Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 9,991 articles for you...
197
security advisorydenial of servicedebianDebian jackson-core High Severity Denial of Service Information Leak Fix
Two security vulnerabilities have been found in jackson-core, a fast and powerful JSON library for Java, which may allow an attacker to cause a denial of service by using deeply nested JSON data or disclose sensitive information by abusing a flaw in how certain exception messages are handled in jackson- core.. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4623-1
Jun 08, 2026
•Critical
Debian LTS
172
security advisorydenial of serviceUbuntuUbuntu 26.04 LTS nginx Denial of Service Resource Issue Vuln USN-8398-1
nginx could be made to consume excessive resources if it received specially crafted network traffic.. ========================================================================== Ubuntu Security Notice USN-8398-1 June 08, 2026 nginx vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: nginx could be made to consume excessive resources if it received specially crafted network traffic. Software Description: - nginx: small, powerful, scalable web/proxy server Details: It was discovered that nginx incorrectly handled certain cookie headers in the HTTP/2 implementation. A remote attacker could possibly use this issue to cause nginx to consume excessive resources, resulting in a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS nginx 1.28.3-2ubuntu1.3 nginx-core 1.28.3-2ubuntu1.3 nginx-extras 1.28.3-2ubuntu1.3 nginx-full 1.28.3-2ubuntu1.3 nginx-light 1.28.3-2ubuntu1.3 Ubuntu 25.10 nginx 1.28.0-6ubuntu1.5 nginx-core 1.28.0-6ubuntu1.5 nginx-extras 1.28.0-6ubuntu1.5 nginx-full 1.28.0-6ubuntu1.5 nginx-light 1.28.0-6ubuntu1.5 Ubuntu 24.04 LTS nginx 1.24.0-2ubuntu7.10 nginx-core 1.24.0-2ubuntu7.10 nginx-extras 1.24.0-2ubuntu7.10 nginx-full 1.24.0-2ubuntu7.10 nginx-light 1.24.0-2ubuntu7.10 Ubuntu 22.04 LTS nginx 1.18.0-6ubuntu14.13 nginx-core 1.18.0-6ubuntu14.13 nginx-extras 1.18.0-6ubuntu14.13 nginx-full 1.18.0-6ubuntu14.13 nginx-light 1.18.0-6ubuntu14.13 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8398-1 CVE-2026-49975 Package Information: https://launchpad.net/ubuntu/+source/nginx/1.28.3-2ubuntu1.3 https://launchpad.net/ubuntu/+source/nginx/1.28.0-6ubuntu1.5 https://launchpad.net/ubuntu/+source/nginx/1.24.0-2ubuntu7.10 https://launchpad.net/ubuntu/+source/nginx/1.18.0-6ubuntu14.13 . nginx update for Ubuntu fixes excessive resource consumption due to crafted network traffic. Stay secure with the latest details.. nginx security update, Ubuntu resource management, denial of service threat, network exploitation. . Severity: Important. LinuxSecurity.com Team
Jun 08, 2026
•Important
Ubuntu
172
security advisorydenial of servicecriticalUbuntu 26.04 LTS libjxl Severe Denial of Service USN-8397-1
libjxl could be made to crash or run programs if it opened a specially crafted file.. ========================================================================== Ubuntu Security Notice USN-8397-1 June 08, 2026 jpeg-xl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 Summary: libjxl could be made to crash or run programs if it opened a specially crafted file. Software Description: - jpeg-xl: Reference codec implementation for JPEG XL compressed raster image format Details: It was discovered that libjxl did not properly handle certain crafted PBM images. An attacker could possibly use this issue to cause libjxl to crash, resulting in a denial of service, or execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS libjxl-tools 0.11.1-6ubuntu4.2 libjxl0.11 0.11.1-6ubuntu4.2 Ubuntu 25.10 libjxl-tools 0.11.1-6ubuntu1.2 libjxl0.11 0.11.1-6ubuntu1.2 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8397-1 CVE-2025-70103 Package Information: https://launchpad.net/ubuntu/+source/jpeg-xl/0.11.1-6ubuntu4.2 https://launchpad.net/ubuntu/+source/jpeg-xl/0.11.1-6ubuntu1.2 . libjxl on Ubuntu could crash or run programs from malicious files. Immediate updates are needed for safety.. Ubuntu Updates, jpeg-xl Security, libjxl Threats, Denial of Service, Ubuntu Security. . Severity: Critical. LinuxSecurity.com Team
Jun 08, 2026
•Critical
Ubuntu
202
security advisorycriticalthreatopenSUSE Leap 16.0 Critical Chromium Vulnerability 2026-20916-1
An update that solves 429 vulnerabilities and has 2 bug fixes can now be installed.. openSUSE security update: security update for chromium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20916-1 Rating: critical References: * bsc#1265854 * bsc#1267706 Cross-References: * CVE-2026-10881 * CVE-2026-10882 * CVE-2026-10883 * CVE-2026-10884 * CVE-2026-10885 * CVE-2026-10886 * CVE-2026-10887 * CVE-2026-10888 * CVE-2026-10889 * CVE-2026-10890 * CVE-2026-10891 * CVE-2026-10892 * CVE-2026-10893 * CVE-2026-10894 * CVE-2026-10895 * CVE-2026-10896 * CVE-2026-10897 * CVE-2026-10898 * CVE-2026-10899 * CVE-2026-10900 * CVE-2026-10901 * CVE-2026-10902 * CVE-2026-10903 * CVE-2026-10904 * CVE-2026-10905 * CVE-2026-10906 * CVE-2026-10907 * CVE-2026-10908 * CVE-2026-10909 * CVE-2026-10910 * CVE-2026-10911 * CVE-2026-10912 * CVE-2026-10913 * CVE-2026-10914 * CVE-2026-10915 * CVE-2026-10916 * CVE-2026-10917 * CVE-2026-10918 * CVE-2026-10919 * CVE-2026-10920 * CVE-2026-10921 * CVE-2026-10922 * CVE-2026-10923 * CVE-2026-10924 * CVE-2026-10925 * CVE-2026-10926 * CVE-2026-10927 * CVE-2026-10928 * CVE-2026-10929 * CVE-2026-10930 * CVE-2026-10931 * CVE-2026-10932 * CVE-2026-10933 * CVE-2026-10934 * CVE-2026-10935 * CVE-2026-10936 * CVE-2026-10937 * CVE-2026-10938 * CVE-2026-10939 * CVE-2026-10940 * CVE-2026-10941 * CVE-2026-10942 * CVE-2026-10943 * CVE-2026-10944 * CVE-2026-10945 * CVE-2026-10946 * CVE-2026-10947 * CVE-2026-10948 * CVE-2026-10949 * CVE-2026-10950 * CVE-2026-10951 * CVE-2026-10952 * CVE-2026-10953 * CVE-2026-10954 * CVE-2026-10955 * CVE-2026-10956 * CVE-2026-10957 * CVE-2026-10958 * CVE-2026-10959 * CVE-2026-10960 * CVE-2026-10961 * CVE-2026-10962 * CVE-2026-10963 * CVE-2026-10964 * CVE-2026-10965 * CVE-2026-10966 * CVE-2026-10967 * CVE-2026-10968 * CVE-2026-10969 * CVE-2026-10970 *CVE-2026-10971 * CVE-2026-10972 * CVE-2026-10973 * CVE-2026-10974 * CVE-2026-10975 * CVE-2026-10976 * CVE-2026-10977 * CVE-2026-10978 * CVE-2026-10979 * CVE-2026-10980 * CVE-2026-10981 * CVE-2026-10982 * CVE-2026-10983 * CVE-2026-10984 * CVE-2026-10985 * CVE-2026-10986 * CVE-2026-10987 * CVE-2026-10988 * CVE-2026-10989 * CVE-2026-10990 * CVE-2026-10991 * CVE-2026-10992 * CVE-2026-10993 * CVE-2026-10994 * CVE-2026-10995 * CVE-2026-10996 * CVE-2026-10997 * CVE-2026-10998 * CVE-2026-10999 * CVE-2026-11000 * CVE-2026-11001 * CVE-2026-11002 * CVE-2026-11003 * CVE-2026-11004 * CVE-2026-11005 * CVE-2026-11006 * CVE-2026-11007 * CVE-2026-11008 * CVE-2026-11009 * CVE-2026-11010 * CVE-2026-11011 * CVE-2026-11012 * CVE-2026-11013 * CVE-2026-11014 * CVE-2026-11015 * CVE-2026-11016 * CVE-2026-11017 * CVE-2026-11018 * CVE-2026-11019 * CVE-2026-11020 * CVE-2026-11021 * CVE-2026-11022 * CVE-2026-11023 * CVE-2026-11024 * CVE-2026-11025 * CVE-2026-11026 * CVE-2026-11027 * CVE-2026-11028 * CVE-2026-11029 * CVE-2026-11030 * CVE-2026-11031 * CVE-2026-11032 * CVE-2026-11033 * CVE-2026-11034 * CVE-2026-11035 * CVE-2026-11036 * CVE-2026-11037 * CVE-2026-11038 * CVE-2026-11039 * CVE-2026-11040 * CVE-2026-11041 * CVE-2026-11042 * CVE-2026-11043 * CVE-2026-11044 * CVE-2026-11045 * CVE-2026-11046 * CVE-2026-11047 * CVE-2026-11048 * CVE-2026-11049 * CVE-2026-11050 * CVE-2026-11051 * CVE-2026-11052 * CVE-2026-11053 * CVE-2026-11054 * CVE-2026-11055 * CVE-2026-11056 * CVE-2026-11057 * CVE-2026-11058 * CVE-2026-11059 * CVE-2026-11060 * CVE-2026-11061 * CVE-2026-11062 * CVE-2026-11063 * CVE-2026-11064 * CVE-2026-11065 * CVE-2026-11066 * CVE-2026-11067 * CVE-2026-11068 * CVE-2026-11069 * CVE-2026-11070 * CVE-2026-11071 * CVE-2026-11072 * CVE-2026-11073 * CVE-2026-11074 * CVE-2026-11075 * CVE-2026-11076 * CVE-2026-11077 *CVE-2026-11078 * CVE-2026-11079 * CVE-2026-11080 * CVE-2026-11081 * CVE-2026-11082 * CVE-2026-11083 * CVE-2026-11084 * CVE-2026-11085 * CVE-2026-11086 * CVE-2026-11087 * CVE-2026-11088 * CVE-2026-11089 * CVE-2026-11090 * CVE-2026-11091 * CVE-2026-11092 * CVE-2026-11093 * CVE-2026-11094 * CVE-2026-11095 * CVE-2026-11096 * CVE-2026-11097 * CVE-2026-11098 * CVE-2026-11099 * CVE-2026-11100 * CVE-2026-11101 * CVE-2026-11102 * CVE-2026-11103 * CVE-2026-11104 * CVE-2026-11105 * CVE-2026-11106 * CVE-2026-11107 * CVE-2026-11108 * CVE-2026-11109 * CVE-2026-11110 * CVE-2026-11111 * CVE-2026-11112 * CVE-2026-11113 * CVE-2026-11114 * CVE-2026-11115 * CVE-2026-11116 * CVE-2026-11117 * CVE-2026-11118 * CVE-2026-11119 * CVE-2026-11120 * CVE-2026-11121 * CVE-2026-11122 * CVE-2026-11123 * CVE-2026-11124 * CVE-2026-11125 * CVE-2026-11126 * CVE-2026-11127 * CVE-2026-11128 * CVE-2026-11129 * CVE-2026-11130 * CVE-2026-11131 * CVE-2026-11132 * CVE-2026-11133 * CVE-2026-11134 * CVE-2026-11135 * CVE-2026-11136 * CVE-2026-11137 * CVE-2026-11138 * CVE-2026-11139 * CVE-2026-11140 * CVE-2026-11141 * CVE-2026-11142 * CVE-2026-11143 * CVE-2026-11144 * CVE-2026-11145 * CVE-2026-11146 * CVE-2026-11147 * CVE-2026-11148 * CVE-2026-11149 * CVE-2026-11150 * CVE-2026-11151 * CVE-2026-11152 * CVE-2026-11153 * CVE-2026-11154 * CVE-2026-11155 * CVE-2026-11156 * CVE-2026-11157 * CVE-2026-11158 * CVE-2026-11159 * CVE-2026-11160 * CVE-2026-11161 * CVE-2026-11162 * CVE-2026-11163 * CVE-2026-11164 * CVE-2026-11165 * CVE-2026-11166 * CVE-2026-11167 * CVE-2026-11168 * CVE-2026-11169 * CVE-2026-11170 * CVE-2026-11171 * CVE-2026-11172 * CVE-2026-11173 * CVE-2026-11174 * CVE-2026-11175 * CVE-2026-11176 * CVE-2026-11177 * CVE-2026-11178 * CVE-2026-11179 * CVE-2026-11180 * CVE-2026-11181 * CVE-2026-11182 * CVE-2026-11183 * CVE-2026-11184 *CVE-2026-11185 * CVE-2026-11186 * CVE-2026-11187 * CVE-2026-11188 * CVE-2026-11189 * CVE-2026-11190 * CVE-2026-11191 * CVE-2026-11192 * CVE-2026-11193 * CVE-2026-11194 * CVE-2026-11195 * CVE-2026-11196 * CVE-2026-11197 * CVE-2026-11198 * CVE-2026-11199 * CVE-2026-11200 * CVE-2026-11201 * CVE-2026-11202 * CVE-2026-11203 * CVE-2026-11204 * CVE-2026-11205 * CVE-2026-11206 * CVE-2026-11207 * CVE-2026-11208 * CVE-2026-11209 * CVE-2026-11210 * CVE-2026-11211 * CVE-2026-11212 * CVE-2026-11213 * CVE-2026-11214 * CVE-2026-11215 * CVE-2026-11216 * CVE-2026-11217 * CVE-2026-11218 * CVE-2026-11219 * CVE-2026-11220 * CVE-2026-11221 * CVE-2026-11222 * CVE-2026-11223 * CVE-2026-11224 * CVE-2026-11225 * CVE-2026-11226 * CVE-2026-11227 * CVE-2026-11228 * CVE-2026-11229 * CVE-2026-11230 * CVE-2026-11231 * CVE-2026-11232 * CVE-2026-11233 * CVE-2026-11234 * CVE-2026-11235 * CVE-2026-11236 * CVE-2026-11237 * CVE-2026-11238 * CVE-2026-11239 * CVE-2026-11240 * CVE-2026-11241 * CVE-2026-11242 * CVE-2026-11243 * CVE-2026-11244 * CVE-2026-11245 * CVE-2026-11246 * CVE-2026-11247 * CVE-2026-11248 * CVE-2026-11249 * CVE-2026-11250 * CVE-2026-11251 * CVE-2026-11252 * CVE-2026-11253 * CVE-2026-11254 * CVE-2026-11255 * CVE-2026-11256 * CVE-2026-11257 * CVE-2026-11258 * CVE-2026-11259 * CVE-2026-11260 * CVE-2026-11261 * CVE-2026-11262 * CVE-2026-11263 * CVE-2026-11264 * CVE-2026-11265 * CVE-2026-11266 * CVE-2026-11267 * CVE-2026-11268 * CVE-2026-11269 * CVE-2026-11270 * CVE-2026-11271 * CVE-2026-11272 * CVE-2026-11273 * CVE-2026-11274 * CVE-2026-11275 * CVE-2026-11276 * CVE-2026-11277 * CVE-2026-11278 * CVE-2026-11279 * CVE-2026-11280 * CVE-2026-11281 * CVE-2026-11282 * CVE-2026-11283 * CVE-2026-11284 * CVE-2026-11285 * CVE-2026-11286 * CVE-2026-11287 * CVE-2026-11288 * CVE-2026-11289 * CVE-2026-11290 * CVE-2026-11291 *CVE-2026-11292 * CVE-2026-11293 * CVE-2026-11294 * CVE-2026-11295 * CVE-2026-11296 * CVE-2026-11297 * CVE-2026-11298 * CVE-2026-11299 * CVE-2026-11300 * CVE-2026-11301 * CVE-2026-11302 * CVE-2026-11303 * CVE-2026-11304 * CVE-2026-11305 * CVE-2026-11306 * CVE-2026-11307 * CVE-2026-11308 * CVE-2026-11309 Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 429 vulnerabilities and has 2 bug fixes can now be installed. Description: This update for chromium fixes the following issues: Changes in chromium: - Chromium 149 (149.0.7827.53) stable (boo#1267706): * CVE-2026-10881: Out of bounds read and write in ANGLE * CVE-2026-10882: Use after free in Network * CVE-2026-10883: Out of bounds write in ANGLE * CVE-2026-10884: Use after free in Chromecast * CVE-2026-10885: Use after free in Chrome for iOS * CVE-2026-10886: Use after free in FileSystem * CVE-2026-10887: Use after free in Chromoting * CVE-2026-10888: Use after free in Cast Streaming * CVE-2026-10889: Out of bounds read in ANGLE * CVE-2026-10890: Use after free in Cast * CVE-2026-10891: Use after free in GFX * CVE-2026-10892: Out of bounds write in GPU * CVE-2026-10893: Use after free in Chromoting * CVE-2026-10894: Use after free in Printing * CVE-2026-10895: Use after free in Ozone * CVE-2026-10896: Use after free in Chrome for iOS * CVE-2026-10897: Out of bounds write in GPU * CVE-2026-10898: Stack buffer overflow in GPU * CVE-2026-10899: Use after free in Ozone * CVE-2026-10900: Use after free in Passwords * CVE-2026-10901: Use after free in Passwords * CVE-2026-10902: Use after free in Ozone * CVE-2026-10903: Use after free in WebRTC * CVE-2026-10904: Inappropriate implementation in V8 * CVE-2026-10905: Use after free in Network * CVE-2026-10906: Use after free in WebAuthentication * CVE-2026-10907: Out of bounds write in ANGLE * CVE-2026-10908: Use after free in FullScreen *CVE-2026-10909: Use after free in Dawn * CVE-2026-10910: Type Confusion in V8 * CVE-2026-10911: Insufficient validation of untrusted input in Media * CVE-2026-10912: Insufficient validation of untrusted input in Extensions * CVE-2026-10913: Use after free in ANGLE * CVE-2026-10914: Use after free in ANGLE * CVE-2026-10915: Use after free in Core * CVE-2026-10916: Insufficient validation of untrusted input in DevTools * CVE-2026-10917: Insufficient validation of untrusted input in Media * CVE-2026-10918: Use after free in Viz * CVE-2026-10919: Use after free in ANGLE * CVE-2026-10920: Insufficient validation of untrusted input in WebShare * CVE-2026-10921: Integer overflow in Dawn * CVE-2026-10922: Insufficient validation of untrusted input in DevTools * CVE-2026-10923: Use after free in WebAppInstalls * CVE-2026-10924: Integer overflow in Chromecast * CVE-2026-10925: Out of bounds write in Skia * CVE-2026-10926: Use after free in Cast * CVE-2026-10927: Out of bounds read in Dawn * CVE-2026-10928: Script injection in Headless * CVE-2026-10929: Heap buffer overflow in ANGLE * CVE-2026-10930: Out of bounds read in ANGLE * CVE-2026-10931: Use after free in FileSystem * CVE-2026-10932: Use after free in UI * CVE-2026-10933: Use after free in Audio * CVE-2026-10934: Use after free in Autofill * CVE-2026-10935: Inappropriate implementation in V8 * CVE-2026-10936: Type Confusion in V8 * CVE-2026-10937: Inappropriate implementation in Passwords * CVE-2026-10938: Insufficient validation of untrusted input in Input * CVE-2026-10939: Use after free in WebRTC * CVE-2026-10940: Race in Codecs * CVE-2026-10941: Out of bounds memory access in Skia * CVE-2026-10942: Insufficient validation of untrusted input in UI * CVE-2026-10943: Use after free in WebRTC * CVE-2026-10944: Insufficient policy enforcement in Autofill * CVE-2026-10945: Use after free in PDF * CVE-2026-10946: Heap buffer overflow in Media * CVE-2026-10947: Use after free in WebRTC *CVE-2026-10948: Use after free in WebRTC * CVE-2026-10949: Heap buffer overflow in Video * CVE-2026-10950: Insufficient policy enforcement in Autofill * CVE-2026-10951: Use after free in Autofill * CVE-2026-10952: Use after free in Chrome for iOS * CVE-2026-10953: Use after free in Core * CVE-2026-10954: Use after free in Actor * CVE-2026-10955: Type Confusion in ANGLE * CVE-2026-10956: Use after free in MimeHandlerView * CVE-2026-10957: Use after free in Glic * CVE-2026-10958: Use after free in Chrome for iOS * CVE-2026-10959: Use after free in Input * CVE-2026-10960: Uninitialized Use in Codecs * CVE-2026-10961: Use after free in Chrome for iOS * CVE-2026-10962: Type Confusion in Media * CVE-2026-10963: Integer overflow in V8 * CVE-2026-10964: Integer overflow in V8 * CVE-2026-10965: Integer overflow in DevTools * CVE-2026-10966: Insufficient validation of untrusted input in Codecs * CVE-2026-10967: Use after free in SurfaceCapture * CVE-2026-10968: Insufficient validation of untrusted input in Dawn * CVE-2026-10969: Insufficient validation of untrusted input in Extensions * CVE-2026-10970: Insufficient validation of untrusted input in InterestGroups * CVE-2026-10971: Insufficient validation of untrusted input in Printing * CVE-2026-10972: Use after free in Ozone * CVE-2026-10973: Uninitialized Use in Dawn * CVE-2026-10974: Insufficient validation of untrusted input in ANGLE * CVE-2026-10975: Use after free in WebRTC * CVE-2026-10976: Uninitialized Use in Dawn * CVE-2026-10977: Uninitialized Use in Skia * CVE-2026-10978: Use after free in Chromoting * CVE-2026-10979: Out of bounds read in ANGLE * CVE-2026-10980: Insufficient validation of untrusted input in DevTools * CVE-2026-10981: Insufficient validation of untrusted input in Codecs * CVE-2026-10982: Use after free in WebXR * CVE-2026-10983: Insufficient validation of untrusted input in Dawn * CVE-2026-10984: Inappropriate implementation in Accessibility * CVE-2026-10985: Out ofbounds read in Skia * CVE-2026-10986: Integer overflow in Media * CVE-2026-10987: Integer overflow in V8 * CVE-2026-10988: Use after free in Views * CVE-2026-10989: Inappropriate implementation in V8 * CVE-2026-10990: Use after free in Glic * CVE-2026-10991: Use after free in V8 * CVE-2026-10992: Insufficient data validation in Animation * CVE-2026-10993: Heap buffer overflow in Skia * CVE-2026-10994: Uninitialized Use in ANGLE * CVE-2026-10995: Heap buffer overflow in TabStrip * CVE-2026-10996: Inappropriate implementation in Workers * CVE-2026-10997: Insufficient policy enforcement in Extensions * CVE-2026-10998: Out of bounds read in Media * CVE-2026-10999: Out of bounds memory access in ANGLE * CVE-2026-11000: Use after free in Fonts * CVE-2026-11001: Incorrect security UI in Payments * CVE-2026-11002: Use after free in Autofill * CVE-2026-11003: Use after free in WebRTC * CVE-2026-11004: Out of bounds read in ANGLE * CVE-2026-11005: Out of bounds read in ANGLE * CVE-2026-11006: Out of bounds read in Dawn * CVE-2026-11007: Insufficient validation of untrusted input in WebView * CVE-2026-11008: Insufficient validation of untrusted input in WebAppInstalls * CVE-2026-11009: Use after free in USB * CVE-2026-11010: Use after free in WebShare * CVE-2026-11011: Insufficient policy enforcement in Password Manager * CVE-2026-11012: Use after free in Serial * CVE-2026-11013: Insufficient validation of untrusted input in Network * CVE-2026-11014: Insufficient policy enforcement in Extensions * CVE-2026-11015: Out of bounds read in WebGPU * CVE-2026-11016: Insufficient validation of untrusted input in Network * CVE-2026-11017: Inappropriate implementation in Link Preview * CVE-2026-11018: Insufficient policy enforcement in Actor * CVE-2026-11019: Inappropriate implementation in Payments * CVE-2026-11020: Inappropriate implementation in Extensions * CVE-2026-11021: Insufficient validation of untrusted input in GPU * CVE-2026-11022: Insufficientvalidation of untrusted input in DevTools * CVE-2026-11023: Insufficient validation of untrusted input in WebAppInstalls * CVE-2026-11024: Stack buffer overflow in Skia * CVE-2026-11025: Insufficient policy enforcement in Navigation * CVE-2026-11026: Insufficient policy enforcement in Extensions * CVE-2026-11027: Insufficient validation of untrusted input in Glic * CVE-2026-11028: Use after free in Media * CVE-2026-11029: Insufficient validation of untrusted input in Drag and Drop * CVE-2026-11030: Use after free in Network * CVE-2026-11031: Insufficient validation of untrusted input in Password Manager * CVE-2026-11032: Insufficient data validation in Password Manager * CVE-2026-11033: Uninitialized Use in WebML * CVE-2026-11034: Insufficient validation of untrusted input in Tab Group Sync * CVE-2026-11035: Insufficient validation of untrusted input in Custom Tabs * CVE-2026-11036: Inappropriate implementation in DOM * CVE-2026-11037: Out of bounds write in Codecs * CVE-2026-11038: Insufficient validation of untrusted input in Subresource Integrity * CVE-2026-11039: Uninitialized Use in Skia * CVE-2026-11040: Use after free in ANGLE * CVE-2026-11041: Insufficient validation of untrusted input in Media * CVE-2026-11042: Use after free in Views * CVE-2026-11043: Out of bounds write in ANGLE * CVE-2026-11044: Integer overflow in ANGLE * CVE-2026-11045: Insufficient validation of untrusted input in GPU * CVE-2026-11046: Insufficient validation of untrusted input in Media * CVE-2026-11047: Insufficient validation of untrusted input in Base * CVE-2026-11048: Inappropriate implementation in Extensions * CVE-2026-11049: Use after free in Password Manager * CVE-2026-11050: Use after free in V8 * CVE-2026-11051: Out of bounds read in ANGLE * CVE-2026-11052: Type Confusion in GPU * CVE-2026-11053: VULNERABILITY in WebRTC * CVE-2026-11054: Use after free in WebRTC * CVE-2026-11055: Use after free in ANGLE * CVE-2026-11056: Insufficient validation ofuntrusted input in SiteIsolation * CVE-2026-11057: Uninitialized Use in Skia * CVE-2026-11058: Integer overflow in CredentialProvider * CVE-2026-11059: Use after free in Blink * CVE-2026-11060: Use after free in Media * CVE-2026-11061: Out of bounds read in ANGLE * CVE-2026-11062: Insufficient policy enforcement in Extensions * CVE-2026-11063: Insufficient validation of untrusted input in WebNN * CVE-2026-11064: Uninitialized Use in GPU * CVE-2026-11065: Use after free in ANGLE * CVE-2026-11066: Insufficient validation of untrusted input in ANGLE * CVE-2026-11067: Uninitialized Use in Dawn * CVE-2026-11068: Use after free in WebSockets * CVE-2026-11069: Insufficient validation of untrusted input in Cast * CVE-2026-11070: Insufficient validation of untrusted input in Chromoting * CVE-2026-11071: Use after free in Base * CVE-2026-11072: Use after free in WebView * CVE-2026-11073: Use after free in WebGL * CVE-2026-11074: Use after free in WebRTC * CVE-2026-11075: Out of bounds read in V8 * CVE-2026-11076: Type Confusion in CSS * CVE-2026-11077: Out of bounds read in Dawn * CVE-2026-11078: Insufficient validation of untrusted input in FileSystem * CVE-2026-11079: Insufficient validation of untrusted input in Codecs * CVE-2026-11080: Use after free in WebView * CVE-2026-11081: Policy bypass in Canvas * CVE-2026-11082: Use after free in GPU * CVE-2026-11083: Inappropriate implementation in Password Manager * CVE-2026-11084: Inappropriate implementation in Password Manager * CVE-2026-11085: Integer overflow in GPU * CVE-2026-11086: Insufficient validation of untrusted input in Dawn * CVE-2026-11087: Uninitialized Use in ANGLE * CVE-2026-11088: Integer overflow in ANGLE * CVE-2026-11089: Uninitialized Use in Media * CVE-2026-11090: Uninitialized Use in ANGLE * CVE-2026-11091: Inappropriate implementation in Dawn * CVE-2026-11092: Insufficient policy enforcement in DevTools * CVE-2026-11093: Insufficient validation of untrusted input in Printing * CVE-2026-11094: Use after free in Codecs * CVE-2026-11095: Insufficient validation of untrusted input in Codecs * CVE-2026-11096: Out of bounds read in WebRTC * CVE-2026-11097: Inappropriate implementation in WebView * CVE-2026-11098: Insufficient validation of untrusted input in GPU * CVE-2026-11099: Vulnerability in Skia * CVE-2026-11100: Use after free in File Input * CVE-2026-11101: Uninitialized Use in Dawn * CVE-2026-11102: Inappropriate implementation in Isolated Web Apps * CVE-2026-11103: Inappropriate implementation in Installer * CVE-2026-11104: Uninitialized Use in ANGLE * CVE-2026-11105: Insufficient validation of untrusted input in WebUI * CVE-2026-11106: Inappropriate implementation in Media * CVE-2026-11107: Inappropriate implementation in Downloads * CVE-2026-11108: Inappropriate implementation in NFC * CVE-2026-11109: Uninitialized Use in ANGLE * CVE-2026-11110: Uninitialized Use in ANGLE * CVE-2026-11111: Out of bounds read in ANGLE * CVE-2026-11112: Insufficient validation of untrusted input in Chromoting * CVE-2026-11113: Insufficient validation of untrusted input in ANGLE * CVE-2026-11114: Use after free in Device Trust * CVE-2026-11115: Use after free in Updater * CVE-2026-11116: Use after free in Chromoting * CVE-2026-11117: Use after free in Views * CVE-2026-11118: Use after free in WebRTC * CVE-2026-11119: Insufficient validation of untrusted input in GPU * CVE-2026-11120: Insufficient validation of untrusted input in Enterprise Reporting * CVE-2026-11121: Insufficient validation of untrusted input in Skia * CVE-2026-11122: Inappropriate implementation in Keyboard * CVE-2026-11123: Uninitialized Use in ANGLE * CVE-2026-11124: Heap buffer overflow in Skia * CVE-2026-11125: Use after free in Compositing * CVE-2026-11126: Insufficient validation of untrusted input in DevTools * CVE-2026-11127: Inappropriate implementation in WebAPKs * CVE-2026-11128: Insufficient validation of untrusted input in Web Share *CVE-2026-11129: Inappropriate implementation in Extensions * CVE-2026-11130: Use after free in Media * CVE-2026-11131: Use after free in Autofill * CVE-2026-11132: Policy bypass in Paint * CVE-2026-11133: Insufficient policy enforcement in Paint * CVE-2026-11134: Insufficient data validation in Media * CVE-2026-11135: Insufficient policy enforcement in Autofill * CVE-2026-11136: Use after free in Canvas * CVE-2026-11137: Uninitialized Use in ANGLE * CVE-2026-11138: Uninitialized Use in ANGLE * CVE-2026-11139: Policy bypass in Paint * CVE-2026-11140: Insufficient validation of untrusted input in Chromecast * CVE-2026-11141: Uninitialized Use in Audio * CVE-2026-11142: Policy bypass in Paint * CVE-2026-11143: Heap buffer overflow in Extensions * CVE-2026-11144: Use after free in Media * CVE-2026-11145: Race in Geolocation * CVE-2026-11146: Insufficient validation of untrusted input in Chromoting * CVE-2026-11147: Use after free in WebML * CVE-2026-11148: Inappropriate implementation in Payments * CVE-2026-11149: Insufficient validation of untrusted input in Extensions * CVE-2026-11150: Inappropriate implementation in XML * CVE-2026-11151: Insufficient validation of untrusted input in Password Manager * CVE-2026-11152: Object lifecycle issue in Dawn * CVE-2026-11153: Side-channel information leakage in Forms * CVE-2026-11154: Use after free in Dawn * CVE-2026-11155: Insufficient policy enforcement in CSS * CVE-2026-11156: Inappropriate implementation in CSS * CVE-2026-11157: Script injection in Accessibility * CVE-2026-11158: Insufficient validation of untrusted input in Downloads * CVE-2026-11159: Uninitialized Use in Skia * CVE-2026-11160: Out of bounds read in Input * CVE-2026-11161: Insufficient data validation in DataTransfer * CVE-2026-11162: Insufficient policy enforcement in CSS * CVE-2026-11163: Use after free in Messages * CVE-2026-11164: Use after free in Blink * CVE-2026-11165: Use after free in WebMIDI * CVE-2026-11166:Inappropriate implementation in SVG * CVE-2026-11167: Inappropriate implementation in WebView * CVE-2026-11168: Insufficient policy enforcement in Extensions * CVE-2026-11169: Inappropriate implementation in XML * CVE-2026-11170: Inappropriate implementation in Chromoting * CVE-2026-11171: Integer overflow in Blink * CVE-2026-11172: Incorrect security UI in Contact Picker * CVE-2026-11173: Out of bounds write in V8 * CVE-2026-11174: Insufficient policy enforcement in Site Isolation * CVE-2026-11175: Incorrect security UI in Messages * CVE-2026-11176: Inappropriate implementation in Media * CVE-2026-11177: Use after free in Omnibox * CVE-2026-11178: Policy bypass in WebView * CVE-2026-11179: Inappropriate implementation in ORB * CVE-2026-11180: Policy bypass in SVG * CVE-2026-11181: Inappropriate implementation in Media Session * CVE-2026-11182: Inappropriate implementation in SVG * CVE-2026-11183: Out of bounds read in GWP-ASan * CVE-2026-11184: Insufficient policy enforcement in Actor * CVE-2026-11185: Use after free in V8 * CVE-2026-11186: Inappropriate implementation in CSS * CVE-2026-11187: Insufficient policy enforcement in Glic * CVE-2026-11188: Use after free in USB * CVE-2026-11189: Insufficient validation of untrusted input in DevTools * CVE-2026-11190: Insufficient policy enforcement in Extensions * CVE-2026-11191: Out of bounds memory access in ANGLE * CVE-2026-11192: Insufficient validation of untrusted input in Password Manager * CVE-2026-11193: Insufficient policy enforcement in Password Manager * CVE-2026-11194: Inappropriate implementation in Network * CVE-2026-11195: Inappropriate implementation in MHTML * CVE-2026-11196: Type Confusion in XML * CVE-2026-11197: Insufficient policy enforcement in Workers * CVE-2026-11198: Insufficient validation of untrusted input in Codecs * CVE-2026-11199: Insufficient validation of untrusted input in WebRTC * CVE-2026-11200: Inappropriate implementation in WebRTC * CVE-2026-11201: Use afterfree in ServiceWorker * CVE-2026-11202: Insufficient validation of untrusted input in Chrome for iOS * CVE-2026-11203: Policy bypass in GPU * CVE-2026-11204: Inappropriate implementation in Signin * CVE-2026-11205: Insufficient validation of untrusted input in Chrome for iOS * CVE-2026-11206: Policy bypass in ServiceWorker * CVE-2026-11207: Insufficient validation of untrusted input in Autofill * CVE-2026-11208: Use after free in Codecs * CVE-2026-11209: Insufficient policy enforcement in Passwords * CVE-2026-11210: Insufficient policy enforcement in Safe Browsing * CVE-2026-11211: Integer overflow in V8 * CVE-2026-11212: Insufficient policy enforcement in DevTools * CVE-2026-11213: Insufficient validation of untrusted input in Reading Mode * CVE-2026-11214: Inappropriate implementation in Chrome for iOS * CVE-2026-11215: Inappropriate implementation in Cronet * CVE-2026-11216: Incorrect security UI in File Input * CVE-2026-11217: Insufficient policy enforcement in Fenced Frames * CVE-2026-11218: Inappropriate implementation in PlatformIntegration * CVE-2026-11219: Insufficient data validation in Navigation * CVE-2026-11220: Insufficient validation of untrusted input in Navigation * CVE-2026-11221: Insufficient validation of untrusted input in PointerLock * CVE-2026-11222: Incorrect security UI in Tab Strip * CVE-2026-11223: Insufficient validation of untrusted input in Network * CVE-2026-11224: Use after free in Chromoting * CVE-2026-11225: Incorrect security UI in WebUI * CVE-2026-11226: Insufficient policy enforcement in PreviewTab * CVE-2026-11227: Incorrect security UI in Tab Hover Cards * CVE-2026-11228: Incorrect security UI in File Input * CVE-2026-11229: Insufficient policy enforcement in Enterprise * CVE-2026-11230: Use after free in Extensions * CVE-2026-11231: Inappropriate implementation in Safe Browsing * CVE-2026-11232: Inappropriate implementation in TabGroups * CVE-2026-11233: Insufficient validation of untrusted input inFoldableAPIs * CVE-2026-11234: Insufficient policy enforcement in FoldableAPIs * CVE-2026-11235: Insufficient validation of untrusted input in Compositing * CVE-2026-11236: Insufficient policy enforcement in Web Bluetooth * CVE-2026-11237: Insufficient validation of untrusted input in Media * CVE-2026-11238: Inappropriate implementation in DevTools * CVE-2026-11239: Insufficient validation of untrusted input in Extensions * CVE-2026-11240: Insufficient validation of untrusted input in Loader * CVE-2026-11241: Insufficient validation of untrusted input in Cast * CVE-2026-11242: Insufficient validation of untrusted input in Plugins * CVE-2026-11243: Incorrect security UI in Downloads * CVE-2026-11244: Insufficient validation of untrusted input in WebAuthentication * CVE-2026-11245: Inappropriate implementation in Payments * CVE-2026-11246: Insufficient validation of untrusted input in IndexedDB * CVE-2026-11247: Insufficient policy enforcement in CustomTabs * CVE-2026-11248: Policy bypass in Google Lens * CVE-2026-11249: Use after free in Network * CVE-2026-11250: Inappropriate implementation in DevTools * CVE-2026-11251: Insufficient validation of untrusted input in Password Manager * CVE-2026-11252: Policy bypass in Content Settings * CVE-2026-11253: Race in Permissions * CVE-2026-11254: Inappropriate implementation in Permissions * CVE-2026-11255: Insufficient validation of untrusted input in Storage Access API * CVE-2026-11256: Out of bounds read in GPU * CVE-2026-11257: Inappropriate implementation in Browser * CVE-2026-11258: Inappropriate implementation in File System Access * CVE-2026-11259: Insufficient validation of untrusted input in Cast * CVE-2026-11260: Policy bypass in Permissions * CVE-2026-11261: Insufficient validation of untrusted input in PDF * CVE-2026-11262: Use after free in TabStrip * CVE-2026-11263: Insufficient policy enforcement in WebAuthentication * CVE-2026-11264: Policy bypass in Content Security Policy * CVE-2026-11265:Insufficient data validation in Autofill * CVE-2026-11266: Policy bypass in SafeBrowsing * CVE-2026-11267: Insufficient policy enforcement in Extensions * CVE-2026-11268: Uninitialized Use in ANGLE * CVE-2026-11269: Inappropriate implementation in Extensions * CVE-2026-11270: Inappropriate implementation in UI * CVE-2026-11271: Incorrect security UI in Passwords * CVE-2026-11272: Insufficient validation of untrusted input in Reading List * CVE-2026-11273: Insufficient validation of untrusted input in Omnibox * CVE-2026-11274: Inappropriate implementation in DOM Distiller * CVE-2026-11275: Insufficient policy enforcement in Page Info * CVE-2026-11276: Inappropriate implementation in Cast * CVE-2026-11277: Insufficient policy enforcement in Chrome for iOS * CVE-2026-11278: Inappropriate implementation in CustomTabs * CVE-2026-11279: Out of bounds read in DevTools * CVE-2026-11280: Insufficient validation of untrusted input in Signin * CVE-2026-11281: Integer overflow in Chromoting * CVE-2026-11282: Policy bypass in Sandbox * CVE-2026-11283: Policy bypass in Shortcuts * CVE-2026-11284: Side-channel information leakage in PerformanceAPIs * CVE-2026-11285: Insufficient policy enforcement in Chrome for iOS * CVE-2026-11286: Insufficient validation of untrusted input in Wallet * CVE-2026-11287: Insufficient validation of untrusted input in Navigation * CVE-2026-11288: Policy bypass in CSS * CVE-2026-11289: Side-channel information leakage in Paint * CVE-2026-11290: Integer overflow in WebView * CVE-2026-11291: Policy bypass in Android Autofill * CVE-2026-11292: Policy bypass in Blink * CVE-2026-11293: Use after free in Input * CVE-2026-11294: Inappropriate implementation in Passwords * CVE-2026-11295: Inappropriate implementation in WebView * CVE-2026-11296: Inappropriate implementation in ImageCapture * CVE-2026-11297: Insufficient validation of untrusted input in Reader Mode * CVE-2026-11298: Insufficient policy enforcement in Chrome for iOS *CVE-2026-11299: Out of bounds read in Fonts * CVE-2026-11300: Inappropriate implementation in Permissions * CVE-2026-11301: Out of bounds read in LiveCaption * CVE-2026-11302: Insufficient policy enforcement in Chrome for iOS * CVE-2026-11303: Use after free in PDFium * CVE-2026-11304: Use after free in PDFium * CVE-2026-11305: Use after free in PDFium * CVE-2026-11306: Use after free in PDFium * CVE-2026-11307: Use after free in PDFium * CVE-2026-11308: Inappropriate implementation in Extensions * CVE-2026-11309: Insufficient policy enforcement in History Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-packagehub-301=1 Package List: - openSUSE Leap 16.0: chromedriver-149.0.7827.53-bp160.1.1 chromium-149.0.7827.53-bp160.1.1 References: * https://www.suse.com/security/cve/CVE-2026-10881.html * https://www.suse.com/security/cve/CVE-2026-10882.html * https://www.suse.com/security/cve/CVE-2026-10883.html * https://www.suse.com/security/cve/CVE-2026-10884.html * https://www.suse.com/security/cve/CVE-2026-10885.html * https://www.suse.com/security/cve/CVE-2026-10886.html * https://www.suse.com/security/cve/CVE-2026-10887.html * https://www.suse.com/security/cve/CVE-2026-10888.html * https://www.suse.com/security/cve/CVE-2026-10889.html * https://www.suse.com/security/cve/CVE-2026-10890.html * https://www.suse.com/security/cve/CVE-2026-10891.html * https://www.suse.com/security/cve/CVE-2026-10892.html * https://www.suse.com/security/cve/CVE-2026-10893.html * https://www.suse.com/security/cve/CVE-2026-10894.html * https://www.suse.com/security/cve/CVE-2026-10895.html * https://www.suse.com/security/cve/CVE-2026-10896.html * https://www.suse.com/security/cve/CVE-2026-10897.html *https://www.suse.com/security/cve/CVE-2026-10898.html * https://www.suse.com/security/cve/CVE-2026-10899.html * https://www.suse.com/security/cve/CVE-2026-10900.html * https://www.suse.com/security/cve/CVE-2026-10901.html * https://www.suse.com/security/cve/CVE-2026-10902.html * https://www.suse.com/security/cve/CVE-2026-10903.html * https://www.suse.com/security/cve/CVE-2026-10904.html * https://www.suse.com/security/cve/CVE-2026-10905.html * https://www.suse.com/security/cve/CVE-2026-10906.html * https://www.suse.com/security/cve/CVE-2026-10907.html * https://www.suse.com/security/cve/CVE-2026-10908.html * https://www.suse.com/security/cve/CVE-2026-10909.html * https://www.suse.com/security/cve/CVE-2026-10910.html * https://www.suse.com/security/cve/CVE-2026-10911.html * https://www.suse.com/security/cve/CVE-2026-10912.html * https://www.suse.com/security/cve/CVE-2026-10913.html * https://www.suse.com/security/cve/CVE-2026-10914.html * https://www.suse.com/security/cve/CVE-2026-10915.html * https://www.suse.com/security/cve/CVE-2026-10916.html * https://www.suse.com/security/cve/CVE-2026-10917.html * https://www.suse.com/security/cve/CVE-2026-10918.html * https://www.suse.com/security/cve/CVE-2026-10919.html * https://www.suse.com/security/cve/CVE-2026-10920.html * https://www.suse.com/security/cve/CVE-2026-10921.html * https://www.suse.com/security/cve/CVE-2026-10922.html * https://www.suse.com/security/cve/CVE-2026-10923.html * https://www.suse.com/security/cve/CVE-2026-10924.html * https://www.suse.com/security/cve/CVE-2026-10925.html * https://www.suse.com/security/cve/CVE-2026-10926.html * https://www.suse.com/security/cve/CVE-2026-10927.html * https://www.suse.com/security/cve/CVE-2026-10928.html * https://www.suse.com/security/cve/CVE-2026-10929.html * https://www.suse.com/security/cve/CVE-2026-10930.html * https://www.suse.com/security/cve/CVE-2026-10931.html * https://www.suse.com/security/cve/CVE-2026-10932.html *https://www.suse.com/security/cve/CVE-2026-10933.html * https://www.suse.com/security/cve/CVE-2026-10934.html * https://www.suse.com/security/cve/CVE-2026-10935.html * https://www.suse.com/security/cve/CVE-2026-10936.html * https://www.suse.com/security/cve/CVE-2026-10937.html * https://www.suse.com/security/cve/CVE-2026-10938.html * https://www.suse.com/security/cve/CVE-2026-10939.html * https://www.suse.com/security/cve/CVE-2026-10940.html * https://www.suse.com/security/cve/CVE-2026-10941.html * https://www.suse.com/security/cve/CVE-2026-10942.html * https://www.suse.com/security/cve/CVE-2026-10943.html * https://www.suse.com/security/cve/CVE-2026-10944.html * https://www.suse.com/security/cve/CVE-2026-10945.html * https://www.suse.com/security/cve/CVE-2026-10946.html * https://www.suse.com/security/cve/CVE-2026-10947.html * https://www.suse.com/security/cve/CVE-2026-10948.html * https://www.suse.com/security/cve/CVE-2026-10949.html * https://www.suse.com/security/cve/CVE-2026-10950.html * https://www.suse.com/security/cve/CVE-2026-10951.html * https://www.suse.com/security/cve/CVE-2026-10952.html * https://www.suse.com/security/cve/CVE-2026-10953.html * https://www.suse.com/security/cve/CVE-2026-10954.html * https://www.suse.com/security/cve/CVE-2026-10955.html * https://www.suse.com/security/cve/CVE-2026-10956.html * https://www.suse.com/security/cve/CVE-2026-10957.html * https://www.suse.com/security/cve/CVE-2026-10958.html * https://www.suse.com/security/cve/CVE-2026-10959.html * https://www.suse.com/security/cve/CVE-2026-10960.html * https://www.suse.com/security/cve/CVE-2026-10961.html * https://www.suse.com/security/cve/CVE-2026-10962.html * https://www.suse.com/security/cve/CVE-2026-10963.html * https://www.suse.com/security/cve/CVE-2026-10964.html * https://www.suse.com/security/cve/CVE-2026-10965.html * https://www.suse.com/security/cve/CVE-2026-10966.html * https://www.suse.com/security/cve/CVE-2026-10967.html *https://www.suse.com/security/cve/CVE-2026-10968.html * https://www.suse.com/security/cve/CVE-2026-10969.html * https://www.suse.com/security/cve/CVE-2026-10970.html * https://www.suse.com/security/cve/CVE-2026-10971.html * https://www.suse.com/security/cve/CVE-2026-10972.html * https://www.suse.com/security/cve/CVE-2026-10973.html * https://www.suse.com/security/cve/CVE-2026-10974.html * https://www.suse.com/security/cve/CVE-2026-10975.html * https://www.suse.com/security/cve/CVE-2026-10976.html * https://www.suse.com/security/cve/CVE-2026-10977.html * https://www.suse.com/security/cve/CVE-2026-10978.html * https://www.suse.com/security/cve/CVE-2026-10979.html * https://www.suse.com/security/cve/CVE-2026-10980.html * https://www.suse.com/security/cve/CVE-2026-10981.html * https://www.suse.com/security/cve/CVE-2026-10982.html * https://www.suse.com/security/cve/CVE-2026-10983.html * https://www.suse.com/security/cve/CVE-2026-10984.html * https://www.suse.com/security/cve/CVE-2026-10985.html * https://www.suse.com/security/cve/CVE-2026-10986.html * https://www.suse.com/security/cve/CVE-2026-10987.html * https://www.suse.com/security/cve/CVE-2026-10988.html * https://www.suse.com/security/cve/CVE-2026-10989.html * https://www.suse.com/security/cve/CVE-2026-10990.html * https://www.suse.com/security/cve/CVE-2026-10991.html * https://www.suse.com/security/cve/CVE-2026-10992.html * https://www.suse.com/security/cve/CVE-2026-10993.html * https://www.suse.com/security/cve/CVE-2026-10994.html * https://www.suse.com/security/cve/CVE-2026-10995.html * https://www.suse.com/security/cve/CVE-2026-10996.html * https://www.suse.com/security/cve/CVE-2026-10997.html * https://www.suse.com/security/cve/CVE-2026-10998.html * https://www.suse.com/security/cve/CVE-2026-10999.html * https://www.suse.com/security/cve/CVE-2026-11000.html * https://www.suse.com/security/cve/CVE-2026-11001.html * https://www.suse.com/security/cve/CVE-2026-11002.html *https://www.suse.com/security/cve/CVE-2026-11003.html * https://www.suse.com/security/cve/CVE-2026-11004.html * https://www.suse.com/security/cve/CVE-2026-11005.html * https://www.suse.com/security/cve/CVE-2026-11006.html * https://www.suse.com/security/cve/CVE-2026-11007.html * https://www.suse.com/security/cve/CVE-2026-11008.html * https://www.suse.com/security/cve/CVE-2026-11009.html * https://www.suse.com/security/cve/CVE-2026-11010.html * https://www.suse.com/security/cve/CVE-2026-11011.html * https://www.suse.com/security/cve/CVE-2026-11012.html * https://www.suse.com/security/cve/CVE-2026-11013.html * https://www.suse.com/security/cve/CVE-2026-11014.html * https://www.suse.com/security/cve/CVE-2026-11015.html * https://www.suse.com/security/cve/CVE-2026-11016.html * https://www.suse.com/security/cve/CVE-2026-11017.html * https://www.suse.com/security/cve/CVE-2026-11018.html * https://www.suse.com/security/cve/CVE-2026-11019.html * https://www.suse.com/security/cve/CVE-2026-11020.html * https://www.suse.com/security/cve/CVE-2026-11021.html * https://www.suse.com/security/cve/CVE-2026-11022.html * https://www.suse.com/security/cve/CVE-2026-11023.html * https://www.suse.com/security/cve/CVE-2026-11024.html * https://www.suse.com/security/cve/CVE-2026-11025.html * https://www.suse.com/security/cve/CVE-2026-11026.html * https://www.suse.com/security/cve/CVE-2026-11027.html * https://www.suse.com/security/cve/CVE-2026-11028.html * https://www.suse.com/security/cve/CVE-2026-11029.html * https://www.suse.com/security/cve/CVE-2026-11030.html * https://www.suse.com/security/cve/CVE-2026-11031.html * https://www.suse.com/security/cve/CVE-2026-11032.html * https://www.suse.com/security/cve/CVE-2026-11033.html * https://www.suse.com/security/cve/CVE-2026-11034.html * https://www.suse.com/security/cve/CVE-2026-11035.html * https://www.suse.com/security/cve/CVE-2026-11036.html * https://www.suse.com/security/cve/CVE-2026-11037.html *https://www.suse.com/security/cve/CVE-2026-11038.html * https://www.suse.com/security/cve/CVE-2026-11039.html * https://www.suse.com/security/cve/CVE-2026-11040.html * https://www.suse.com/security/cve/CVE-2026-11041.html * https://www.suse.com/security/cve/CVE-2026-11042.html * https://www.suse.com/security/cve/CVE-2026-11043.html * https://www.suse.com/security/cve/CVE-2026-11044.html * https://www.suse.com/security/cve/CVE-2026-11045.html * https://www.suse.com/security/cve/CVE-2026-11046.html * https://www.suse.com/security/cve/CVE-2026-11047.html * https://www.suse.com/security/cve/CVE-2026-11048.html * https://www.suse.com/security/cve/CVE-2026-11049.html * https://www.suse.com/security/cve/CVE-2026-11050.html * https://www.suse.com/security/cve/CVE-2026-11051.html * https://www.suse.com/security/cve/CVE-2026-11052.html * https://www.suse.com/security/cve/CVE-2026-11053.html * https://www.suse.com/security/cve/CVE-2026-11054.html * https://www.suse.com/security/cve/CVE-2026-11055.html * https://www.suse.com/security/cve/CVE-2026-11056.html * https://www.suse.com/security/cve/CVE-2026-11057.html * https://www.suse.com/security/cve/CVE-2026-11058.html * https://www.suse.com/security/cve/CVE-2026-11059.html * https://www.suse.com/security/cve/CVE-2026-11060.html * https://www.suse.com/security/cve/CVE-2026-11061.html * https://www.suse.com/security/cve/CVE-2026-11062.html * https://www.suse.com/security/cve/CVE-2026-11063.html * https://www.suse.com/security/cve/CVE-2026-11064.html * https://www.suse.com/security/cve/CVE-2026-11065.html * https://www.suse.com/security/cve/CVE-2026-11066.html * https://www.suse.com/security/cve/CVE-2026-11067.html * https://www.suse.com/security/cve/CVE-2026-11068.html * https://www.suse.com/security/cve/CVE-2026-11069.html * https://www.suse.com/security/cve/CVE-2026-11070.html * https://www.suse.com/security/cve/CVE-2026-11071.html * https://www.suse.com/security/cve/CVE-2026-11072.html *https://www.suse.com/security/cve/CVE-2026-11073.html * https://www.suse.com/security/cve/CVE-2026-11074.html * https://www.suse.com/security/cve/CVE-2026-11075.html * https://www.suse.com/security/cve/CVE-2026-11076.html * https://www.suse.com/security/cve/CVE-2026-11077.html * https://www.suse.com/security/cve/CVE-2026-11078.html * https://www.suse.com/security/cve/CVE-2026-11079.html * https://www.suse.com/security/cve/CVE-2026-11080.html * https://www.suse.com/security/cve/CVE-2026-11081.html * https://www.suse.com/security/cve/CVE-2026-11082.html * https://www.suse.com/security/cve/CVE-2026-11083.html * https://www.suse.com/security/cve/CVE-2026-11084.html * https://www.suse.com/security/cve/CVE-2026-11085.html * https://www.suse.com/security/cve/CVE-2026-11086.html * https://www.suse.com/security/cve/CVE-2026-11087.html * https://www.suse.com/security/cve/CVE-2026-11088.html * https://www.suse.com/security/cve/CVE-2026-11089.html * https://www.suse.com/security/cve/CVE-2026-11090.html * https://www.suse.com/security/cve/CVE-2026-11091.html * https://www.suse.com/security/cve/CVE-2026-11092.html * https://www.suse.com/security/cve/CVE-2026-11093.html * https://www.suse.com/security/cve/CVE-2026-11094.html * https://www.suse.com/security/cve/CVE-2026-11095.html * https://www.suse.com/security/cve/CVE-2026-11096.html * https://www.suse.com/security/cve/CVE-2026-11097.html * https://www.suse.com/security/cve/CVE-2026-11098.html * https://www.suse.com/security/cve/CVE-2026-11099.html * https://www.suse.com/security/cve/CVE-2026-11100.html * https://www.suse.com/security/cve/CVE-2026-11101.html * https://www.suse.com/security/cve/CVE-2026-11102.html * https://www.suse.com/security/cve/CVE-2026-11103.html * https://www.suse.com/security/cve/CVE-2026-11104.html * https://www.suse.com/security/cve/CVE-2026-11105.html * https://www.suse.com/security/cve/CVE-2026-11106.html * https://www.suse.com/security/cve/CVE-2026-11107.html *https://www.suse.com/security/cve/CVE-2026-11108.html * https://www.suse.com/security/cve/CVE-2026-11109.html * https://www.suse.com/security/cve/CVE-2026-11110.html * https://www.suse.com/security/cve/CVE-2026-11111.html * https://www.suse.com/security/cve/CVE-2026-11112.html * https://www.suse.com/security/cve/CVE-2026-11113.html * https://www.suse.com/security/cve/CVE-2026-11114.html * https://www.suse.com/security/cve/CVE-2026-11115.html * https://www.suse.com/security/cve/CVE-2026-11116.html * https://www.suse.com/security/cve/CVE-2026-11117.html * https://www.suse.com/security/cve/CVE-2026-11118.html * https://www.suse.com/security/cve/CVE-2026-11119.html * https://www.suse.com/security/cve/CVE-2026-11120.html * https://www.suse.com/security/cve/CVE-2026-11121.html * https://www.suse.com/security/cve/CVE-2026-11122.html * https://www.suse.com/security/cve/CVE-2026-11123.html * https://www.suse.com/security/cve/CVE-2026-11124.html * https://www.suse.com/security/cve/CVE-2026-11125.html * https://www.suse.com/security/cve/CVE-2026-11126.html * https://www.suse.com/security/cve/CVE-2026-11127.html * https://www.suse.com/security/cve/CVE-2026-11128.html * https://www.suse.com/security/cve/CVE-2026-11129.html * https://www.suse.com/security/cve/CVE-2026-11130.html * https://www.suse.com/security/cve/CVE-2026-11131.html * https://www.suse.com/security/cve/CVE-2026-11132.html * https://www.suse.com/security/cve/CVE-2026-11133.html * https://www.suse.com/security/cve/CVE-2026-11134.html * https://www.suse.com/security/cve/CVE-2026-11135.html * https://www.suse.com/security/cve/CVE-2026-11136.html * https://www.suse.com/security/cve/CVE-2026-11137.html * https://www.suse.com/security/cve/CVE-2026-11138.html * https://www.suse.com/security/cve/CVE-2026-11139.html * https://www.suse.com/security/cve/CVE-2026-11140.html * https://www.suse.com/security/cve/CVE-2026-11141.html * https://www.suse.com/security/cve/CVE-2026-11142.html *https://www.suse.com/security/cve/CVE-2026-11143.html * https://www.suse.com/security/cve/CVE-2026-11144.html * https://www.suse.com/security/cve/CVE-2026-11145.html * https://www.suse.com/security/cve/CVE-2026-11146.html * https://www.suse.com/security/cve/CVE-2026-11147.html * https://www.suse.com/security/cve/CVE-2026-11148.html * https://www.suse.com/security/cve/CVE-2026-11149.html * https://www.suse.com/security/cve/CVE-2026-11150.html * https://www.suse.com/security/cve/CVE-2026-11151.html * https://www.suse.com/security/cve/CVE-2026-11152.html * https://www.suse.com/security/cve/CVE-2026-11153.html * https://www.suse.com/security/cve/CVE-2026-11154.html * https://www.suse.com/security/cve/CVE-2026-11155.html * https://www.suse.com/security/cve/CVE-2026-11156.html * https://www.suse.com/security/cve/CVE-2026-11157.html * https://www.suse.com/security/cve/CVE-2026-11158.html * https://www.suse.com/security/cve/CVE-2026-11159.html * https://www.suse.com/security/cve/CVE-2026-11160.html * https://www.suse.com/security/cve/CVE-2026-11161.html * https://www.suse.com/security/cve/CVE-2026-11162.html * https://www.suse.com/security/cve/CVE-2026-11163.html * https://www.suse.com/security/cve/CVE-2026-11164.html * https://www.suse.com/security/cve/CVE-2026-11165.html * https://www.suse.com/security/cve/CVE-2026-11166.html * https://www.suse.com/security/cve/CVE-2026-11167.html * https://www.suse.com/security/cve/CVE-2026-11168.html * https://www.suse.com/security/cve/CVE-2026-11169.html * https://www.suse.com/security/cve/CVE-2026-11170.html * https://www.suse.com/security/cve/CVE-2026-11171.html * https://www.suse.com/security/cve/CVE-2026-11172.html * https://www.suse.com/security/cve/CVE-2026-11173.html * https://www.suse.com/security/cve/CVE-2026-11174.html * https://www.suse.com/security/cve/CVE-2026-11175.html * https://www.suse.com/security/cve/CVE-2026-11176.html * https://www.suse.com/security/cve/CVE-2026-11177.html *https://www.suse.com/security/cve/CVE-2026-11178.html * https://www.suse.com/security/cve/CVE-2026-11179.html * https://www.suse.com/security/cve/CVE-2026-11180.html * https://www.suse.com/security/cve/CVE-2026-11181.html * https://www.suse.com/security/cve/CVE-2026-11182.html * https://www.suse.com/security/cve/CVE-2026-11183.html * https://www.suse.com/security/cve/CVE-2026-11184.html * https://www.suse.com/security/cve/CVE-2026-11185.html * https://www.suse.com/security/cve/CVE-2026-11186.html * https://www.suse.com/security/cve/CVE-2026-11187.html * https://www.suse.com/security/cve/CVE-2026-11188.html * https://www.suse.com/security/cve/CVE-2026-11189.html * https://www.suse.com/security/cve/CVE-2026-11190.html * https://www.suse.com/security/cve/CVE-2026-11191.html * https://www.suse.com/security/cve/CVE-2026-11192.html * https://www.suse.com/security/cve/CVE-2026-11193.html * https://www.suse.com/security/cve/CVE-2026-11194.html * https://www.suse.com/security/cve/CVE-2026-11195.html * https://www.suse.com/security/cve/CVE-2026-11196.html * https://www.suse.com/security/cve/CVE-2026-11197.html * https://www.suse.com/security/cve/CVE-2026-11198.html * https://www.suse.com/security/cve/CVE-2026-11199.html * https://www.suse.com/security/cve/CVE-2026-11200.html * https://www.suse.com/security/cve/CVE-2026-11201.html * https://www.suse.com/security/cve/CVE-2026-11202.html * https://www.suse.com/security/cve/CVE-2026-11203.html * https://www.suse.com/security/cve/CVE-2026-11204.html * https://www.suse.com/security/cve/CVE-2026-11205.html * https://www.suse.com/security/cve/CVE-2026-11206.html * https://www.suse.com/security/cve/CVE-2026-11207.html * https://www.suse.com/security/cve/CVE-2026-11208.html * https://www.suse.com/security/cve/CVE-2026-11209.html * https://www.suse.com/security/cve/CVE-2026-11210.html * https://www.suse.com/security/cve/CVE-2026-11211.html * https://www.suse.com/security/cve/CVE-2026-11212.html *https://www.suse.com/security/cve/CVE-2026-11213.html * https://www.suse.com/security/cve/CVE-2026-11214.html * https://www.suse.com/security/cve/CVE-2026-11215.html * https://www.suse.com/security/cve/CVE-2026-11216.html * https://www.suse.com/security/cve/CVE-2026-11217.html * https://www.suse.com/security/cve/CVE-2026-11218.html * https://www.suse.com/security/cve/CVE-2026-11219.html * https://www.suse.com/security/cve/CVE-2026-11220.html * https://www.suse.com/security/cve/CVE-2026-11221.html * https://www.suse.com/security/cve/CVE-2026-11222.html * https://www.suse.com/security/cve/CVE-2026-11223.html * https://www.suse.com/security/cve/CVE-2026-11224.html * https://www.suse.com/security/cve/CVE-2026-11225.html * https://www.suse.com/security/cve/CVE-2026-11226.html * https://www.suse.com/security/cve/CVE-2026-11227.html * https://www.suse.com/security/cve/CVE-2026-11228.html * https://www.suse.com/security/cve/CVE-2026-11229.html * https://www.suse.com/security/cve/CVE-2026-11230.html * https://www.suse.com/security/cve/CVE-2026-11231.html * https://www.suse.com/security/cve/CVE-2026-11232.html * https://www.suse.com/security/cve/CVE-2026-11233.html * https://www.suse.com/security/cve/CVE-2026-11234.html * https://www.suse.com/security/cve/CVE-2026-11235.html * https://www.suse.com/security/cve/CVE-2026-11236.html * https://www.suse.com/security/cve/CVE-2026-11237.html * https://www.suse.com/security/cve/CVE-2026-11238.html * https://www.suse.com/security/cve/CVE-2026-11239.html * https://www.suse.com/security/cve/CVE-2026-11240.html * https://www.suse.com/security/cve/CVE-2026-11241.html * https://www.suse.com/security/cve/CVE-2026-11242.html * https://www.suse.com/security/cve/CVE-2026-11243.html * https://www.suse.com/security/cve/CVE-2026-11244.html * https://www.suse.com/security/cve/CVE-2026-11245.html * https://www.suse.com/security/cve/CVE-2026-11246.html * https://www.suse.com/security/cve/CVE-2026-11247.html *https://www.suse.com/security/cve/CVE-2026-11248.html * https://www.suse.com/security/cve/CVE-2026-11249.html * https://www.suse.com/security/cve/CVE-2026-11250.html * https://www.suse.com/security/cve/CVE-2026-11251.html * https://www.suse.com/security/cve/CVE-2026-11252.html * https://www.suse.com/security/cve/CVE-2026-11253.html * https://www.suse.com/security/cve/CVE-2026-11254.html * https://www.suse.com/security/cve/CVE-2026-11255.html * https://www.suse.com/security/cve/CVE-2026-11256.html * https://www.suse.com/security/cve/CVE-2026-11257.html * https://www.suse.com/security/cve/CVE-2026-11258.html * https://www.suse.com/security/cve/CVE-2026-11259.html * https://www.suse.com/security/cve/CVE-2026-11260.html * https://www.suse.com/security/cve/CVE-2026-11261.html * https://www.suse.com/security/cve/CVE-2026-11262.html * https://www.suse.com/security/cve/CVE-2026-11263.html * https://www.suse.com/security/cve/CVE-2026-11264.html * https://www.suse.com/security/cve/CVE-2026-11265.html * https://www.suse.com/security/cve/CVE-2026-11266.html * https://www.suse.com/security/cve/CVE-2026-11267.html * https://www.suse.com/security/cve/CVE-2026-11268.html * https://www.suse.com/security/cve/CVE-2026-11269.html * https://www.suse.com/security/cve/CVE-2026-11270.html * https://www.suse.com/security/cve/CVE-2026-11271.html * https://www.suse.com/security/cve/CVE-2026-11272.html * https://www.suse.com/security/cve/CVE-2026-11273.html * https://www.suse.com/security/cve/CVE-2026-11274.html * https://www.suse.com/security/cve/CVE-2026-11275.html * https://www.suse.com/security/cve/CVE-2026-11276.html * https://www.suse.com/security/cve/CVE-2026-11277.html * https://www.suse.com/security/cve/CVE-2026-11278.html * https://www.suse.com/security/cve/CVE-2026-11279.html * https://www.suse.com/security/cve/CVE-2026-11280.html * https://www.suse.com/security/cve/CVE-2026-11281.html * https://www.suse.com/security/cve/CVE-2026-11282.html *https://www.suse.com/security/cve/CVE-2026-11283.html * https://www.suse.com/security/cve/CVE-2026-11284.html * https://www.suse.com/security/cve/CVE-2026-11285.html * https://www.suse.com/security/cve/CVE-2026-11286.html * https://www.suse.com/security/cve/CVE-2026-11287.html * https://www.suse.com/security/cve/CVE-2026-11288.html * https://www.suse.com/security/cve/CVE-2026-11289.html * https://www.suse.com/security/cve/CVE-2026-11290.html * https://www.suse.com/security/cve/CVE-2026-11291.html * https://www.suse.com/security/cve/CVE-2026-11292.html * https://www.suse.com/security/cve/CVE-2026-11293.html * https://www.suse.com/security/cve/CVE-2026-11294.html * https://www.suse.com/security/cve/CVE-2026-11295.html * https://www.suse.com/security/cve/CVE-2026-11296.html * https://www.suse.com/security/cve/CVE-2026-11297.html * https://www.suse.com/security/cve/CVE-2026-11298.html * https://www.suse.com/security/cve/CVE-2026-11299.html * https://www.suse.com/security/cve/CVE-2026-11300.html * https://www.suse.com/security/cve/CVE-2026-11301.html * https://www.suse.com/security/cve/CVE-2026-11302.html * https://www.suse.com/security/cve/CVE-2026-11303.html * https://www.suse.com/security/cve/CVE-2026-11304.html * https://www.suse.com/security/cve/CVE-2026-11305.html * https://www.suse.com/security/cve/CVE-2026-11306.html * https://www.suse.com/security/cve/CVE-2026-11307.html * https://www.suse.com/security/cve/CVE-2026-11308.html * https://www.suse.com/security/cve/CVE-2026-11309.html . This critical update for openSUSE addresses 429 issues in chromium with major impacts on system security and stability.. openSUSE security update, chromium vulnerabilities, patch vulnerabilities. . Severity: Critical. LinuxSecurity.com Team
Jun 08, 2026
•Critical
OpenSUSE
202
security advisorysecurity issuebug fixopenSUSE Leap 16.0 Kernel Important Security Update 2026-20912-1
An update that solves 38 vulnerabilities and has 45 bug fixes can now be installed.. openSUSE security update: security update for the linux kernel ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20912-1 Rating: important References: * bsc#1243603 * bsc#1260539 * bsc#1260584 * bsc#1261590 * bsc#1262634 * bsc#1262656 * bsc#1262668 * bsc#1262754 * bsc#1262755 * bsc#1262771 * bsc#1263067 * bsc#1263068 * bsc#1263102 * bsc#1263169 * bsc#1263769 * bsc#1263774 * bsc#1263908 * bsc#1264011 * bsc#1264014 * bsc#1264016 * bsc#1264063 * bsc#1264112 * bsc#1264300 * bsc#1264409 * bsc#1264437 * bsc#1264669 * bsc#1264716 * bsc#1264719 * bsc#1264720 * bsc#1264722 * bsc#1264726 * bsc#1264832 * bsc#1264989 * bsc#1265044 * bsc#1265110 * bsc#1265925 * bsc#1265928 * bsc#1266001 * bsc#1266238 * bsc#1266307 * bsc#1266395 * bsc#1266402 * bsc#1266414 * bsc#1266759 * bsc#1266765 Cross-References: * CVE-2023-20585 * CVE-2026-23359 * CVE-2026-23380 * CVE-2026-23444 * CVE-2026-31464 * CVE-2026-31480 * CVE-2026-31483 * CVE-2026-31493 * CVE-2026-3150 * CVE-2026-31516 * CVE-2026-31521 * CVE-2026-31568 * CVE-2026-31575 * CVE-2026-31613 * CVE-2026-31614 * CVE-2026-31729 * CVE-2026-31736 * CVE-2026-43009 * CVE-2026-43012 * CVE-2026-43013 * CVE-2026-43054 * CVE-2026-43112 * CVE-2026-43234 * CVE-2026-43252 * CVE-2026-43325 * CVE-2026-43328 * CVE-2026-43333 * CVE-2026-43338 * CVE-2026-43341 * CVE-2026-43359 * CVE-2026-43360 * CVE-2026-43361 * CVE-2026-43362 * CVE-2026-43414 * CVE-2026-43499 * CVE-2026-45843 * CVE-2026-46110 * CVE-2026-46243 CVSS scores: * CVE-2023-20585 ( SUSE ): 4.1 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N * CVE-2023-20585 ( SUSE ): 5.6CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-23359 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-23359 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-23380 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23380 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23444 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-23444 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31464 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31464 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-31480 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31480 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31483 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2026-31483 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31493 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31493 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31516 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31516 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31521 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31521 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31568 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31568 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31575 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31575 ( SUSE ): 6.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31613 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31613 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31614 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H * CVE-2026-31614 ( SUSE ): 6.1 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31729 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31729 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31736 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-31736 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43009 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43012 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43013 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43054 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43112 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43112 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43234 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43252 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43325 ( SUSE ): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43325 ( SUSE ): 6 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43328 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43333 ( SUSE ): 5.6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H * CVE-2026-43333 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43338 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43338 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43341 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43359 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-43359 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43360 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43360 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43361 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2026-43361 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-43362 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L * CVE-2026-43362 ( SUSE ): 7.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N * CVE-2026-43414 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43414 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-43499 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43499 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45843 ( SUSE ): 6.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2026-45843 ( SUSE ): 7 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-46110 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46110 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46243 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46243 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 38 vulnerabilities and has 45 bug fixes can now be installed. Description: The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-20585: iommu/amd: Use maximum Event log buffer size when SNP is enabled onFamily 0x19 (bsc#1243603). - CVE-2026-3150: bcache: fix cached_dev.sb_bio use-after-free and crash (bsc#1263169). - CVE-2026-23359: bpf: Fix stack-out-of-bounds write in devmap (bsc#1260584). - CVE-2026-23380: tracing: Fix WARN_ON in tracing_buffers_mmap_close (bsc#1260539). - CVE-2026-23444: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure (bsc#1266307). - CVE-2026-31464: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() (bsc#1262656). - CVE-2026-31480: tracing: Fix potential deadlock in cpu hotplug with osnoise (bsc#1262634). - CVE-2026-31483: s390/barrier: Make array_index_mask_nospec() __always_inline (bsc#1261590 bsc#1262771). - CVE-2026-31493: RDMA/efa: Fix use of completion ctx after free (bsc#1262668). - CVE-2026-31516: xfrm: prevent policy_hthresh.work from racing with netns teardown (bsc#1262755). - CVE-2026-31521: module: Fix kernel panic when a symbol st_shndx is out of bounds (bsc#1263102). - CVE-2026-31568: s390/mm: Add missing secure storage access fixups for donated memory (bsc#1263068). - CVE-2026-31575: mm/userfaultfd: fix hugetlb fault mutex hash calculation (bsc#1263067). - CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). - CVE-2026-31614: smb: client: fix off-by-8 bounds check in check_wsl_eas() (bsc#1263774). - CVE-2026-31729: usb: typec: ucsi: validate connector number in ucsi_notify_common() (bsc#1264112). - CVE-2026-31736: net: ethernet: mtk_ppe: avoid NULL deref when gmac0 is disabled (bsc#1263908). - CVE-2026-43012: net/mlx5: Fix switchdev mode rollback in case of failure (bsc#1264016). - CVE-2026-43013: net/mlx5: lag: Check for LAG device before creating debugfs (bsc#1264011). - CVE-2026-43054: scsi: target: tcm_loop: Drain commands in target_reset handler (bsc#1264063). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43234: team: avoid NETDEV_CHANGEMTU event when unregistering slave (bsc#1264409). - CVE-2026-43252: mptcp: pm: in-kernel: always set ID asavail when rm endp (bsc#1264300). - CVE-2026-43325: wifi: iwlwifi: mvm: don't send a 6E related command when not supported (bsc#1265110). - CVE-2026-43328: cpufreq: governor: fix double free in cpufreq_dbs_governor_init() error path (bsc#1264832). - CVE-2026-43333: bpf: reject direct access to nullable PTR_TO_BUF pointers (bsc#1264726). - CVE-2026-43338: btrfs: reserve enough transaction items for qgroup ioctls (bsc#1264716). - CVE-2026-43341: net/ipv6: ioam6: prevent schema length wraparound in trace fill (bsc#1265044). - CVE-2026-43359: btrfs: fix transaction abort on set received ioctl due to item overflow (bsc#1264719). - CVE-2026-43360: btrfs: fix transaction abort on file creation due to name hash collision (bsc#1264720). - CVE-2026-43361: btrfs: fix transaction abort when snapshotting received subvolumes (bsc#1264722). - CVE-2026-43362: smb: client: fix in-place encryption corruption in SMB2_write() (bsc#1264989). - CVE-2026-43414: scsi: qla2xxx: Completely fix fcport double free (bsc#1264669). - CVE-2026-43499: rtmutex: Use waiter::task instead of current in remove_waiter() (bsc#1266001). - CVE-2026-45843: slip: bound decode() reads against the compressed packet length (bsc#1266395). - CVE-2026-46110: net: stmmac: rename STMMAC_GET_ENTRY() -> STMMAC_NEXT_ENTRY() (bsc#1266759). The following non security issues were fixed: - ACPI: x86: cmos_rtc: Clean up address space handler driver (stable-fixes). - ACPI: x86: cmos_rtc: Improve coordination with ACPI TAD driver (git-fixes). - ALSA: asihpi: Fix potential OOB array access at reading cache (stable-fixes). - ALSA: hda/conexant: Renaming the codec with device ID 0x1f86 and 0x1f87 (stable-fixes). - ALSA: pcm: Don't setup bogus iov_iter for silencing (git-fixes). - ALSA: pcm: oss: Fix setup list UAF on proc write error (git-fixes). - ALSA: scarlett2: Fix 2i2 Gen 4 direct monitor gain on firmware 2417 (git-fixes). - ALSA: seq: avoid past-the-end iterator in snd_seq_create_port() (git-fixes). - ALSA: seq: Serialize UMP output teardown with event_input(git-fixes). - ALSA: timer: avoid past-the-end iterator in snd_timer_dev_register() (git-fixes). - ALSA: ua101: Reject too-short USB descriptors (git-fixes). - arm64: tlb: Flush walk cache when unsharing PMD tables (git-fixes). - ASoC: codecs: simple-mux: Fix enum control bounds check (git-fixes). - ASoC: cs35l56: Fix flushing of IRQ work in cs35l56_sdw_remove() (git-fixes). - ASoC: Intel: bytcht_es8316: Fix MCLK leak on init errors (git-fixes). - ASoC: qcom: q6asm-dai: close stream only when running (git-fixes). - ASoC: qcom: q6asm-dai: do not set stream state in event and trigger callbacks (git-fixes). - ASoC: qcom: q6asm-dai: fix error handling in prepare and set_params (git-fixes). - ASoC: SOF: ipc3: Use standard dev_dbg API (stable-fixes). - auxdisplay: line-display: fix OOB read on zero-length message_store() (git-fixes). - bcache: fix uninitialized closure object (git-fixes). - Bluetooth: 6lowpan: check skb_clone() return value in send_mcast_pkt() (git-fixes). - Bluetooth: bnep: Fix UAF read of dev-> name (git-fixes). - Bluetooth: btmtk: accept too short WMT FUNC_CTRL events (git-fixes). - Bluetooth: btmtk: fix urb-> setup_packet leak in error paths (git-fixes). - Bluetooth: btusb: Allow firmware re-download when version matches (git-fixes). - Bluetooth: fix UAF in l2cap_sock_cleanup_listen() vs l2cap_conn_del() (git-fixes). - Bluetooth: hci_sync: fix UAF in hci_le_create_cis_sync (git-fixes). - Bluetooth: hci_sync: Set HCI_CMD_DRAIN_WORKQUEUE during device close (git-fixes). - Bluetooth: hci_uart: fix UAFs and race conditions in close and init paths (git-fixes). - Bluetooth: HIDP: fix missing length checks in hidp_input_report() (git-fixes). - Bluetooth: ISO: drop ISO_END frames received without prior ISO_START (git-fixes). - Bluetooth: ISO: fix UAF in iso_recv_frame (git-fixes). - Bluetooth: ISO: serialize iso_sock_clear_timer with socket lock (git-fixes). - Bluetooth: l2cap: clear chan-> ident on ECRED reconfiguration success (git-fixes). - Bluetooth: L2CAP: ecred_reconfigure: send packed pdu, notstack pointer (git-fixes). - Bluetooth: L2CAP: fix chan ref leak in l2cap_chan_timeout() on !conn (git-fixes). - Bluetooth: L2CAP: Fix possible crash on l2cap_ecred_conn_rsp (git-fixes). - Bluetooth: L2CAP: use chan timer to close channels in cleanup_listen() (git-fixes). - Bluetooth: MGMT: validate Add Extended Advertising Data length (git-fixes). - Bluetooth: serialize accept_q access (git-fixes). - btrfs: do not mark inode incompressible after inline attempt fails (git-fixes). - comedi: comedi_test: fix check for valid scan_begin_src in waveform_ai_cmdtest() (git-fixes). - comedi: comedi_test: Fix limiting of convert_arg in waveform_ai_cmdtest() (git-fixes). - device property: set fwnode-> secondary to NULL in fwnode_init() (git-fixes). - dm: fix a buffer overflow in ioctl processing (git-fixes). - drm/amd/display: Fix integer overflow in bios_get_image() (stable-fixes). - drm/amd/display: Validate GPIO pin LUT table size before iterating (stable-fixes). - drm/amd/display: Validate payload length and link_index in dc_process_dmub_aux_transfer_async (stable-fixes). - drm/amd/pm/si: Disregard vblank time when no displays are connected (git-fixes). - drm/amdgpu/uvd3.1: Don't validate the firmware when already validated (git-fixes). - drm/amdgpu/uvd4.2: Don't initialize UVD 4.2 when DPM is disabled (git-fixes). - drm/amdgpu/vce2: Fix VCE 2 firmware size and offsets (git-fixes). - drm/amdgpu/vce3: Fix VCE 3 firmware size and offsets (git-fixes). - drm/amdgpu/vpe: Force collaborate sync after TRAP (stable-fixes). - drm/amdgpu: add amdgpu_device reference in ip block (stable-fixes). - drm/amdgpu: fix spelling typos (stable-fixes). - drm/amdgpu: update the handle ptr in dump_ip_state (stable-fixes). - drm/amdgpu: update the handle ptr in early_init (stable-fixes). - drm/bridge: chipone-icn6211: use devm_drm_bridge_add in i2c probe (git-fixes). - drm/bridge: it66121: acquire reset GPIO in probe (git-fixes). - drm/bridge: megachips: remove bridge when irq request fails (git-fixes). - drm/hyperv: validateresolution_count and fix WIN8 fallback (git-fixes). - drm/hyperv: validate VMBus packet size in receive callback (git-fixes). - drm/i915/dp: Fix readback for target_rr in Adaptive Sync SDP (git-fixes). - drm/i915: Fix potential UAF in TTM object purge (git-fixes). - drm/msm/dsi: don't dump registers past the mapped region (git-fixes). - drm/msm/snapshot: fix dumping of the unaligned regions (git-fixes). - drm/radeon/evergreen_cs: Add missing NULL prefix check in surface check (git-fixes). - drm/virtio: use uninterruptible resv lock for plane updates (git-fixes). - drm/xe/gsc: Fix double-free of managed BO in error path (git-fixes). - drm/xe/oa: Fix exec_queue leak on width check in stream open (git-fixes). - drm/xe/pf: Fix CFI failure in debugfs access (git-fixes). - drm/xe/vf: Fix signature of print functions (git-fixes). - drm/xe: Define CACHE_MODE_1 as MCR register (git-fixes). - efi: Allocate runtime workqueue before ACPI init (git-fixes). - firmware: arm_ffa: Align RxTx buffer size before mapping (git-fixes). - firmware: arm_ffa: Check for NULL FF-A ID table while driver registration (git-fixes). - firmware: arm_ffa: Fix per-vcpu self notifications handling in workqueue (git-fixes). - firmware: arm_ffa: Skip free_pages on RX buffer alloc failure (git-fixes). - gve: Add RSS cache for non RSS device option scenario (bsc#1265925). - gve: add XDP DROP and PASS support for DQ (bsc#1265925). - gve: Enable reading max ring size from the device in DQO-QPL mode (bsc#1265925). - gve: introduce config-based allocation for XDP (bsc#1265925). - gve: merge packet buffer size fields (bsc#1265925). - gve: remove xdp_xsk_done and xdp_xsk_wakeup statistics (bsc#1265925). - gve: update GQ RX to use buf_size (bsc#1265925). - gve: Update QPL page registration logic (bsc#1265925). - gve: update XDP allocation path support RX buffer posting (bsc#1265925). - HID: playstation: Clamp num_touch_reports (git-fixes). - HID: quirks: really enable the intended work around for appledisplay (git-fixes). - HID: uclogic: Fix regression ofinput name assignment (git-fixes). - hwmon: (lenovo-ec-sensors): Convert to devm_request_region() (git-fixes). - hwmon: (lenovo-ec-sensors): Fix EC "MCHP" signature validation logic (git-fixes). - hwmon: (pmbus/adm1266) bounce blackbox records through a protocol-sized buffer (git-fixes). - hwmon: (pmbus/adm1266) cap PDIO scan in get_multiple at ADM1266_PDIO_NR (git-fixes). - hwmon: (pmbus/adm1266) don't clobber GPIO bits before PDIO read in get_multiple (git-fixes). - hwmon: (pmbus/adm1266) include adapter number in GPIO line label (git-fixes). - hwmon: (pmbus/adm1266) include PEC byte in pmbus_block_xfer read buffer (git-fixes). - hwmon: (pmbus/adm1266) register the gpio_chip after pmbus_do_probe() (git-fixes). - hwmon: (pmbus/adm1266) register the nvmem device after pmbus_do_probe() (git-fixes). - hwmon: (pmbus/adm1266) reject implausible blackbox record_count (git-fixes). - hwmon: (pmbus/adm1266) reject short block-read responses in the GPIO accessors (git-fixes). - hwmon: (pmbus/adm1266) seed timestamp from the real-time clock (git-fixes). - hwmon: (pmbus/adm1266) widen blackbox-info buffer to I2C_SMBUS_BLOCK_MAX (git-fixes). - iio: adc: mt6359: fix unchecked return value in mt6358_read_imp (git-fixes). - iio: adc: npcm: fix unbalanced clk_disable_unprepare() (git-fixes). - iio: adc: viperboard: Fix error handling in vprbrd_iio_read_raw (git-fixes). - iio: adc: xilinx-xadc: Fix sequencer mode in postdisable for dual mux (git-fixes). - iio: buffer: Fix DMA fence leak in iio_buffer_enqueue_dmabuf() (git-fixes). - iio: buffer: hw-consumer: fix use-after-free in error path (git-fixes). - iio: dac: ad5686: acquire lock when doing powerdown control (git-fixes). - iio: dac: ad5686: fix input raw value check (git-fixes). - iio: dac: max5821: fix return value check in powerdown sync (git-fixes). - iio: gyro: adis16260: fix division by zero in write_raw (git-fixes). - iio: gyro: itg3200: fix i2c read into the wrong stack location (git-fixes). - iio: imu: st_lsm6dsx: fix stack leak in tagged FIFO buffer (git-fixes). -iio: light: cm3323: fix reg_conf not being initialized correctly (git-fixes). - iio: magnetometer: st_magn: fix default DRDY pin selection for LIS2MDL (git-fixes). - iio: ssp_sensors: cancel delayed work_refresh on remove (git-fixes). - iio: temperature: tsys01: fix broken PROM checksum validation (git-fixes). - Input: atmel_mxt_ts - fix boundary check in mxt_prepare_cfg_mem (git-fixes). - Input: ims-pcu - fix usb_free_coherent() size in ims_pcu_buffers_free() (git-fixes). - Input: usbtouchscreen - clamp NEXIO data_len/x_len to URB buffer size (git-fixes). - Input: xpad - fix out-of-bounds access for Share button (git-fixes). - KVM: nSVM: Avoid incorrect injection of SVM_EXIT_CR0_SEL_WRITE (git-fixes). - KVM: nSVM: Propagate SVM_EXIT_CR0_SEL_WRITE correctly for LMSW emulation (git-fixes). - KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0 (git-fixes). - KVM: x86: Fix Xen hypercall tracepoint argument assignment (git-fixes). - KVM: x86: Return the VM's configured APIC bus frequency when queried (git-fixes). - media: i2c: og01a1b: Fix V4L2 subdevice data initialization on probe (git-fixes). - media: i2c: og01a1b: Replace client-> dev usage (stable-fixes). - net: mana: Add NULL guards in teardown path to prevent panic on attach failure (git-fixes). - net: mana: Expose hardware diagnostic info via debugfs (bsc#1266414). - net: mana: Fix TOCTOU double-fetch of hwc_msg_id from DMA buffer (bsc#1265928). - net: mana: hardening: Reject zero max_num_queues from GDMA_QUERY_MAX_RESOURCES (git-fixes). - net: mana: hardening: Reject zero max_num_queues from MANA_QUERY_VPORT_CONFIG (git-fixes). - net: mana: Skip redundant detach on already-detached port (git-fixes). - net: mana: Use kvmalloc for large RX queue and buffer allocations (bsc#1266765). - net: mana: Use per-queue allocation for tx_qp to reduce allocation size (bsc#1266765). - net: mana: validate rx_req_idx to prevent out-of-bounds array access (bsc#1266402). - parport: Fix race between port and client registration (git-fixes). - platform/surface: aggregator_registry:omit battery & AC nodes on Surface Laptop 7 (git-fixes). - platform/x86: adv_swbutton: Check ACPI_HANDLE() against NULL (git-fixes). - platform/x86: hp_accel: Check ACPI_COMPANION() against NULL (git-fixes). - platform/x86: intel-hid: Check ACPI_HANDLE() against NULL (git-fixes). - platform/x86: intel-vbtn: Check ACPI_HANDLE() against NULL (git-fixes). - RDMA/efa: Check stored completion CTX command ID with received one (git-fixes). - RDMA/efa: Extend admin timeout error print (git-fixes). - RDMA/efa: Fix possible deadlock (git-fixes). - RDMA/efa: Improve admin completion context state machine (git-fixes). - RDMA/mana_ib: Report max_msg_sz in mana_ib_query_port (git-fixes). - Revert "ACPI: CPPC: Adjust debug messages in amd_set_max_freq_ratio() to warn" (git-fixes). - s390/pfault: Fix virtual vs physical address confusion (bsc#1262754). - scsi: devinfo: Add BLIST_SKIP_IO_HINTS for Iomega ZIP (git-fixes). - scsi: mpi3mr: Clear reset history on ready and recheck state after timeout (git-fixes). - scsi: ses: Handle positive SCSI error from ses_recv_diag() (git-fixes). - scsi: ufs: core: Fix shift out of bounds when MAXQ=32 (git-fixes). - security/keys: fix missed RCU read section on lookup (stable-fixes). - serial: fsl_lpuart: fix rx buffer and DMA map leaks in start_rx_dma (git-fixes). - serial: qcom-geni: fix UART_RX_PAR_EN bit position (git-fixes). - serial: qcom_geni: fix kfifo underflow when flush precedes DMA completion IRQ (git-fixes). - smb: client: reject userspace cifs.spnego descriptions (bsc#1266238). - spi: ep93xx: fix error pointer deref after DMA setup failure (git-fixes). - spi: mtk-snfi: Fix resource leak in mtk_snand_read_page_cache() (git-fixes). - spi: qup: fix error pointer deref after DMA setup failure (git-fixes). - spi: sprd: fix error pointer deref after DMA setup failure (git-fixes). - spi: ti-qspi: fix use-after-free after DMA setup failure (git-fixes). - thunderbolt: property: Reject dir_len < 4 to prevent size_t underflow (git-fixes). - thunderbolt: property: Reject u32 wrap intb_property_entry_valid() (git-fixes). - tracing: Switch trace_osnoise.c code over to use guard() and __free() (bsc#1262634). - tty: serial: pch_uart: add check for dma_alloc_coherent() (git-fixes). - tty: serial: samsung: Remove redundant port lock acquisition in rx helpers (git-fixes). - USB: cdc-acm: Fix bit overlap and move quirk definitions to header (git-fixes). - usb: cdns3: gadget: fix request skipping after clearing halt (git-fixes). - usb: cdns3: plat: fix leaked usb2_phy initialization on usb3_phy acquisition failure (git-fixes). - usb: chipidea: core: convert ci_role_switch to local variable (git-fixes). - usb: dwc2: Fix use after free in debug code (git-fixes). - usb: gadget: composite: fix integer underflow in WebUSB GET_URL handling (git-fixes). - usb: gadget: dummy_hcd: Reject hub port requests for non-existent ports (git-fixes). - usb: gadget: f_fs: copy only received bytes on short ep0 read (git-fixes). - usb: gadget: f_fs: serialize DMABUF cancel against request completion (git-fixes). - usb: gadget: f_hid: fix device reference leak in hidg_alloc() (git-fixes). - usb: gadget: net2280: Fix double free in probe error path (git-fixes). - usb: gadget: uvc: hold opts-> lock across XU walks in uvc_function_bind (git-fixes). - USB: serial: belkin_sa: validate interrupt status length (git-fixes). - USB: serial: cypress_m8: validate interrupt packet headers (git-fixes). - USB: serial: keyspan: fix missing indat transfer sanity check (git-fixes). - USB: serial: mct_u232: fix missing interrupt-in transfer sanity check (git-fixes). - USB: serial: mxuport: fix memory corruption with small endpoint (git-fixes). - USB: serial: omninet: fix memory corruption with small endpoint (git-fixes). - USB: serial: option: add missing RSVD(5) flag for Rolling RW135R-GL (git-fixes). - USB: serial: safe_serial: fix memory corruption with small endpoint (git-fixes). - usb: typec: tcpm: improve handling of DISCOVER_MODES failures (git-fixes). - usb: typec: ucsi: Don't update power_supply on power role change if notconnected (git-fixes). - usb: usbtmc: check URB actual_length for interrupt-IN notifications (git-fixes). - usb: usbtmc: reject interrupt endpoints with small wMaxPacketSize (git-fixes). - usbip: vudc: Fix use after free bug in vudc_remove due to race condition (git-fixes). - virt: sev-guest: Explicitly leak pages in unknown state (git-fixes). - wifi: ath10k: skip WMI and beacon transmission when device is wedged (git-fixes). - wifi: ath11k: clear shared SRNG pointer state on restart (git-fixes). - wifi: ath11k: fix error path leak in ath11k_tm_cmd_wmi_ftm() (git-fixes). - wifi: ath11k: fix error path leaks in some WMI calls (git-fixes). - wifi: ath11k: fix error path leaks in some WMI WOW calls (git-fixes). - wifi: ath11k: fix peer resolution on rx path when peer_id=0 (git-fixes). - wifi: ath11k: fix use after free in ath11k_dp_rx_msdu_coalesce() (git-fixes). - wifi: cfg80211: advance loop vars in cfg80211_merge_profile() (git-fixes). - wifi: mac80211: consume only present negotiated TTLM maps (git-fixes). - wifi: mac80211: fix MLE defragmentation (git-fixes). - wifi: mac80211: fix multi-link element inheritance (git-fixes). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-897=1 Package List: - openSUSE Leap 16.0: cluster-md-kmp-64kb-6.12.0-160000.34.1 cluster-md-kmp-azure-6.12.0-160000.34.1 cluster-md-kmp-default-6.12.0-160000.34.1 cluster-md-kmp-rt-6.12.0-160000.34.1 dlm-kmp-64kb-6.12.0-160000.34.1 dlm-kmp-azure-6.12.0-160000.34.1 dlm-kmp-default-6.12.0-160000.34.1 dlm-kmp-rt-6.12.0-160000.34.1 dtb-allwinner-6.12.0-160000.34.1 dtb-altera-6.12.0-160000.34.1 dtb-amazon-6.12.0-160000.34.1 dtb-amd-6.12.0-160000.34.1 dtb-amlogic-6.12.0-160000.34.1 dtb-apm-6.12.0-160000.34.1 dtb-apple-6.12.0-160000.34.1 dtb-arm-6.12.0-160000.34.1 dtb-broadcom-6.12.0-160000.34.1 dtb-cavium-6.12.0-160000.34.1 dtb-exynos-6.12.0-160000.34.1 dtb-freescale-6.12.0-160000.34.1 dtb-hisilicon-6.12.0-160000.34.1 dtb-lg-6.12.0-160000.34.1 dtb-marvell-6.12.0-160000.34.1 dtb-mediatek-6.12.0-160000.34.1 dtb-nvidia-6.12.0-160000.34.1 dtb-qcom-6.12.0-160000.34.1 dtb-renesas-6.12.0-160000.34.1 dtb-rockchip-6.12.0-160000.34.1 dtb-socionext-6.12.0-160000.34.1 dtb-sprd-6.12.0-160000.34.1 dtb-xilinx-6.12.0-160000.34.1 gfs2-kmp-64kb-6.12.0-160000.34.1 gfs2-kmp-azure-6.12.0-160000.34.1 gfs2-kmp-default-6.12.0-160000.34.1 gfs2-kmp-rt-6.12.0-160000.34.1 kernel-64kb-6.12.0-160000.34.1 kernel-64kb-devel-6.12.0-160000.34.1 kernel-64kb-extra-6.12.0-160000.34.1 kernel-64kb-optional-6.12.0-160000.34.1 kernel-azure-6.12.0-160000.34.1 kernel-azure-devel-6.12.0-160000.34.1 kernel-azure-extra-6.12.0-160000.34.1 kernel-azure-optional-6.12.0-160000.34.1 kernel-azure-vdso-6.12.0-160000.34.1 kernel-default-6.12.0-160000.34.1 kernel-default-base-6.12.0-160000.34.1.160000.2.15 kernel-default-devel-6.12.0-160000.34.1 kernel-default-extra-6.12.0-160000.34.1 kernel-default-optional-6.12.0-160000.34.1 kernel-default-vdso-6.12.0-160000.34.1 kernel-devel-6.12.0-160000.34.1 kernel-docs-6.12.0-160000.34.1 kernel-docs-html-6.12.0-160000.34.1 kernel-kvmsmall-6.12.0-160000.34.1 kernel-kvmsmall-devel-6.12.0-160000.34.1 kernel-kvmsmall-vdso-6.12.0-160000.34.1 kernel-macros-6.12.0-160000.34.1 kernel-obs-build-6.12.0-160000.34.1 kernel-obs-qa-6.12.0-160000.34.1 kernel-rt-6.12.0-160000.34.1 kernel-rt-devel-6.12.0-160000.34.1 kernel-rt-extra-6.12.0-160000.34.1 kernel-rt-optional-6.12.0-160000.34.1 kernel-rt-vdso-6.12.0-160000.34.1 kernel-source-6.12.0-160000.34.1 kernel-source-vanilla-6.12.0-160000.34.1 kernel-syms-6.12.0-160000.34.1 kernel-zfcpdump-6.12.0-160000.34.1 kselftests-kmp-64kb-6.12.0-160000.34.1 kselftests-kmp-azure-6.12.0-160000.34.1 kselftests-kmp-default-6.12.0-160000.34.1 kselftests-kmp-rt-6.12.0-160000.34.1 ocfs2-kmp-64kb-6.12.0-160000.34.1 ocfs2-kmp-azure-6.12.0-160000.34.1 ocfs2-kmp-default-6.12.0-160000.34.1 ocfs2-kmp-rt-6.12.0-160000.34.1 References: * https://www.suse.com/security/cve/CVE-2023-20585.html * https://www.suse.com/security/cve/CVE-2026-23359.html * https://www.suse.com/security/cve/CVE-2026-23380.html * https://www.suse.com/security/cve/CVE-2026-23444.html * https://www.suse.com/security/cve/CVE-2026-31464.html * https://www.suse.com/security/cve/CVE-2026-31480.html * https://www.suse.com/security/cve/CVE-2026-31483.html * https://www.suse.com/security/cve/CVE-2026-31493.html * https://www.suse.com/security/cve/CVE-2026-3150.html * https://www.suse.com/security/cve/CVE-2026-31516.html * https://www.suse.com/security/cve/CVE-2026-31521.html * https://www.suse.com/security/cve/CVE-2026-31568.html * https://www.suse.com/security/cve/CVE-2026-31575.html * https://www.suse.com/security/cve/CVE-2026-31613.html * https://www.suse.com/security/cve/CVE-2026-31614.html * https://www.suse.com/security/cve/CVE-2026-31729.html * https://www.suse.com/security/cve/CVE-2026-31736.html * https://www.suse.com/security/cve/CVE-2026-43009.html * https://www.suse.com/security/cve/CVE-2026-43012.html * https://www.suse.com/security/cve/CVE-2026-43013.html * https://www.suse.com/security/cve/CVE-2026-43054.html * https://www.suse.com/security/cve/CVE-2026-43112.html * https://www.suse.com/security/cve/CVE-2026-43234.html * https://www.suse.com/security/cve/CVE-2026-43252.html * https://www.suse.com/security/cve/CVE-2026-43325.html * https://www.suse.com/security/cve/CVE-2026-43328.html * https://www.suse.com/security/cve/CVE-2026-43333.html * https://www.suse.com/security/cve/CVE-2026-43338.html * https://www.suse.com/security/cve/CVE-2026-43341.html * https://www.suse.com/security/cve/CVE-2026-43359.html * https://www.suse.com/security/cve/CVE-2026-43360.html *https://www.suse.com/security/cve/CVE-2026-43361.html * https://www.suse.com/security/cve/CVE-2026-43362.html * https://www.suse.com/security/cve/CVE-2026-43414.html * https://www.suse.com/security/cve/CVE-2026-43499.html * https://www.suse.com/security/cve/CVE-2026-45843.html * https://www.suse.com/security/cve/CVE-2026-46110.html * https://www.suse.com/security/cve/CVE-2026-46243.html . An important update for openSUSE Leap 16.0 kernel fixes 38 issues and introduces 45 enhancements.. openSUSE security, kernel update, vulnerability fix, patch management, Linux kernel. . Severity: Important. LinuxSecurity.com Team
Jun 08, 2026
•Important
OpenSUSE
202
security advisorymoderateuser accessopenSUSE Leap 16.0 NetworkManager Moderate CVE-2025-9615 Advisory
An update that solves one vulnerability and has 2 bug fixes can now be installed.. openSUSE security update: security update for networkmanager ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20911-1 Rating: moderate References: * bsc#1257359 * bsc#1257366 Cross-References: * CVE-2025-9615 CVSS scores: * CVE-2025-9615 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has 2 bug fixes can now be installed. Description: This update for NetworkManager fixes the following issues: Security fixes: - CVE-2025-9615: Fixed non-admin user using others' certificates (bsc#1257359). Other fixes: - Accept localhost hostnames if static (bsc#1257366) Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-896=1 Package List: - openSUSE Leap 16.0: NetworkManager-1.52.0-160000.4.1 NetworkManager-bluetooth-1.52.0-160000.4.1 NetworkManager-branding-upstream-1.52.0-160000.4.1 NetworkManager-cloud-setup-1.52.0-160000.4.1 NetworkManager-config-server-1.52.0-160000.4.1 NetworkManager-devel-1.52.0-160000.4.1 NetworkManager-lang-1.52.0-160000.4.1 NetworkManager-ovs-1.52.0-160000.4.1 NetworkManager-pppoe-1.52.0-160000.4.1 NetworkManager-tui-1.52.0-160000.4.1 NetworkManager-wwan-1.52.0-160000.4.1 libnm0-1.52.0-160000.4.1 typelib-1_0-NM-1_0-1.52.0-160000.4.1 References: * https://www.suse.com/security/cve/CVE-2025-9615.html . This openSUSE advisory covers a moderate security fix for NetworkManager with CVE-2025-9615 addressing certificate issues.. openSUSE security, NetworkManager fix, CVE-2025-9615, moderate update, Linux advisory. .Severity: moderate. LinuxSecurity.com Team
Jun 08, 2026
•moderate
OpenSUSE
202
security advisorybuffer overflowimportantopenSUSE Leap 16.0 ffmpeg-4 Major Buffer Overflow Fix 2026-20914-1
An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for ffmpeg-4 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20914-1 Rating: important References: * bsc#1262047 Cross-References: * CVE-2026-30997 CVSS scores: * CVE-2026-30997 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H * CVE-2026-30997 ( SUSE ): 7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for ffmpeg-4 fixes the following issues: Changes in ffmpeg-4: - CVE-2026-30997: avcodec/av1dec: check that primary_ref_frame is within range (bsc#1262047) Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-packagehub-299=1 Package List: - openSUSE Leap 16.0: ffmpeg-4-4.4.7-bp160.2.1 ffmpeg-4-libavcodec-devel-4.4.7-bp160.2.1 ffmpeg-4-libavdevice-devel-4.4.7-bp160.2.1 ffmpeg-4-libavfilter-devel-4.4.7-bp160.2.1 ffmpeg-4-libavformat-devel-4.4.7-bp160.2.1 ffmpeg-4-libavresample-devel-4.4.7-bp160.2.1 ffmpeg-4-libavutil-devel-4.4.7-bp160.2.1 ffmpeg-4-libpostproc-devel-4.4.7-bp160.2.1 ffmpeg-4-libswresample-devel-4.4.7-bp160.2.1 ffmpeg-4-libswscale-devel-4.4.7-bp160.2.1 ffmpeg-4-private-devel-4.4.7-bp160.2.1 libavcodec58_134-4.4.7-bp160.2.1 libavdevice58_13-4.4.7-bp160.2.1 libavfilter7_110-4.4.7-bp160.2.1 libavformat58_76-4.4.7-bp160.2.1 libavresample4_0-4.4.7-bp160.2.1 libavutil56_70-4.4.7-bp160.2.1 libpostproc55_9-4.4.7-bp160.2.1 libswresample3_9-4.4.7-bp160.2.1 libswscale5_9-4.4.7-bp160.2.1 References: *https://www.suse.com/security/cve/CVE-2026-30997.html . Update resolves a critical buffer overflow in ffmpeg-4 for openSUSE Leap 16.0, ensuring system stability and security.. openSUSE security update, ffmpeg bug fix, critical buffer overflow. . Severity: Important. LinuxSecurity.com Team
Jun 08, 2026
•Important
OpenSUSE
202
security advisorymoderatedenial of serviceopenSUSE Leap 16.0 dpkg Moderate DoS Vulnerability Fix 2026-20909-1
An update that solves one vulnerability and has one bug fix can now be installed.. openSUSE security update: security update for dpkg ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20909-1 Rating: moderate References: * bsc#1259385 Cross-References: * CVE-2026-2219 CVSS scores: * CVE-2026-2219 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-2219 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves one vulnerability and has one bug fix can now be installed. Description: This update for dpkg fixes the following issue: - CVE-2026-2219: dpkg-deb: malformed .deb archives can cause a denial of service (bsc#1259385). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-894=1 Package List: - openSUSE Leap 16.0: dpkg-1.22.21-160000.3.1 dpkg-devel-1.22.21-160000.3.1 dpkg-lang-1.22.21-160000.3.1 update-alternatives-1.22.21-160000.3.1 References: * https://www.suse.com/security/cve/CVE-2026-2219.html . Install openSUSE's latest security update for dpkg addressing a moderate issue and improving system stability. . openSUSE security, dpkg update, denial of service, moderate security fix. . Severity: moderate. LinuxSecurity.com Team
Jun 08, 2026
•moderate
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!