Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 210 articles for you...
100

SUSE Linux Micro 6.2 Kernel Important Threat Fix Advisory 2026-22112-1

An update that solves 60 vulnerabilities and has four fixes can now be installed.. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:22112-1 Release Date: 2026-06-15T11:00:59Z Rating: important References: * bsc#1259884 * bsc#1260502 * bsc#1260548 * bsc#1261041 * bsc#1261603 * bsc#1261619 * bsc#1261791 * bsc#1262606 * bsc#1262615 * bsc#1262619 * bsc#1262622 * bsc#1262624 * bsc#1263006 * bsc#1263058 * bsc#1263062 * bsc#1263115 * bsc#1263180 * bsc#1263579 * bsc#1263594 * bsc#1263724 * bsc#1263794 * bsc#1263883 * bsc#1263932 * bsc#1264000 * bsc#1264040 * bsc#1264091 * bsc#1264196 * bsc#1264243 * bsc#1264245 * bsc#1264255 * bsc#1264415 * bsc#1264484 * bsc#1264609 * bsc#1264622 * bsc#1264672 * bsc#1264723 * bsc#1264765 * bsc#1265081 * bsc#1265114 * bsc#1265170 * bsc#1265186 * bsc#1265579 * bsc#1266394 * bsc#1266400 * bsc#1266696 * bsc#1266711 * bsc#1266720 * bsc#1266810 * bsc#1266816 * bsc#1266826 * bsc#1266827 * bsc#1266888 * bsc#1266889 * bsc#1266901 * bsc#1266914 * bsc#1266927 * bsc#1266972 * bsc#1267205 * bsc#1267214 * bsc#1267220 * bsc#1267531 * bsc#1267652 * bsc#1267875 * bsc#1268018 Cross-References: * CVE-2026-23254 * CVE-2026-23303 * CVE-2026-23327 * CVE-2026-23438 * CVE-2026-31396 * CVE-2026-31401 * CVE-2026-31446 * CVE-2026-31448 * CVE-2026-31454 * CVE-2026-31455 * CVE-2026-31518 * CVE-2026-31546 * CVE-2026-31556 * CVE-2026-31562 * CVE-2026-31584 * CVE-2026-31645 * CVE-2026-31648 * CVE-2026-31655 * CVE-2026-31671 * CVE-2026-31683 * CVE-2026-31703 * CVE-2026-31774 * CVE-2026-43026 * CVE-2026-43030 * CVE-2026-43040 * CVE-2026-43063 * CVE-2026-43065 * CVE-2026-43066 * CVE-2026-43068 * CVE-2026-43109 * CVE-2026-43150 * CVE-2026-43184 * CVE-2026-43197 * CVE-2026-43332 * CVE-2026-43393 * CVE-2026-43394 * CVE-2026-43411 * CVE-2026-43455 * CVE-2026-45842 * CVE-2026-45846 *CVE-2026-45852 * CVE-2026-45856 * CVE-2026-45886 * CVE-2026-45898 * CVE-2026-45910 * CVE-2026-45932 * CVE-2026-45942 * CVE-2026-45970 * CVE-2026-45984 * CVE-2026-46021 * CVE-2026-46043 * CVE-2026-46083 * CVE-2026-46090 * CVE-2026-46094 * CVE-2026-46114 * CVE-2026-46159 * CVE-2026-46176 * CVE-2026-46181 * CVE-2026-46316 * CVE-2026-46317 CVSS scores: * CVE-2026-23254 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23254 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23303 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23303 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23327 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23327 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23438 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23438 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23438 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31396 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31396 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2026-31396 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31401 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31401 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31401 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31446 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31446 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31446 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-31448 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31448 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31448 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H * CVE-2026-31454 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31454 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31454 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31455 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31455 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31455 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31518 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31518 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31518 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31546 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31546 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31546 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31556 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31556 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31556 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31562 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31562 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31562 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31584 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31584 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31584 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31645 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N *CVE-2026-31645 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L * CVE-2026-31645 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31648 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31648 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31648 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31655 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31655 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31655 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31671 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31671 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-31671 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31683 ( SUSE ): 5.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31683 ( SUSE ): 4.8 CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-31683 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31703 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31703 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31703 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31774 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31774 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-43026 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43026 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43030 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43030 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43040 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43040 ( NVD ): 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-43063 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43063 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-43065 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-43065 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L * CVE-2026-43065 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43066 ( SUSE ): 5.6 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43066 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43066 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43068 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43068 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-43068 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43109 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43109 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H * CVE-2026-43109 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43150 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43150 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43150 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43184 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-43184 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2026-43184 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-43197 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43197 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-43332 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43332 ( SUSE ): 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43332 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43393 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43393 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43393 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43394 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43394 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43394 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43411 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43411 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43411 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43455 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43455 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-45842 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L * CVE-2026-45842 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H * CVE-2026-45846 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-45846 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-45852 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45852 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45852 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45856 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-45856 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2026-45856 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-45886 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N *CVE-2026-45886 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45898 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45898 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45898 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45910 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45910 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45910 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45932 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45932 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45932 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H * CVE-2026-45942 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45942 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-45942 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45970 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45970 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45970 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45984 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45984 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45984 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46021 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46021 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46021 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46043 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46043 ( SUSE ): 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46043 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-46083 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46090 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46090 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46094 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-46094 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-46114 ( SUSE ): 5.3 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-46114 ( SUSE ): 5.4 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2026-46114 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-46159 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46159 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46176 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46176 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46181 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46181 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46316 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46316 ( NVD ): 9.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46317 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46317 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.2 An update that solves 60 vulnerabilities and has four fixes can now be installed. ## Description: The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2026-23254: net: gro: fix outer network offset (bsc#1259884). * CVE-2026-23303: smb: client: Don't log plaintext credentials in cifs_set_cifscreds (bsc#1260502). *CVE-2026-23327: cxl/mbox: validate payload size before accessing contents in cxl_payload_from_user_allowed() (bsc#1260548). * CVE-2026-23438: net: mvpp2: guard flow control update with global_tx_fc in buffer switching (bsc#1261619). * CVE-2026-31396: net: macb: fix use-after-free access to PTP clock (bsc#1261791). * CVE-2026-31401: HID: bpf: prevent buffer overflow in hid_hw_request (bsc#1261603). * CVE-2026-31446: ext4: fix use-after-free in update_super_work when racing with umount (bsc#1262619). * CVE-2026-31448: ext4: avoid infinite loops caused by residual data (bsc#1262622). * CVE-2026-31454: xfs: save ailp before dropping the AIL lock in push callbacks (bsc#1262624). * CVE-2026-31455: xfs: stop reclaim before pushing AIL during unmount (bsc#1262615). * CVE-2026-31518: esp: fix skb leak with espintcp and async crypto (bsc#1262606). * CVE-2026-31546: net: bonding: fix NULL deref in bond_debug_rlb_hash_show (bsc#1263006). * CVE-2026-31556: xfs: scrub: unlock dquot before early return in quota scrub (bsc#1263062). * CVE-2026-31562: drm/mediatek: dsi: Store driver data before invoking mipi_dsi_host_register (bsc#1263058). * CVE-2026-31584: media: mediatek: vcodec: fix use-after-free in encoder release path (bsc#1263180). * CVE-2026-31645: net: lan966x: fix page pool leak in error paths (bsc#1263794). * CVE-2026-31648: mm: filemap: fix nr_pages calculation overflow in filemap_map_pages() (bsc#1263579). * CVE-2026-31655: pmdomain: imx8mp-blk-ctrl: Keep the NOC_HDCP clock enabled (bsc#1263724). * CVE-2026-31671: xfrm_user: fix info leak in build_report() (bsc#1263115). * CVE-2026-31683: batman-adv: avoid OGM aggregation when skb tailroom is insufficient (bsc#1263594). * CVE-2026-31703: writeback: Fix use after free in inode_switch_wbs_work_fn() (bsc#1263883). * CVE-2026-31774: io_uring/net: fix slab-out-of-bounds read in io_bundle_nbufs() (bsc#1264040). * CVE-2026-43026: netfilter: ctnetlink: zeroexpect NAT fields when CTA_EXPECT_NAT absent (bsc#1263932). * CVE-2026-43030: bpf: Fix regsafe() for pointers to packet (bsc#1264000). * CVE-2026-43040: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak (bsc#1264091). * CVE-2026-43063: xfs: don't irele after failing to iget in xfs_attri_recover_work (bsc#1264196). * CVE-2026-43065: ext4: always drain queued discard work in ext4_mb_release() (bsc#1264243). * CVE-2026-43066: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths (bsc#1264245). * CVE-2026-43068: ext4: avoid allocate block from corrupted group in ext4_mb_find_by_goal() (bsc#1264255). * CVE-2026-43109: x86: shadow stacks: proper error handling for mmap lock (bsc#1264484). * CVE-2026-43150: perf/arm-cmn: Reject unsupported hardware configurations (bsc#1264415). * CVE-2026-43184: rnbd-srv: Zero the rsp buffer before using it (bsc#1264622). * CVE-2026-43197: netconsole: avoid OOB reads, msg is not nul-terminated (bsc#1264609). * CVE-2026-43332: thermal: core: Fix thermal zone device registration error path (bsc#1265114). * CVE-2026-43393: btrfs: fix chunk map leak in btrfs_map_block() after btrfs_chunk_map_num_copies() (bsc#1264723). * CVE-2026-43394: nfsd: Fix cred ref leak in nfsd_nl_listener_set_doit() (bsc#1265081). * CVE-2026-43411: tipc: fix divide-by-zero in tipc_sk_filter_connect() (bsc#1264672). * CVE-2026-43455: net: mctp: Ensure keys maintain only one ref to corresponding dev (bsc#1264765). * CVE-2026-45842: slip: reject VJ receive packets on instances with no rstate array (bsc#1266400). * CVE-2026-45846: bareudp: fix NULL pointer dereference in bareudp_fill_metadata_dst() (bsc#1266394). * CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). * CVE-2026-45856: RDMA/uverbs: Validate wqe_size before using it in ib_uverbs_post_send (bsc#1266720). * CVE-2026-45886: bpf: Fix bpf_xdp_store_bytes protofor read-only arg (bsc#1266810). * CVE-2026-45898: RDMA/iwcm: Fix workqueue list corruption by removing work_list (bsc#1266888). * CVE-2026-45910: RDMA/rxe: Fix race condition in QP timer handlers (bsc#1266889). * CVE-2026-45932: bpf: Fix tcx/netkit detach permissions when prog fd isn't given (bsc#1266827). * CVE-2026-45942: ext4: fix e4b bitmap inconsistency reports (bsc#1266914). * CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). * CVE-2026-45984: gfs2: Fix use-after-free in iomap inline data write path (bsc#1267214). * CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues (bsc#1267220). * CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). * CVE-2026-46083: spi: fix resource leaks on device setup failure (bsc#1266696). * CVE-2026-46090: ALSA: aloop: Use guard() for spin locks (bsc#1267531). * CVE-2026-46094: ext4: fix bounds check in check_xattrs() to prevent out-of- bounds access (bsc#1266927). * CVE-2026-46114: RDMA/rxe: Reject non-8-byte ATOMIC_WRITE payloads (bsc#1266972). * CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). * CVE-2026-46176: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init() (bsc#1266816). * CVE-2026-46181: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() (bsc#1266826). The following non security issues were fixed: * accel/ivpu: Add bounds checks for firmware log indices (git-fixes). * accel/ivpu: Add buffer overflow check in MS get_info_ioctl (git-fixes). * ALSA: PCM: Fix wait queue list corruption in snd_pcm_drain() on linked streams (git-fixes). * ALSA: seq: dummy: fix UMP event stack overread (git-fixes). * arm64: tlb: Allow XZR argument to TLBI ops (git-fixes). * arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes). * Bluetooth: bnep: reject short frames before parsing (git-fixes). *Bluetooth: hci_sync: reject oversized Broadcast Announcement prepend (git- fixes). * Bluetooth: ISO: Fix not releasing hdev reference on iso_conn_big_sync (git- fixes). * Bluetooth: MGMT: Fix backward compatibility with userspace (git-fixes). * Bluetooth: MGMT: validate advertising TLV before type checks (git-fixes). * Bluetooth: RFCOMM: hold listener socket in rfcomm_connect_ind() (git-fixes). * Bluetooth: RFCOMM: validate skb length in MCC handlers (git-fixes). * config: remove DEBUG_FS_DISALLOW_MOUNT * debugfs: Remove broken no-mount mode (bsc#1265186). * debugfs: Fix default access mode config check (bsc#1265186). * debugfs: Remove broken no-mount mode (bsc#1265186). * debugfs: Remove redundant access mode checks (bsc#1265186). * drm/amd/display: Bound VBIOS record-chain walk loops (git-fixes). * drm/amd/display: Clamp HDMI HDCP2 rx_id_list read to buffer size (git- fixes). * drm/amd/display: Fix NULL deref and buffer over-read in SDP debugfs (git- fixes). * drm/amd/display: Reject gpio_bitshift > = 32 in bios_parser_get_gpio_pin_info() (git-fixes). * drm/amd/display: Use krealloc_array() in dal_vector_reserve() (git-fixes). * drm/amdkfd: Fix buffer overflow in SDMA queue checkpoint/restore on GFX11 (git-fixes). * drm/amdkfd: fix NULL dereference in get_queue_ids() (git-fixes). * drm/imx: Fix three kernel-doc warnings in dcss-scaler.c (git-fixes). * drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups (git-fixes). * drm/xe: Clear pending_disable before signaling suspend fence (git-fixes). * ima: return error early if file xattr cannot be changed (bsc#1261041). * Input: atkbd - skip deactivate for HONOR BCC-N's internal keyboard (git- fixes). * KVM: arm64: Reassign nested_mmus array behind mmu_lock (git-fixes). * KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation (git-fixes). * KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry (git-fixes). *KVM: SEV: Check PSC request indices against the actual size of the buffer (git-fixes). * KVM: SEV: Compute the correct max length of the in-GHCB scratch area (git- fixes). * KVM: SEV: Don't explicitly pass PSC buffer to snp_begin_psc() (git-fixes). * KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). * KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). * KVM: SEV: Reject MMIO requests larger than 8 bytes with GHCB v2+ (git- fixes). * KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use (git-fixes). * KVM: SEV: Use READ_ONCE() when reading entries/indices from PSC buffer (git- fixes). * KVM: SEV: Use the size of the PSC header as the minimum size for PSC requests (git-fixes). * KVM: SEV: WARN if KVM attempts to setup scratch area with min_len==0 (git- fixes). * KVM: SVM: Convert plain error code numbers to defines (git-fixes). * KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). * KVM: SVM: Provide helpers to set the error code (git-fixes). * KVM: x86: Consolidate SEV-ES MMIO emulation into a single public API (git- fixes). * KVM: x86: Dedup kvm_sev_es_mmio_{read,write}() (git-fixes). * KVM: x86: Harden SEV-ES MMIO against on-stack use-after-free (git-fixes). * KVM: x86: Move MMIO write tracing into vcpu_mmio_write() (git-fixes). * KVM: x86: Open code handling of completed MMIO reads in emulator_read_write() (git-fixes). * KVM: x86: Open code read vs. write userspace MMIO exits in emulator_read_write() (git-fixes). * KVM: x86: Trace unsatisfied MMIO reads on a per-page basis (git-fixes). * KVM: x86: Use local MMIO fragment variable to clean up emulator_read_write() (git-fixes). * mmc: core: Fix host controller programming for fixed driver type (git- fixes). * mmc: dw_mmc-rockchip: Add missing private data for very old controllers (git-fixes). * mmc: litex_mmc: Set mandatory idle clocks before CMD0 (git-fixes). * mmc: litex_mmc: Use DIV_ROUND_UP for moreaccurate clock calculation (git- fixes). * mmc: renesas_sdhi: Add OF entry for RZ/G2H SoC (git-fixes). * mmc: sdhci: add signal voltage switch in sdhci_resume_host (git-fixes). * wifi: mac80211: limit injected antenna index in ieee80211_parse_tx_radiotap (git-fixes). * wifi: nl80211: reject oversized EMA RNR lists (git-fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-929=1 ## Package List: * SUSE Linux Micro 6.2 (noarch) * kernel-macros-6.12.0-160000.35.1 * kernel-devel-6.12.0-160000.35.1 * kernel-source-6.12.0-160000.35.1 * SUSE Linux Micro 6.2 (aarch64 ppc64le x86_64) * kernel-default-base-6.12.0-160000.35.1.160000.2.16 * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-6.12.0-160000.35.1 * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * kernel-default-extra-6.12.0-160000.35.1 * kernel-default-debuginfo-6.12.0-160000.35.1 * kernel-default-devel-6.12.0-160000.35.1 * kernel-default-debugsource-6.12.0-160000.35.1 * kernel-default-extra-debuginfo-6.12.0-160000.35.1 * SUSE Linux Micro 6.2 (x86_64) * kernel-default-devel-debuginfo-6.12.0-160000.35.1 * kernel-rt-devel-debuginfo-6.12.0-160000.35.1 * kernel-rt-livepatch-6.12.0-160000.35.1 * SUSE Linux Micro 6.2 (ppc64le s390x x86_64) * kernel-default-livepatch-6.12.0-160000.35.1 * SUSE Linux Micro 6.2 (aarch64 nosrc x86_64) * kernel-rt-6.12.0-160000.35.1 * SUSE Linux Micro 6.2 (aarch64 x86_64) * kernel-rt-debuginfo-6.12.0-160000.35.1 * kernel-rt-devel-6.12.0-160000.35.1 * kernel-rt-debugsource-6.12.0-160000.35.1 * SUSE Linux Micro 6.2 (aarch64 nosrc) * kernel-64kb-6.12.0-160000.35.1 * SUSE Linux Micro6.2 (aarch64) * kernel-64kb-debugsource-6.12.0-160000.35.1 * kernel-64kb-devel-6.12.0-160000.35.1 * kernel-64kb-debuginfo-6.12.0-160000.35.1 ## References: * https://www.suse.com/security/cve/CVE-2026-23254.html * https://www.suse.com/security/cve/CVE-2026-23303.html * https://www.suse.com/security/cve/CVE-2026-23327.html * https://www.suse.com/security/cve/CVE-2026-23438.html * https://www.suse.com/security/cve/CVE-2026-31396.html * https://www.suse.com/security/cve/CVE-2026-31401.html * https://www.suse.com/security/cve/CVE-2026-31446.html * https://www.suse.com/security/cve/CVE-2026-31448.html * https://www.suse.com/security/cve/CVE-2026-31454.html * https://www.suse.com/security/cve/CVE-2026-31455.html * https://www.suse.com/security/cve/CVE-2026-31518.html * https://www.suse.com/security/cve/CVE-2026-31546.html * https://www.suse.com/security/cve/CVE-2026-31556.html * https://www.suse.com/security/cve/CVE-2026-31562.html * https://www.suse.com/security/cve/CVE-2026-31584.html * https://www.suse.com/security/cve/CVE-2026-31645.html * https://www.suse.com/security/cve/CVE-2026-31648.html * https://www.suse.com/security/cve/CVE-2026-31655.html * https://www.suse.com/security/cve/CVE-2026-31671.html * https://www.suse.com/security/cve/CVE-2026-31683.html * https://www.suse.com/security/cve/CVE-2026-31703.html * https://www.suse.com/security/cve/CVE-2026-31774.html * https://www.suse.com/security/cve/CVE-2026-43026.html * https://www.suse.com/security/cve/CVE-2026-43030.html * https://www.suse.com/security/cve/CVE-2026-43040.html * https://www.suse.com/security/cve/CVE-2026-43063.html * https://www.suse.com/security/cve/CVE-2026-43065.html * https://www.suse.com/security/cve/CVE-2026-43066.html * https://www.suse.com/security/cve/CVE-2026-43068.html * https://www.suse.com/security/cve/CVE-2026-43109.html * https://www.suse.com/security/cve/CVE-2026-43150.html * https://www.suse.com/security/cve/CVE-2026-43184.html *https://www.suse.com/security/cve/CVE-2026-43197.html * https://www.suse.com/security/cve/CVE-2026-43332.html * https://www.suse.com/security/cve/CVE-2026-43393.html * https://www.suse.com/security/cve/CVE-2026-43394.html * https://www.suse.com/security/cve/CVE-2026-43411.html * https://www.suse.com/security/cve/CVE-2026-43455.html * https://www.suse.com/security/cve/CVE-2026-45842.html * https://www.suse.com/security/cve/CVE-2026-45846.html * https://www.suse.com/security/cve/CVE-2026-45852.html * https://www.suse.com/security/cve/CVE-2026-45856.html * https://www.suse.com/security/cve/CVE-2026-45886.html * https://www.suse.com/security/cve/CVE-2026-45898.html * https://www.suse.com/security/cve/CVE-2026-45910.html * https://www.suse.com/security/cve/CVE-2026-45932.html * https://www.suse.com/security/cve/CVE-2026-45942.html * https://www.suse.com/security/cve/CVE-2026-45970.html * https://www.suse.com/security/cve/CVE-2026-45984.html * https://www.suse.com/security/cve/CVE-2026-46021.html * https://www.suse.com/security/cve/CVE-2026-46043.html * https://www.suse.com/security/cve/CVE-2026-46083.html * https://www.suse.com/security/cve/CVE-2026-46090.html * https://www.suse.com/security/cve/CVE-2026-46094.html * https://www.suse.com/security/cve/CVE-2026-46114.html * https://www.suse.com/security/cve/CVE-2026-46159.html * https://www.suse.com/security/cve/CVE-2026-46176.html * https://www.suse.com/security/cve/CVE-2026-46181.html * https://www.suse.com/security/cve/CVE-2026-46316.html * https://www.suse.com/security/cve/CVE-2026-46317.html * https://bugzilla.suse.com/show_bug.cgi?id=1259884 * https://bugzilla.suse.com/show_bug.cgi?id=1260502 * https://bugzilla.suse.com/show_bug.cgi?id=1260548 * https://bugzilla.suse.com/show_bug.cgi?id=1261041 * https://bugzilla.suse.com/show_bug.cgi?id=1261603 * https://bugzilla.suse.com/show_bug.cgi?id=1261619 * https://bugzilla.suse.com/show_bug.cgi?id=1261791 *https://bugzilla.suse.com/show_bug.cgi?id=1262606 * https://bugzilla.suse.com/show_bug.cgi?id=1262615 * https://bugzilla.suse.com/show_bug.cgi?id=1262619 * https://bugzilla.suse.com/show_bug.cgi?id=1262622 * https://bugzilla.suse.com/show_bug.cgi?id=1262624 * https://bugzilla.suse.com/show_bug.cgi?id=1263006 * https://bugzilla.suse.com/show_bug.cgi?id=1263058 * https://bugzilla.suse.com/show_bug.cgi?id=1263062 * https://bugzilla.suse.com/show_bug.cgi?id=1263115 * https://bugzilla.suse.com/show_bug.cgi?id=1263180 * https://bugzilla.suse.com/show_bug.cgi?id=1263579 * https://bugzilla.suse.com/show_bug.cgi?id=1263594 * https://bugzilla.suse.com/show_bug.cgi?id=1263724 * https://bugzilla.suse.com/show_bug.cgi?id=1263794 * https://bugzilla.suse.com/show_bug.cgi?id=1263883 * https://bugzilla.suse.com/show_bug.cgi?id=1263932 * https://bugzilla.suse.com/show_bug.cgi?id=1264000 * https://bugzilla.suse.com/show_bug.cgi?id=1264040 * https://bugzilla.suse.com/show_bug.cgi?id=1264091 * https://bugzilla.suse.com/show_bug.cgi?id=1264196 * https://bugzilla.suse.com/show_bug.cgi?id=1264243 * https://bugzilla.suse.com/show_bug.cgi?id=1264245 * https://bugzilla.suse.com/show_bug.cgi?id=1264255 * https://bugzilla.suse.com/show_bug.cgi?id=1264415 * https://bugzilla.suse.com/show_bug.cgi?id=1264484 * https://bugzilla.suse.com/show_bug.cgi?id=1264609 * https://bugzilla.suse.com/show_bug.cgi?id=1264622 * https://bugzilla.suse.com/show_bug.cgi?id=1264672 * https://bugzilla.suse.com/show_bug.cgi?id=1264723 * https://bugzilla.suse.com/show_bug.cgi?id=1264765 * https://bugzilla.suse.com/show_bug.cgi?id=1265081 * https://bugzilla.suse.com/show_bug.cgi?id=1265114 * https://bugzilla.suse.com/show_bug.cgi?id=1265170 * https://bugzilla.suse.com/show_bug.cgi?id=1265186 * https://bugzilla.suse.com/show_bug.cgi?id=1265579 * https://bugzilla.suse.com/show_bug.cgi?id=1266394 * https://bugzilla.suse.com/show_bug.cgi?id=1266400 *https://bugzilla.suse.com/show_bug.cgi?id=1266696 * https://bugzilla.suse.com/show_bug.cgi?id=1266711 * https://bugzilla.suse.com/show_bug.cgi?id=1266720 * https://bugzilla.suse.com/show_bug.cgi?id=1266810 * https://bugzilla.suse.com/show_bug.cgi?id=1266816 * https://bugzilla.suse.com/show_bug.cgi?id=1266826 * https://bugzilla.suse.com/show_bug.cgi?id=1266827 * https://bugzilla.suse.com/show_bug.cgi?id=1266888 * https://bugzilla.suse.com/show_bug.cgi?id=1266889 * https://bugzilla.suse.com/show_bug.cgi?id=1266901 * https://bugzilla.suse.com/show_bug.cgi?id=1266914 * https://bugzilla.suse.com/show_bug.cgi?id=1266927 * https://bugzilla.suse.com/show_bug.cgi?id=1266972 * https://bugzilla.suse.com/show_bug.cgi?id=1267205 * https://bugzilla.suse.com/show_bug.cgi?id=1267214 * https://bugzilla.suse.com/show_bug.cgi?id=1267220 * https://bugzilla.suse.com/show_bug.cgi?id=1267531 * https://bugzilla.suse.com/show_bug.cgi?id=1267652 * https://bugzilla.suse.com/show_bug.cgi?id=1267875 * https://bugzilla.suse.com/show_bug.cgi?id=1268018 . A crucial security update from SUSE addresses 60 vulnerabilities with fixes for kernel issues, emphasizing installation urgency.. SUSE Linux Micro,kernel update,security vulnerabilities,patch management,system security. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 16, 2026 Important SuSE
202

openSUSE java-17-openj9 Important Security Threat Fix Advisory 2025-0067-1

An update that solves 47 vulnerabilities and has three fixes is now available.. openSUSE Security Update: Security update for java-17-openj9 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2025:0067-1 Rating: important References: #1204468 #1204471 #1204472 #1204473 #1204475 #1204480 #1204703 #1206549 #1207246 #1207248 #1207922 #1210628 #1210631 #1210632 #1210634 #1210635 #1210636 #1210637 #1211615 #1213470 #1213473 #1213474 #1213475 #1213479 #1213481 #1213482 #1216339 #1216374 #1217214 #1218903 #1218905 #1218907 #1218908 #1218909 #1218911 #1222979 #1222983 #1222986 #1222987 #1228046 #1228047 #1228048 #1228051 #1228052 #1231702 #1231711 #1231716 #1231719 #1236278 #1236804 Cross-References: CVE-2022-21618 CVE-2022-21619 CVE-2022-21624 CVE-2022-21626 CVE-2022-21628 CVE-2022-3676 CVE-2022-39399 CVE-2023-21835 CVE-2023-21843 CVE-2023-21930 CVE-2023-21937 CVE-2023-21938 CVE-2023-21939 CVE-2023-21954 CVE-2023-21967 CVE-2023-21968 CVE-2023-22006 CVE-2023-22025 CVE-2023-22036 CVE-2023-22041 CVE-2023-22044 CVE-2023-22045 CVE-2023-22049 CVE-2023-22081 CVE-2023-25193 CVE-2023-2597 CVE-2023-5676 CVE-2024-20918 CVE-2024-20919 CVE-2024-20921 CVE-2024-20932 CVE-2024-20945 CVE-2024-20952 CVE-2024-21011 CVE-2024-21012 CVE-2024-21068 CVE-2024-21094 CVE-2024-21131 CVE-2024-21138 CVE-2024-21140 CVE-2024-21145 CVE-2024-21147 CVE-2024-21208 CVE-2024-21210 CVE-2024-21217 CVE-2024-21235 CVE-2025-21502 CVSS scores: CVE-2022-21618 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21619 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21624 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21626 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-21628 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-3676 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2022-39399 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21835 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2023-21843 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21930 (SUSE): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2023-21937 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21938 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21939 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-21954 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2023-21967 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-21968 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-22006 (SUSE): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N CVE-2023-22025 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-22036 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2023-22041 (SUSE): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2023-22044 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2023-22045 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2023-22049 (SUSE):3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2023-22081 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2023-25193 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-2597 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2023-5676 (SUSE): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2024-20918 (SUSE): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2024-20919 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2024-20921 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2024-20932 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2024-20945 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2024-20952 (SUSE): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2024-21011 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2024-21012 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2024-21068 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2024-21094 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2024-21131 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2024-21138 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2024-21140 (SUSE): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2024-21145 (SUSE): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2024-21147 (SUSE): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2024-21208 (SUSE): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2024-21210 (SUSE): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N CVE-2024-21217 (SUSE): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2024-21235 (SUSE): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N CVE-2025-21502 (SUSE): 6.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N Affected Products: openSUSE Backports SLE-15-SP6 ______________________________________________________________________________ An update that solves 47 vulnerabilities and has three fixes is now available. Description: This update for java-17-openj9 fixes the following issues: - Update to OpenJDK 17.0.14 with OpenJ9 0.49.0 virtual machine - Including Oracle October 2024 and January 2025 CPU changes * CVE-2024-21208 (boo#1231702), CVE-2024-21210 (boo#1231711), CVE-2024-21217 (boo#1231716), CVE-2024-21235 (boo#1231719), CVE-2025-21502 (boo#1236278) * OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.49/ - Update to OpenJDK 17.0.12 with OpenJ9 0.46.0 virtual machine - Including Oracle July 2024 CPU changes * CVE-2024-21131 (boo#1228046), CVE-2024-21138 (boo#1228047), CVE-2024-21140 (boo#1228048), CVE-2024-21147 (boo#1228052), CVE-2024-21145 (boo#1228051) * OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.46/ - Update to OpenJDK 17.0.11 with OpenJ9 0.44.0 virtual machine - Including Oracle April 2024 CPU changes * CVE-2024-21012 (boo#1222987), CVE-2024-21094 (boo#1222986), CVE-2024-21011 (boo#1222979), CVE-2024-21068 (boo#1222983) * OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.44/ - Update to OpenJDK 17.0.10 with OpenJ9 0.43.0 virtual machine - Including Oracle January 2024 CPU changes * CVE-2024-20918 (boo#1218907), CVE-2024-20919 (boo#1218903), CVE-2024-20921 (boo#1218905), CVE-2024-20932 (boo#1218908), CVE-2024-20945 (boo#1218909), CVE-2024-20952 (boo#1218911) * OpenJ9 changes, seehttps://www.eclipse.org/openj9/docs/version0.43/ - Update to OpenJDK 17.0.9 with OpenJ9 0.41.0 virtual machine - Including Oracle October 2023 CPU changes * CVE-2023-22081, boo#1216374 * CVE-2023-22025, boo#1216339 - Including Openj9 0.41.0 fixes of CVE-2023-5676, boo#1217214 * For other OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.41 - Update to OpenJDK 17.0.8.1 with OpenJ9 0.40.0 virtual machine * JDK-8313765: Invalid CEN header (invalid zip64 extra data field size) - Update to OpenJDK 17.0.8 with OpenJ9 0.40.0 virtual machine - Including Oracle July 2023 CPU changes * CVE-2023-22006 (boo#1213473), CVE-2023-22036 (boo#1213474), CVE-2023-22041 (boo#1213475), CVE-2023-22044 (boo#1213479), CVE-2023-22045 (boo#1213481), CVE-2023-22049 (boo#1213482), CVE-2023-25193 (boo#1207922) * OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.40 - Update to OpenJDK 17.0.7 with OpenJ9 0.38.0 virtual machine - Including Oracle April 2023 CPU changes * CVE-2023-21930 (boo#1210628), CVE-2023-21937 (boo#1210631), CVE-2023-21938 (boo#1210632), CVE-2023-21939 (boo#1210634), CVE-2023-21954 (boo#1210635), CVE-2023-21967 (boo#1210636), CVE-2023-21968 (boo#1210637) * OpenJ9 specific vulnerability: CVE-2023-2597 (boo#1211615) * OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.38 - Update to OpenJDK 17.0.6 with OpenJ9 0.36.0 virtual machine * including Oracle January 2023 CPU changes + CVE-2023-21835, boo#1207246 + CVE-2023-21843, boo#1207248 * OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.36 - Update to OpenJDK 17.0.5 with OpenJ9 0.35.0 virtual machine * Including Oracle October 2022 CPU changes CVE-2022-21618 (boo#1204468), CVE-2022-21619 (boo#1204473), CVE-2022-21626 (boo#1204471), CVE-2022-21624 (boo#1204475), CVE-2022-21628 (boo#1204472), CVE-2022-39399 (boo#1204480) * Fixes OpenJ9vulnerability boo#1204703, CVE-2022-3676 * OpenJ9 changes, see https://www.eclipse.org/openj9/docs/version0.35 Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP6: zypper in -t patch openSUSE-2025-67=1 Package List: - openSUSE Backports SLE-15-SP6 (aarch64 ppc64le s390x x86_64): java-17-openj9-17.0.14.0-bp156.3.3.1 java-17-openj9-demo-17.0.14.0-bp156.3.3.1 java-17-openj9-devel-17.0.14.0-bp156.3.3.1 java-17-openj9-headless-17.0.14.0-bp156.3.3.1 java-17-openj9-jmods-17.0.14.0-bp156.3.3.1 java-17-openj9-src-17.0.14.0-bp156.3.3.1 - openSUSE Backports SLE-15-SP6 (noarch): java-17-openj9-javadoc-17.0.14.0-bp156.3.3.1 References: https://www.suse.com/security/cve/CVE-2022-21618.html https://www.suse.com/security/cve/CVE-2022-21619.html https://www.suse.com/security/cve/CVE-2022-21624.html https://www.suse.com/security/cve/CVE-2022-21626.html https://www.suse.com/security/cve/CVE-2022-21628.html https://www.suse.com/security/cve/CVE-2022-3676.html https://www.suse.com/security/cve/CVE-2022-39399.html https://www.suse.com/security/cve/CVE-2023-21835.html https://www.suse.com/security/cve/CVE-2023-21843.html https://www.suse.com/security/cve/CVE-2023-21930.html https://www.suse.com/security/cve/CVE-2023-21937.html https://www.suse.com/security/cve/CVE-2023-21938.html https://www.suse.com/security/cve/CVE-2023-21939.html https://www.suse.com/security/cve/CVE-2023-21954.html https://www.suse.com/security/cve/CVE-2023-21967.html https://www.suse.com/security/cve/CVE-2023-21968.html https://www.suse.com/security/cve/CVE-2023-22006.html https://www.suse.com/security/cve/CVE-2023-22025.html https://www.suse.com/security/cve/CVE-2023-22036.html https://www.suse.com/security/cve/CVE-2023-22041.html https://www.suse.com/security/cve/CVE-2023-22044.html https://www.suse.com/security/cve/CVE-2023-22045.html https://www.suse.com/security/cve/CVE-2023-22049.html https://www.suse.com/security/cve/CVE-2023-22081.html https://www.suse.com/security/cve/CVE-2023-25193.html https://www.suse.com/security/cve/CVE-2023-2597.html https://www.suse.com/security/cve/CVE-2023-5676.html https://www.suse.com/security/cve/CVE-2024-20918.html https://www.suse.com/security/cve/CVE-2024-20919.html https://www.suse.com/security/cve/CVE-2024-20921.html https://www.suse.com/security/cve/CVE-2024-20932.html https://www.suse.com/security/cve/CVE-2024-20945.html https://www.suse.com/security/cve/CVE-2024-20952.html https://www.suse.com/security/cve/CVE-2024-21011.html https://www.suse.com/security/cve/CVE-2024-21012.html https://www.suse.com/security/cve/CVE-2024-21068.html https://www.suse.com/security/cve/CVE-2024-21094.html https://www.suse.com/security/cve/CVE-2024-21131.html https://www.suse.com/security/cve/CVE-2024-21138.html https://www.suse.com/security/cve/CVE-2024-21140.html https://www.suse.com/security/cve/CVE-2024-21145.html https://www.suse.com/security/cve/CVE-2024-21147.html https://www.suse.com/security/cve/CVE-2024-21208.html https://www.suse.com/security/cve/CVE-2024-21210.html https://www.suse.com/security/cve/CVE-2024-21217.html https://www.suse.com/security/cve/CVE-2024-21235.html https://www.suse.com/security/cve/CVE-2025-21502.html https://bugzilla.suse.com/1204468 https://bugzilla.suse.com/1204471 https://bugzilla.suse.com/1204472 https://bugzilla.suse.com/1204473 https://bugzilla.suse.com/1204475 https://bugzilla.suse.com/1204480 https://bugzilla.suse.com/1204703 https://bugzilla.suse.com/1206549 https://bugzilla.suse.com/1207246 https://bugzilla.suse.com/1207248 https://bugzilla.suse.com/1207922 https://bugzilla.suse.com/1210628 https://bugzilla.suse.com/1210631 https://bugzilla.suse.com/1210632 https://bugzilla.suse.com/1210634 https://bugzilla.suse.com/1210635 https://bugzilla.suse.com/1210636 https://bugzilla.suse.com/1210637 https://bugzilla.suse.com/1211615 https://bugzilla.suse.com/1213470 https://bugzilla.suse.com/1213473 https://bugzilla.suse.com/1213474 https://bugzilla.suse.com/1213475 https://bugzilla.suse.com/1213479 https://bugzilla.suse.com/1213481 https://bugzilla.suse.com/1213482 https://bugzilla.suse.com/1216339 https://bugzilla.suse.com/1216374 https://bugzilla.suse.com/1217214 https://bugzilla.suse.com/1218903 https://bugzilla.suse.com/1218905 https://bugzilla.suse.com/1218907 https://bugzilla.suse.com/1218908 https://bugzilla.suse.com/1218909 https://bugzilla.suse.com/1218911 https://bugzilla.suse.com/1222979 https://bugzilla.suse.com/1222983 https://bugzilla.suse.com/1222986 https://bugzilla.suse.com/1222987 https://bugzilla.suse.com/1228046 https://bugzilla.suse.com/1228047 https://bugzilla.suse.com/1228048 https://bugzilla.suse.com/1228051 https://bugzilla.suse.com/1228052 https://bugzilla.suse.com/1231702 https://bugzilla.suse.com/1231711 https://bugzilla.suse.com/1231716 https://bugzilla.suse.com/1231719 https://bugzilla.suse.com/1236278 https://bugzilla.suse.com/1236804 . This update addresses 47 security issues in java-17-openj9 on openSUSE, improving system integrity and safety.. openSUSE Security Update, Java 17 OpenJ9, Important Update, System Vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 11, 2026 Important OpenSUSE
202

openSUSE vorbis-tools Moderate Buffer Underflow Fix Advisory 2026-20891-1

An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for vorbis-tools ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20891-1 Rating: moderate References: * bsc#1265361 Cross-References: * CVE-2026-34253 CVSS scores: * CVE-2026-34253 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-34253 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for vorbis-tools fixes the following issues: Changes in vorbis-tools: - CVE-2026-34253: Fix buffer underflow in the `ogg123` utility in function `remotethread` of `remote.c` (bsc#1265361): Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-packagehub-293=1 Package List: - openSUSE Leap 16.0: vorbis-tools-1.4.2-bp160.2.1 vorbis-tools-lang-1.4.2-bp160.2.1 References: * https://www.suse.com/security/cve/CVE-2026-34253.html . Explore the moderate security advisory for vorbis-tools fixing buffer underflow in openSUSE Leap 16.0.. openSUSE, vorbis-tools, buffer underflow, security update, threat mitigation. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jun 03, 2026 moderate OpenSUSE
89

Fedora 43 mingw-objfw Major Buffer Overflow Resolution 2026-67762cee82

Update to 1.5.4. Fixes a buffer overflow caused by integer promotion rules in OFBMPImageFormatHandler and OFQOIImageFormatHandler. Update to 1.5.3. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-67762cee82 2026-06-01 01:00:49.844245+00:00 -------------------------------------------------------------------------------- Name : mingw-objfw Product : Fedora 43 Version : 1.5.4 Release : 1.fc43 URL : https://objfw.nil.im Summary : MinGW port of ObjFW Description : ObjFW is a portable, lightweight framework for the Objective-C language. It enables you to write an application in Objective-C that will run on any platform supported by ObjFW without having to worry about differences between operating systems or various frameworks you would otherwise need if you want to be portable. It supports all modern Objective-C features when using Clang, but is also compatible with GCC \u2265 4.6 to allow maximum portability. ObjFW also comes with its own lightweight and extremely fast Objective-C runtime, which in real world use cases was found to be significantly faster than both GNU's and Apple's runtime. -------------------------------------------------------------------------------- Update Information: Update to 1.5.4. Fixes a buffer overflow caused by integer promotion rules in OFBMPImageFormatHandler and OFQOIImageFormatHandler. Update to 1.5.3 -------------------------------------------------------------------------------- ChangeLog: * Sat May 23 2026 Jonathan Schleifer - 1.5.4-1 - Update to 1.5.4 * Wed May 20 2026 Jonathan Schleifer - 1.5.3-1 - Update to 1.5.3 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-67762cee82' at the command line. For more information, refer to the dnf documentation availableat http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Update to Fedora 43 mingw-objfw includes crucial buffer overflow fixes to enhance application security and stability.. Fedora Update MinGW ObjFW Buffer Overflow Fixes. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 01, 2026 Important Fedora
89

Fedora 43 Kernel 7.0.6 Important Update for CVE-2026-46300 Advisory

The 7.0.6 stable kernel update contains a number of important fixes across the tree. It also contains a fix for the Fragnesia CVE-2026-46300. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-cccb681166 2026-05-14 00:41:12.640505+00:00 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 43 Version : 7.0.6 Release : 100.fc43 URL : https://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 7.0.6 stable kernel update contains a number of important fixes across the tree. It also contains a fix for the Fragnesia CVE-2026-46300 -------------------------------------------------------------------------------- ChangeLog: * Wed May 13 2026 Justin M. Forbes [7.0.6-0] - net: skbuff: propagate shared-frag marker through pskb_copy() (Hyunwoo Kim) - net: skbuff: preserve shared-frag marker during coalescing (William Bowling) - Add BugsFixed for 7.0.7 (Justin M. Forbes) - ovl: fix verity lazy-load guard broken by fsverity_active() semantic change (Colin Walters) - Revert rxrpc dirtyfrag fix in favor of version which landed upstream (Justin M. Forbes) - Re-enable Intel MEI for Fedora x86 (Justin M. Forbes) - xfrm: esp: avoid in-place decrypt on shared skb frags (Kuan-Ting Chen) - rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (Hyunwoo Kim) - Linux v7.0.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2468594 - overlayfs+fsverity-require (composefs) broken in 7.x - just needs cherry pick https://bugzilla.redhat.com/show_bug.cgi?id=2468594 [ 2 ] Bug #2468995 - Regression: Intel MEI modules missing in kernel 7.0.4-200.fc44 causing i915 / Meteor Lake system freezes https://bugzilla.redhat.com/show_bug.cgi?id=2468995 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-cccb681166' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it. Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new . Discover critical fixes in Fedora 43 kernel update addressing CVE-2026-46300 for enhanced security and stability.. Fedora Kernel Fixes, CVE-2026-46300 Updates, Security Advisory Fedora. . Severity: Important. LinuxSecurity.com Team

Calendar%202 May 14, 2026 Important Fedora
217

Oracle Linux 8 GIMP Important Threat Fix ELSA-2026-5113

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-5113 http://linux.oracle.com/errata/ELSA-2026-5113.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: gimp-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.x86_64.rpm gimp-devel-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.x86_64.rpm gimp-devel-tools-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.x86_64.rpm gimp-libs-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.x86_64.rpm pygobject2-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm pygobject2-codegen-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm pygobject2-devel-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm pygobject2-doc-2.28.7-5.module+el8.10.0+90497+ae78887f.x86_64.rpm pygtk2-2.24.0-25.module+el8.9.0+90151+46a7e4b5.x86_64.rpm pygtk2-codegen-2.24.0-25.module+el8.9.0+90151+46a7e4b5.x86_64.rpm pygtk2-devel-2.24.0-25.module+el8.9.0+90151+46a7e4b5.x86_64.rpm pygtk2-doc-2.24.0-25.module+el8.9.0+90151+46a7e4b5.noarch.rpm python2-cairo-1.16.3-7.module+el8.10.0+90497+ae78887f.x86_64.rpm python2-cairo-devel-1.16.3-7.module+el8.10.0+90497+ae78887f.x86_64.rpm aarch64: gimp-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.aarch64.rpm gimp-devel-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.aarch64.rpm gimp-devel-tools-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.aarch64.rpm gimp-libs-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.aarch64.rpm pygobject2-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm pygobject2-codegen-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm pygobject2-devel-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm pygobject2-doc-2.28.7-5.module+el8.10.0+90497+ae78887f.aarch64.rpm pygtk2-2.24.0-25.module+el8.9.0+90151+46a7e4b5.aarch64.rpm pygtk2-codegen-2.24.0-25.module+el8.9.0+90151+46a7e4b5.aarch64.rpm pygtk2-devel-2.24.0-25.module+el8.9.0+90151+46a7e4b5.aarch64.rpm pygtk2-doc-2.24.0-25.module+el8.9.0+90151+46a7e4b5.noarch.rpm python2-cairo-1.16.3-7.module+el8.10.0+90497+ae78887f.aarch64.rpm python2-cairo-devel-1.16.3-7.module+el8.10.0+90497+ae78887f.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/gimp-2.8.22-26.module+el8.10.0+90845+49de5bf7.5.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/pygobject2-2.28.7-5.module+el8.10.0+90497+ae78887f.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/pygtk2-2.24.0-25.module+el8.9.0+90151+46a7e4b5.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/python2-pycairo-1.16.3-7.module+el8.10.0+90497+ae78887f.src.rpm Related CVEs: CVE-2026-0797 CVE-2026-2044 CVE-2026-2045 CVE-2026-2048 Description of changes: gimp [2:2.8.22-26.5] - fix CVE-2026-0797 - fix CVE-2026-2044 - fix CVE-2026-2045 - fix CVE-2026-2048 [2:2.8.22-26.4] - fix CVE-2025-14422 [2:2.8.22-26.3] - fix CVE-2025-10920 - fix CVE-2025-10921 - fix CVE-2025-10922 - fix CVE-2025-10923 - fix CVE-2025-10924 - fix CVE-2025-10925 - fix CVE-2025-10934 [2:2.8.22-26.2] - fix CVE-2025-5473 (RHEL-95696) [2:2.8.22-26.1] - fix CVE-2025-48797 (RHEL-93503) - fix CVE-2025-48798 (RHEL-93506) [2:2.28.22-26] - bump spec [2:2.8.22-25] - fix CVE-2023-44442 - fix CVE-2023-44444 - disable gimp-2.8.22-python-path.patch required for flatpak - partially cherry-pick from upstream commit 2987f012 to fix fclose leak Resolves: RHEL-17048 RHEL-17060 [2:2.8.22-24] - fallback to RPM gegl [2:2.8.22-23] - enforce gegl04 [2:2.8.22-22] - change gegl requirement to gegl04 pygobject2 [2.28.7-5] - bump spec to fix NVR [2.28.7-4] - update python macro to python2 [2.28.7-3] - Add MIT license [2.28.7-2.1] - Fix python shebangs (#1580854) [2.28.7-2] - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild [2.28.7-1] - Update to 2.28.7 [2.28.6-19] - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild [2.28.6-18] - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild [2.28.6-17] - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild [2.28.6-16] - https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages pygtk2 [2.24.0-25] - Fix shebang mangling for _prefix=app (#1907579) - disable numpy for flatpak (#1907579) [2.24.0-24] - remove libglade dependency and sub-package (#1622134) [2.24.0-23.1] - fix python2 regex in sed command [2.24.0-23] - resotre doc sub package [2.24.0-22] - fixpython2 macros [2.24.0-21.1] - Fix python shebangs (#1580855) [2.24.0-21] - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild [2.24.0-20] - Try again to fix shebangs [2.24.0-19] - Fix shebangs [2.24.0-18] - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild python2-pycairo [1.16.3-7] - bump spec for NVR fix [1.16.3-6] - Rename pycairo to python2-pycairo (RCM-39388) [1.16.3-5] - Add python3 packages (RCM-39388) - remove python3-test due its missing in build root [1.16.3-4] - Setup python2 stream branch for python2 binding of cairo library [1.16.3-3] - Remove the python2 subpackages https://bugzilla.redhat.com/show_bug.cgi?id=1590820 [1.16.3-2] - Allow Python 2 for build See: https://hurl.corp.redhat.com/rhel8-py2 - Skip tests on Python 2 (python2-pytest is being removed) [1.16.3-1] - Update to 1.16.3 [1.16.1-1] - Update to 1.16.1 [1.16.0-1] - Update to 1.16.0 [1.15.6-1] - Update to 1.15.6 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Oracle Linux 8 includes essential updates for GIMP and related packages to mitigate important security risks.. Oracle Linux,GIMP update,security risks,threat mitigation. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Mar 24, 2026 Important Oracle
217

Oracle Linux 10 vsftpd Moderate Threat Fix ELSA-2026-0606 CVE-2025-14242

The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-0606 http://linux.oracle.com/errata/ELSA-2026-0606.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: vsftpd-3.0.5-10.el10_1.1.x86_64.rpm aarch64: vsftpd-3.0.5-10.el10_1.1.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/vsftpd-3.0.5-10.el10_1.1.src.rpm Related CVEs: CVE-2025-14242 Description of changes: [3.0.5-10.1] - Fix CVE-2025-14242 - Resolves: RHEL-134158 _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Updated rpms for Oracle Linux 10 addressing moderate security threat in vsftpd. Essential changes outlined.. Oracle Linux, vsftpd, ELSA-2026-0606, security advisory, threat fix. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jan 15, 2026 Important Oracle
100

openSUSE: libvirt Moderate Security Update 2026:0068-1 CVE-2025-12748,13193

An update that solves two vulnerabilities can now be installed.. # Security update for libvirt Announcement ID: SUSE-SU-2026:0068-1 Release Date: 2026-01-08T12:22:41Z Rating: moderate References: * bsc#1253278 * bsc#1253703 Cross-References: * CVE-2025-12748 * CVE-2025-13193 CVSS scores: * CVE-2025-12748 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-12748 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-12748 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-13193 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-13193 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-13193 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.6 An update that solves two vulnerabilities can now be installed. ## Description: This update for libvirt fixes the following issues: * CVE-2025-13193: Fixed umask for 'qemu-img' when creating external inactive snapshots (bsc#1253703) * CVE-2025-12748: Fixed Check ACLs before parsing the whole domain XML (bsc#1253278) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-68=1 openSUSE-SLE-15.6-2026-68=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * libvirt-daemon-log-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-iscsi-direct-10.0.0-150600.8.12.1 * libvirt-client-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-scsi-10.0.0-150600.8.12.1 * libvirt-libs-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-nwfilter-10.0.0-150600.8.12.1 *libvirt-daemon-plugin-sanlock-10.0.0-150600.8.12.1 * libvirt-daemon-driver-lxc-10.0.0-150600.8.12.1 * libvirt-client-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-nodedev-10.0.0-150600.8.12.1 * wireshark-plugin-libvirt-10.0.0-150600.8.12.1 * libvirt-daemon-lock-10.0.0-150600.8.12.1 * libvirt-daemon-config-network-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-gluster-10.0.0-150600.8.12.1 * libvirt-daemon-driver-interface-10.0.0-150600.8.12.1 * libvirt-10.0.0-150600.8.12.1 * libvirt-daemon-driver-secret-10.0.0-150600.8.12.1 * libvirt-daemon-driver-interface-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-qemu-10.0.0-150600.8.12.1 * libvirt-libs-10.0.0-150600.8.12.1 * libvirt-daemon-driver-network-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-nodedev-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-10.0.0-150600.8.12.1 * libvirt-daemon-driver-qemu-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-lxc-10.0.0-150600.8.12.1 * libvirt-daemon-plugin-sanlock-debuginfo-10.0.0-150600.8.12.1 * libvirt-client-qemu-10.0.0-150600.8.12.1 * libvirt-daemon-qemu-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-scsi-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-common-10.0.0-150600.8.12.1 * libvirt-nss-debuginfo-10.0.0-150600.8.12.1 * wireshark-plugin-libvirt-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-config-nwfilter-10.0.0-150600.8.12.1 * libvirt-daemon-plugin-lockd-10.0.0-150600.8.12.1 * libvirt-debugsource-10.0.0-150600.8.12.1 * libvirt-daemon-log-10.0.0-150600.8.12.1 * libvirt-daemon-plugin-lockd-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-iscsi-10.0.0-150600.8.12.1 * libvirt-nss-10.0.0-150600.8.12.1 * libvirt-daemon-lock-debuginfo-10.0.0-150600.8.12.1 * libvirt-devel-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-iscsi-direct-debuginfo-10.0.0-150600.8.12.1 *libvirt-daemon-driver-nwfilter-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-logical-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-iscsi-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-lxc-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-core-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-disk-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-secret-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-mpath-10.0.0-150600.8.12.1 * libvirt-daemon-hooks-10.0.0-150600.8.12.1 * libvirt-daemon-proxy-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-logical-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-disk-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-core-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-mpath-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-network-10.0.0-150600.8.12.1 * libvirt-daemon-proxy-10.0.0-150600.8.12.1 * libvirt-daemon-common-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-gluster-debuginfo-10.0.0-150600.8.12.1 * openSUSE Leap 15.6 (x86_64) * libvirt-daemon-driver-libxl-10.0.0-150600.8.12.1 * libvirt-daemon-driver-libxl-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-xen-10.0.0-150600.8.12.1 * libvirt-client-32bit-debuginfo-10.0.0-150600.8.12.1 * libvirt-devel-32bit-10.0.0-150600.8.12.1 * openSUSE Leap 15.6 (noarch) * libvirt-doc-10.0.0-150600.8.12.1 * openSUSE Leap 15.6 (aarch64 x86_64) * libvirt-daemon-driver-storage-rbd-debuginfo-10.0.0-150600.8.12.1 * libvirt-daemon-driver-storage-rbd-10.0.0-150600.8.12.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libvirt-client-64bit-debuginfo-10.0.0-150600.8.12.1 * libvirt-devel-64bit-10.0.0-150600.8.12.1 ## References: * https://www.suse.com/security/cve/CVE-2025-12748.html * https://www.suse.com/security/cve/CVE-2025-13193.html * https://bugzilla.suse.com/show_bug.cgi?id=1253278 *https://bugzilla.suse.com/show_bug.cgi?id=1253703 . Security update for libvirt in openSUSE with fixes for two vulnerabilities rated moderate severity.. libvirt security update, SUSE vulnerabilities, openSUSE patching. . LinuxSecurity.com Team

Calendar%202 Jan 08, 2026 SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200