugzilla.suse.com/show_bug.cgi?id=1265587 * https://bugzilla.suse.com/show_bug.cgi?id=1265588 * https://bugzilla.suse.com/show_bug.cgi?id=1265589 . Update for unbound addresses 11 issues including remote code execution and performance impacts on SUSE Linux Micro.. SUSE Linux update, unbound security patch, DNS performance issues. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.