Stay Vigilant with Timely Linux Security Advisories

security advisorymoderatefreeradius

Rocky Linux FreeRADIUS Moderate Security Issues RLSA-2023-2870

Moderate: freeradius:3.0 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:2870", "synopsis": "Moderate: freeradius:3.0 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for module.freeradius, freeradius.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "FreeRADIUS is a high-performance and highly configurable free Remote Authentication Dial In User Service (RADIUS) server, designed to allow centralized authentication and authorization for a network.\n\nSecurity Fix(es):\n\n* freeradius: Information leakage in EAP-PWD (CVE-2022-41859)\n\n* freeradius: Crash on unknown option in EAP-SIM (CVE-2022-41860)\n\n* freeradius: Crash on invalid abinary data (CVE-2022-41861)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.8 Release Notes linked from the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2078483", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2078483", "description": ""}, {"ticket": "2078485", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2078485", "description": ""}, {"ticket": "2078487", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2078487", "description": ""}], "cves": [{"name": "CVE-2022-41859", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41859", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "cvss3BaseScore": "7.5", "cwe": "CWE-208"}, {"name": "CVE-2022-41860", "sourceBy": "MITRE", "sourceLink":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41860", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-476"}, {"name": "CVE-2022-41861", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41861", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-20"}], "references": [], "publishedAt": "2026-06-26T18:00:57.979049Z", "rpms": {"Rocky Linux 8": {"nvras": ["freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.src.rpm", "freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-debugsource-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-devel-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-devel-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-doc-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-doc-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-krb5-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-krb5-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-krb5-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-ldap-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-ldap-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-ldap-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-mysql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-mysql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-mysql-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-perl-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-perl-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm","freeradius-perl-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-postgresql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-postgresql-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-postgresql-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-rest-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-rest-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-rest-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-sqlite-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-sqlite-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-sqlite-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-unixODBC-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-unixODBC-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-unixODBC-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-utils-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "freeradius-utils-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "freeradius-utils-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "python3-freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm", "python3-freeradius-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.x86_64.rpm", "python3-freeradius-debuginfo-0:3.0.20-14.module+el8.8.0+1130+46a6e0a1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Moderate security update for FreeRADIUS in Rocky Linux addresses critical information leakage and crashes from specific options and data.. FreeRADIUS update, Rocky Linux security, moderate advisory, crash vulnerabilities. . Severity: moderate. LinuxSecurity.com Team

Jun 26, 2026 •moderate Rocky Linux

security advisorymoderateupdate

Rocky Linux python27 Moderate CPU Denial of Service Vulnern RLSA-2023-2860

Moderate: python27:2.7 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:2860", "synopsis": "Moderate: python27:2.7 security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for python-backports-ssl_match_hostname, python-ipaddress, python-markupsafe, module.python-chardet, module.python-pytest-mock, module.python-docs, python-pysocks, python-docutils, python-nose, module.python-markupsafe, module.python-dns, module.python-setuptools_scm, module.python-idna, babel, python-lxml, python-virtualenv, python-wheel, Cython, module.numpy, module.python-pymongo, module.python-mock, module.python-attrs, python-setuptools_scm, python2-pip, module.python-backports, python-sqlalchemy, module.babel, python-pluggy, python-funcsigs, module.python-pygments, module.PyYAML, module.python2-pip, numpy, scipy, python-pymongo, module.python-funcsigs, pytest, python2-rpm-macros, module.python-lxml, module.python2-six, python-docs, module.python-pluggy, module.Cython, python-mock, module.python-backports-ssl_match_hostname, module.python-PyMySQL, python-idna, module.python-ipaddress, python-backports, module.python2-rpm-macros, python-pytest-mock, python2-six, module.python-virtualenv, python-pygments, python-PyMySQL, module.python-pysocks, module.python-wheel, module.scipy, python-dns, module.python-sqlalchemy, module.python-docutils, python-py, python-attrs, module.pytest, module.python-py, PyYAML, python-chardet, module.python-nose.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Python is an interpreted, interactive, object-oriented programming language that supports modules, classes, exceptions, high-level dynamic data types, and dynamic typing. The python27 packages provide a stable release of Python 2.7 with a number of additional utilities and database connectors for MySQL and PostgreSQL.\n\nSecurity Fix(es):\n\n*Python: CPU denial of service via inefficient IDNA decoder (CVE-2022-45061)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.8 Release Notes linked from the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2144072", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2144072", "description": ""}], "cves": [{"name": "CVE-2022-45061", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-400"}], "references": [], "publishedAt": "2026-06-26T18:00:57.979049Z", "rpms": {"Rocky Linux 8": {"nvras": ["babel-0:2.5.1-10.module+el8.9.0+1531+a18208f5.noarch.rpm", "babel-0:2.5.1-10.module+el8.9.0+1531+a18208f5.src.rpm", "Cython-0:0.28.1-7.module+el8.10.0+40170+5f5fdfeb.src.rpm", "Cython-0:0.28.1-7.module+el8.9.0+1531+a18208f5.src.rpm", "Cython-debugsource-0:0.28.1-7.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "Cython-debugsource-0:0.28.1-7.module+el8.9.0+1531+a18208f5.aarch64.rpm", "Cython-debugsource-0:0.28.1-7.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "numpy-1:1.14.2-16.module+el8.9.0+1531+a18208f5.src.rpm", "numpy-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.src.rpm", "numpy-debugsource-1:1.14.2-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "numpy-debugsource-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "numpy-debugsource-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "pytest-0:3.4.2-13.module+el8.9.0+1531+a18208f5.src.rpm", "pytest-0:3.4.2-13.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python2-attrs-0:17.4.0-10.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-attrs-0:17.4.0-10.module+el8.10.0+40170+5f5fdfeb.noarch.rpm","python2-babel-0:2.5.1-10.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-backports-0:1.0-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-backports-0:1.0-16.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-backports-ssl_match_hostname-0:3.5.0.1-12.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-bson-0:3.7.0-1.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-bson-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-bson-0:3.7.0-1.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-bson-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-bson-debuginfo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-bson-debuginfo-0:3.7.0-1.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-bson-debuginfo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-chardet-0:3.0.4-10.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-chardet-0:3.0.4-10.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-Cython-0:0.28.1-7.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-Cython-0:0.28.1-7.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-Cython-0:0.28.1-7.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-Cython-0:0.28.1-7.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-Cython-debuginfo-0:0.28.1-7.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-Cython-debuginfo-0:0.28.1-7.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-Cython-debuginfo-0:0.28.1-7.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-dns-0:1.15.0-10.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-docs-0:2.7.16-2.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-docs-0:2.7.16-2.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-docs-info-0:2.7.16-2.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-docs-info-0:2.7.16-2.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-docutils-0:0.14-12.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-docutils-0:0.14-12.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-funcsigs-0:1.0.2-13.module+el8.9.0+1531+a18208f5.noarch.rpm","python2-idna-0:2.5-7.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-idna-0:2.5-7.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-ipaddress-0:1.0.18-6.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-lxml-0:4.2.3-6.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-lxml-0:4.2.3-6.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-lxml-0:4.2.3-6.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-lxml-0:4.2.3-6.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-lxml-debuginfo-0:4.2.3-6.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-lxml-debuginfo-0:4.2.3-6.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-lxml-debuginfo-0:4.2.3-6.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-markupsafe-0:0.23-19.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-markupsafe-0:0.23-19.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-mock-0:2.0.0-13.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-nose-0:1.3.7-31.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-nose-0:1.3.7-31.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-numpy-1:1.14.2-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-numpy-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-numpy-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-numpy-1:1.14.2-16.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-numpy-debuginfo-1:1.14.2-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-numpy-debuginfo-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-numpy-debuginfo-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-numpy-doc-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-numpy-doc-1:1.14.2-16.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-numpy-f2py-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-numpy-f2py-1:1.14.2-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-numpy-f2py-1:1.14.2-16.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-numpy-f2py-1:1.14.2-16.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm","python2-pip-0:9.0.3-19.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-pip-0:9.0.3-19.module+el8.9.0+1531+a18208f5.src.rpm", "python2-pip-wheel-0:9.0.3-19.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-pluggy-0:0.6.0-8.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-pluggy-0:0.6.0-8.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-py-0:1.5.3-6.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-py-0:1.5.3-6.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-pygments-0:2.2.0-22.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-pygments-0:2.2.0-22.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-pymongo-0:3.7.0-1.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-pymongo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-pymongo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-pymongo-0:3.7.0-1.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-pymongo-debuginfo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-pymongo-debuginfo-0:3.7.0-1.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-pymongo-debuginfo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-pymongo-gridfs-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-pymongo-gridfs-0:3.7.0-1.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-pymongo-gridfs-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-pymongo-gridfs-0:3.7.0-1.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-PyMySQL-0:0.8.0-10.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-PyMySQL-0:0.8.0-10.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-pysocks-0:1.6.8-6.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-pysocks-0:1.6.8-6.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-pytest-0:3.4.2-13.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-pytest-0:3.4.2-13.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-pytest-mock-0:1.9.0-4.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-pyyaml-0:3.12-16.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm","python2-pyyaml-0:3.12-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-pyyaml-0:3.12-16.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-pyyaml-0:3.12-16.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-pyyaml-debuginfo-0:3.12-16.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-pyyaml-debuginfo-0:3.12-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-pyyaml-debuginfo-0:3.12-16.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-rpm-macros-0:3-38.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-rpm-macros-0:3-38.module+el8.9.0+1531+a18208f5.src.rpm", "python2-setuptools_scm-0:1.15.7-6.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-six-0:1.11.0-6.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-six-0:1.11.0-6.module+el8.9.0+1531+a18208f5.src.rpm", "python2-sqlalchemy-0:1.3.2-2.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python2-sqlalchemy-0:1.3.2-2.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python2-sqlalchemy-0:1.3.2-2.module+el8.9.0+1531+a18208f5.x86_64.rpm", "python2-sqlalchemy-0:1.3.2-2.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python2-virtualenv-0:15.1.0-21.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-wheel-1:0.31.1-3.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-wheel-1:0.31.1-3.module+el8.9.0+1531+a18208f5.noarch.rpm", "python2-wheel-wheel-1:0.31.1-3.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python2-wheel-wheel-1:0.31.1-3.module+el8.9.0+1531+a18208f5.noarch.rpm", "python-attrs-0:17.4.0-10.module+el8.9.0+1531+a18208f5.src.rpm", "python-attrs-0:17.4.0-10.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-backports-0:1.0-16.module+el8.9.0+1531+a18208f5.src.rpm", "python-backports-ssl_match_hostname-0:3.5.0.1-12.module+el8.9.0+1531+a18208f5.src.rpm", "python-chardet-0:3.0.4-10.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-chardet-0:3.0.4-10.module+el8.9.0+1531+a18208f5.src.rpm", "python-dns-0:1.15.0-10.module+el8.9.0+1531+a18208f5.src.rpm", "python-docs-0:2.7.16-2.module+el8.10.0+40170+5f5fdfeb.src.rpm","python-docs-0:2.7.16-2.module+el8.9.0+1531+a18208f5.src.rpm", "python-docutils-0:0.14-12.module+el8.10.0+1592+61442852.src.rpm", "python-docutils-0:0.14-12.module+el8.10.0+1910+234ad790.src.rpm", "python-docutils-0:0.14-12.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-docutils-0:0.14-12.module+el8.9.0+1531+a18208f5.src.rpm", "python-funcsigs-0:1.0.2-13.module+el8.9.0+1531+a18208f5.src.rpm", "python-idna-0:2.5-7.module+el8.9.0+1531+a18208f5.src.rpm", "python-idna-0:2.5-7.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-ipaddress-0:1.0.18-6.module+el8.9.0+1531+a18208f5.src.rpm", "python-lxml-0:4.2.3-6.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-lxml-0:4.2.3-6.module+el8.9.0+1531+a18208f5.src.rpm", "python-lxml-debugsource-0:4.2.3-6.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python-lxml-debugsource-0:4.2.3-6.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python-lxml-debugsource-0:4.2.3-6.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python-markupsafe-0:0.23-19.module+el8.9.0+1531+a18208f5.src.rpm", "python-mock-0:2.0.0-13.module+el8.9.0+1531+a18208f5.src.rpm", "python-nose-0:1.3.7-31.module+el8.10.0+1592+61442852.src.rpm", "python-nose-0:1.3.7-31.module+el8.9.0+1531+a18208f5.src.rpm", "python-nose-0:1.3.7-31.module+el8.10.0+1910+234ad790.src.rpm", "python-nose-0:1.3.7-31.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-nose-docs-0:1.3.7-31.module+el8.9.0+1531+a18208f5.noarch.rpm", "python-nose-docs-0:1.3.7-31.module+el8.10.0+1910+234ad790.noarch.rpm", "python-nose-docs-0:1.3.7-31.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python-nose-docs-0:1.3.7-31.module+el8.10.0+1592+61442852.noarch.rpm", "python-pluggy-0:0.6.0-8.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-pluggy-0:0.6.0-8.module+el8.9.0+1531+a18208f5.src.rpm", "python-py-0:1.5.3-6.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-py-0:1.5.3-6.module+el8.9.0+1531+a18208f5.src.rpm", "python-pygments-0:2.2.0-22.module+el8.10.0+1592+61442852.src.rpm", "python-pygments-0:2.2.0-22.module+el8.10.0+1910+234ad790.src.rpm","python-pygments-0:2.2.0-22.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-pygments-0:2.2.0-22.module+el8.9.0+1531+a18208f5.src.rpm", "python-pymongo-0:3.7.0-1.module+el8.9.0+1531+a18208f5.src.rpm", "python-pymongo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-pymongo-0:3.7.0-1.module+el8.10.0+1592+61442852.src.rpm", "python-pymongo-0:3.7.0-1.module+el8.10.0+1910+234ad790.src.rpm", "python-pymongo-debuginfo-0:3.7.0-1.module+el8.10.0+1592+61442852.aarch64.rpm", "python-pymongo-debuginfo-0:3.7.0-1.module+el8.10.0+1910+234ad790.aarch64.rpm", "python-pymongo-debuginfo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python-pymongo-debuginfo-0:3.7.0-1.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python-pymongo-debuginfo-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python-pymongo-debugsource-0:3.7.0-1.module+el8.10.0+1592+61442852.aarch64.rpm", "python-pymongo-debugsource-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "python-pymongo-debugsource-0:3.7.0-1.module+el8.10.0+1910+234ad790.aarch64.rpm", "python-pymongo-debugsource-0:3.7.0-1.module+el8.9.0+1531+a18208f5.aarch64.rpm", "python-pymongo-debugsource-0:3.7.0-1.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "python-PyMySQL-0:0.8.0-10.module+el8.9.0+1531+a18208f5.src.rpm", "python-PyMySQL-0:0.8.0-10.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-pysocks-0:1.6.8-6.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-pysocks-0:1.6.8-6.module+el8.9.0+1531+a18208f5.src.rpm", "python-pytest-mock-0:1.9.0-4.module+el8.9.0+1531+a18208f5.src.rpm", "python-setuptools_scm-0:1.15.7-6.module+el8.9.0+1531+a18208f5.src.rpm", "python-sqlalchemy-0:1.3.2-2.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-sqlalchemy-0:1.3.2-2.module+el8.9.0+1531+a18208f5.src.rpm", "python-sqlalchemy-doc-0:1.3.2-2.module+el8.10.0+40170+5f5fdfeb.noarch.rpm", "python-sqlalchemy-doc-0:1.3.2-2.module+el8.9.0+1531+a18208f5.noarch.rpm", "python-virtualenv-0:15.1.0-21.module+el8.9.0+1531+a18208f5.src.rpm", "python-wheel-1:0.31.1-3.module+el8.10.0+1592+61442852.src.rpm","python-wheel-1:0.31.1-3.module+el8.10.0+40170+5f5fdfeb.src.rpm", "python-wheel-1:0.31.1-3.module+el8.10.0+1910+234ad790.src.rpm", "python-wheel-1:0.31.1-3.module+el8.9.0+1531+a18208f5.src.rpm", "PyYAML-0:3.12-16.module+el8.10.0+40170+5f5fdfeb.src.rpm", "PyYAML-0:3.12-16.module+el8.9.0+1531+a18208f5.src.rpm", "PyYAML-debugsource-0:3.12-16.module+el8.10.0+40170+5f5fdfeb.aarch64.rpm", "PyYAML-debugsource-0:3.12-16.module+el8.9.0+1531+a18208f5.aarch64.rpm", "PyYAML-debugsource-0:3.12-16.module+el8.10.0+40170+5f5fdfeb.x86_64.rpm", "scipy-0:1.0.0-21.module+el8.10.0+1592+61442852.src.rpm", "scipy-0:1.0.0-21.module+el8.10.0+1910+234ad790.src.rpm", "scipy-debugsource-0:1.0.0-21.module+el8.10.0+1910+234ad790.aarch64.rpm", "scipy-debugsource-0:1.0.0-21.module+el8.10.0+1592+61442852.aarch64.rpm", "scipy-debugsource-0:1.0.0-21.module+el8.10.0+1910+234ad790.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Update for Rocky Linux addresses a moderate security risk in Python 2.7, includes updates for various packages affected.. Rocky Linux Python Update, Python 2.7 Security, CPU Denial of Service, Python Package Vulnerabilities. . Severity: moderate. LinuxSecurity.com Team

Jun 26, 2026 •moderate Rocky Linux

security advisorybuffer overflowDoS

Debian 11 gdcm Critical Buffer Overflow Denial-of-Service DLA-4652-1

Multiple vulnerabilities were discovered in gdcm, a C++ library for working with DICOM medical files: CVE-2024-22373 An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality. A specially crafted. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4652-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Emmanuel Arias June 26, 2026 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : gdcm Version : 3.0.8-2+deb11u1 CVE ID : CVE-2024-22373 CVE-2024-22391 CVE-2024-25569 CVE-2025-11266 CVE-2025-48429 CVE-2025-52582 CVE-2025-53618 CVE-2025-53619 CVE-2026-3650 Debian Bug : 1070387 1122862 1123576 1123587 1123589 1132042 Multiple vulnerabilities were discovered in gdcm, a C++ library for working with DICOM medical files: CVE-2024-22373 An out-of-bounds write vulnerability exists in the JPEG2000Codec::DecodeByStreamsCommon functionality. A specially crafted DICOM file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability. CVE-2024-22391 A heap-based buffer overflow vulnerability exists in the LookupTable::SetLUT functionality. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. CVE-2024-25569 An out-of-bounds read vulnerability exists in the RAWCodec::DecodeBytes functionality. A specially crafted DICOM file can lead to an out-of-bounds read. An attacker can provide a malicious file to trigger this vulnerability. CVE-2025-11266 An out-of-bounds write vulnerability exists in the parsing of a malformed DICOM file containing encapsulated PixelData fragments (compressed image data stored as multiple fragments). Thisvulnerability leads to a segmentation fault caused by an out-of-bounds memory access due to an unsigned integer underflow in buffer indexing. It is exploitable via file input: simply opening a crafted malicious DICOM file is sufficient to trigger the crash, resulting in a denial-of-service condition. CVE-2025-48429 An out-of-bounds read vulnerability exists in the RLECodec::DecodeByStreams functionality. A specially crafted DICOM file can lead to leaking heap data. An attacker can provide a malicious file to trigger this vulnerability. CVE-2025-52582 An out-of-bounds read vulnerability exists in the Overlay::GrabOverlayFromPixelData functionality. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability. CVE-2025-53618 An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability. The function grayscale_convert is called based on the value of the malicious DICOM file specifying the intended interpretation of the image pixel data. CVE-2025-53619 An out-of-bounds read vulnerability exists in the JPEGBITSCodec::InternalCode functionality. A specially crafted DICOM file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability. The function null_convert is called based on the value of the malicious DICOM file specifying the intended interpretation of the image pixel data. CVE-2026-3650 A memory leak exists when parsing malformed DICOM files with non-standard VR types in file meta information. The vulnerability leads to vast memory allocations and resource depletion, triggering a denial-of-service condition. A maliciously crafted file can fill the heap in a single read operation without properly releasingit. For Debian 11 bullseye, these problems have been fixed in version 3.0.8-2+deb11u1. We recommend that you upgrade your gdcm packages. For the detailed security status of gdcm please refer to its security tracker page at: https://security-tracker.debian.org/tracker/gdcm Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Security update for gdcm addresses multiple out-of-bounds vulnerabilities leading to potential buffer overflows and memory corruption.. gdcm security update bug fixes buffer overflow memory corruption. . Severity: Critical. LinuxSecurity.com Team

Jun 26, 2026 •Critical Debian LTS

security advisorysecurity issueSuSE

SUSE Kernel Important Security Update 2026-2638-1 Fixing 21 Issues

An update that solves 21 vulnerabilities and has two security fixes can now be installed.. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2638-1 Release Date: 2026-06-26T06:37:49Z Rating: important References: * bsc#1255416 * bsc#1258538 * bsc#1260531 * bsc#1262663 * bsc#1262993 * bsc#1263769 * bsc#1263879 * bsc#1263880 * bsc#1264076 * bsc#1264116 * bsc#1264470 * bsc#1264610 * bsc#1266214 * bsc#1266290 * bsc#1267214 * bsc#1267361 * bsc#1267369 * bsc#1267381 * bsc#1267387 * bsc#1267621 * bsc#1267640 * bsc#1267652 * bsc#1267697 Cross-References: * CVE-2025-10263 * CVE-2025-68324 * CVE-2026-23392 * CVE-2026-31473 * CVE-2026-31500 * CVE-2026-31613 * CVE-2026-31697 * CVE-2026-31698 * CVE-2026-31699 * CVE-2026-31759 * CVE-2026-43077 * CVE-2026-43198 * CVE-2026-45984 * CVE-2026-46037 * CVE-2026-46116 * CVE-2026-46120 * CVE-2026-46123 * CVE-2026-46150 * CVE-2026-46159 * CVE-2026-46197 * CVE-2026-46227 CVSS scores: * CVE-2025-10263 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-68324 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31473 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31473 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31473 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31500 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31500 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31613 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31613 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31613 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H * CVE-2026-31697 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31697 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31698 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31698 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31699 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31699 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31759 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31759 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31759 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43077 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43077 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43077 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43198 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43198 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43198 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45984 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45984 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45984 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46037 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46037 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-46037 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-46116 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46116 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46116 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46120 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46123 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46123 ( SUSE ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-46123 ( NVD ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-46150 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-46150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46150 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46159 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46159 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46197 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46197 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46197 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46227 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46227 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46227 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSELinux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves 21 vulnerabilities and has two security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). * CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work (bsc#1255416). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (bsc#1262663). * CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). * CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). * CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). * CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). * CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). * CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). * CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). * CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). * CVE-2026-45984: gfs2: Move the inode glock locking to gfs2_file_buffered_write (bsc#1267214). * CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). *CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). * CVE-2026-46120: ip6_gre: Use cached t-> net in ip6erspan_changelink() (bsc#1267640). * CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). * CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). * CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). * CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). * CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). The following non security issues were fixed: * smb: client: correctly handle ErrorContextData as a flexible array (git- fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2638=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2638=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2638=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2638=1 * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2638=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2638=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2638=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2638=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2638=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2638=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2638=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc ppc64le x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * kernel-64kb-devel-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4(aarch64 x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise High PerformanceComputing LTSS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64) * kernel-64kb-devel-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.225.2 * dlm-kmp-default-5.14.21-150400.24.225.2 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * dlm-kmp-default-debuginfo-5.14.21-150400.24.225.2 * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * ocfs2-kmp-default-5.14.21-150400.24.225.2 * cluster-md-kmp-default-5.14.21-150400.24.225.2 * gfs2-kmp-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Availability Extension 15 SP4 (nosrc) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Live Patching 15-SP4 (nosrc) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-livepatch-SLE15-SP4_Update_56-debugsource-1-150400.9.3.2 * kernel-default-livepatch-5.14.21-150400.24.225.2 * kernel-livepatch-5_14_21-150400_24_225-default-1-150400.9.3.2 * kernel-default-livepatch-devel-5.14.21-150400.24.225.2 * kernel-livepatch-5_14_21-150400_24_225-default-debuginfo-1-150400.9.3.2 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (aarch64) * dlm-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-apple-5.14.21-150400.24.225.1 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-extra-5.14.21-150400.24.225.2 * dtb-arm-5.14.21-150400.24.225.1 * dtb-cavium-5.14.21-150400.24.225.1 *reiserfs-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-amazon-5.14.21-150400.24.225.1 * kernel-64kb-optional-5.14.21-150400.24.225.2 * kernel-64kb-devel-5.14.21-150400.24.225.2 * dtb-xilinx-5.14.21-150400.24.225.1 * dtb-mediatek-5.14.21-150400.24.225.1 * dtb-qcom-5.14.21-150400.24.225.1 * dtb-broadcom-5.14.21-150400.24.225.1 * dtb-hisilicon-5.14.21-150400.24.225.1 * ocfs2-kmp-64kb-5.14.21-150400.24.225.2 * dtb-exynos-5.14.21-150400.24.225.1 * dtb-lg-5.14.21-150400.24.225.1 * reiserfs-kmp-64kb-5.14.21-150400.24.225.2 * gfs2-kmp-64kb-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * dtb-amd-5.14.21-150400.24.225.1 * gfs2-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-altera-5.14.21-150400.24.225.1 * cluster-md-kmp-64kb-5.14.21-150400.24.225.2 * dtb-nvidia-5.14.21-150400.24.225.1 * dlm-kmp-64kb-5.14.21-150400.24.225.2 * dtb-apm-5.14.21-150400.24.225.1 * ocfs2-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * kselftests-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-renesas-5.14.21-150400.24.225.1 * cluster-md-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-optional-debuginfo-5.14.21-150400.24.225.2 * dtb-sprd-5.14.21-150400.24.225.1 * dtb-allwinner-5.14.21-150400.24.225.1 * dtb-marvell-5.14.21-150400.24.225.1 * kernel-64kb-extra-debuginfo-5.14.21-150400.24.225.2 * dtb-socionext-5.14.21-150400.24.225.1 * kselftests-kmp-64kb-5.14.21-150400.24.225.2 * dtb-freescale-5.14.21-150400.24.225.1 * dtb-amlogic-5.14.21-150400.24.225.1 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 * dtb-rockchip-5.14.21-150400.24.225.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kselftests-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kselftests-kmp-default-5.14.21-150400.24.225.2 *kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-default-livepatch-5.14.21-150400.24.225.2 * kernel-default-optional-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * ocfs2-kmp-default-5.14.21-150400.24.225.2 * kernel-default-extra-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * dlm-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * dlm-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.225.2 * gfs2-kmp-default-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-optional-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-obs-qa-5.14.21-150400.24.225.1 * kernel-default-extra-debuginfo-5.14.21-150400.24.225.2 * cluster-md-kmp-default-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (nosrc) * dtb-aarch64-5.14.21-150400.24.225.1 * openSUSE Leap 15.4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (aarch64 nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-base-rebuild-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-kvmsmall-devel-5.14.21-150400.24.225.2 * kernel-kvmsmall-debuginfo-5.14.21-150400.24.225.2 * kernel-kvmsmall-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-kvmsmall-debugsource-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_225-default-1-150400.9.3.2 * kernel-livepatch-5_14_21-150400_24_225-default-debuginfo-1-150400.9.3.2 *kernel-livepatch-SLE15-SP4_Update_56-debugsource-1-150400.9.3.2 * kernel-default-livepatch-devel-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-vanilla-5.14.21-150400.24.225.2 * kernel-docs-html-5.14.21-150400.24.225.1 * kernel-devel-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * openSUSE Leap 15.4 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (s390x) * kernel-zfcpdump-debuginfo-5.14.21-150400.24.225.2 * kernel-zfcpdump-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.3 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE LinuxEnterprise Micro for Rancher 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.4 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarchnosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (s390x) * kernel-zfcpdump-debuginfo-5.14.21-150400.24.225.2 * kernel-zfcpdump-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64) * kernel-64kb-devel-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 ## References: * https://www.suse.com/security/cve/CVE-2025-10263.html * https://www.suse.com/security/cve/CVE-2025-68324.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-31473.html * https://www.suse.com/security/cve/CVE-2026-31500.html * https://www.suse.com/security/cve/CVE-2026-31613.html * https://www.suse.com/security/cve/CVE-2026-31697.html * https://www.suse.com/security/cve/CVE-2026-31698.html * https://www.suse.com/security/cve/CVE-2026-31699.html * https://www.suse.com/security/cve/CVE-2026-31759.html * https://www.suse.com/security/cve/CVE-2026-43077.html * https://www.suse.com/security/cve/CVE-2026-43198.html * https://www.suse.com/security/cve/CVE-2026-45984.html * https://www.suse.com/security/cve/CVE-2026-46037.html * https://www.suse.com/security/cve/CVE-2026-46116.html * https://www.suse.com/security/cve/CVE-2026-46120.html * https://www.suse.com/security/cve/CVE-2026-46123.html * https://www.suse.com/security/cve/CVE-2026-46150.html * https://www.suse.com/security/cve/CVE-2026-46159.html * https://www.suse.com/security/cve/CVE-2026-46197.html * https://www.suse.com/security/cve/CVE-2026-46227.html * https://bugzilla.suse.com/show_bug.cgi?id=1255416 * https://bugzilla.suse.com/show_bug.cgi?id=1258538 *https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1262663 * https://bugzilla.suse.com/show_bug.cgi?id=1262993 * https://bugzilla.suse.com/show_bug.cgi?id=1263769 * https://bugzilla.suse.com/show_bug.cgi?id=1263879 * https://bugzilla.suse.com/show_bug.cgi?id=1263880 * https://bugzilla.suse.com/show_bug.cgi?id=1264076 * https://bugzilla.suse.com/show_bug.cgi?id=1264116 * https://bugzilla.suse.com/show_bug.cgi?id=1264470 * https://bugzilla.suse.com/show_bug.cgi?id=1264610 * https://bugzilla.suse.com/show_bug.cgi?id=1266214 * https://bugzilla.suse.com/show_bug.cgi?id=1266290 * https://bugzilla.suse.com/show_bug.cgi?id=1267214 * https://bugzilla.suse.com/show_bug.cgi?id=1267361 * https://bugzilla.suse.com/show_bug.cgi?id=1267369 * https://bugzilla.suse.com/show_bug.cgi?id=1267381 * https://bugzilla.suse.com/show_bug.cgi?id=1267387 * https://bugzilla.suse.com/show_bug.cgi?id=1267621 * https://bugzilla.suse.com/show_bug.cgi?id=1267640 * https://bugzilla.suse.com/show_bug.cgi?id=1267652 * https://bugzilla.suse.com/show_bug.cgi?id=1267697 . Explore the SUSE security update fixing 21 issues, including critical vulnerabilities in the kernel. Rely on timely patches.. SUSE Linux Kernel Patch, Important Security Fixes, System Security Update, Kernel Vulnerabilities, SUSE Patch Instructions. . Severity: Important. LinuxSecurity.com Team

Jun 26, 2026 •Important SuSE

security advisorydenial of servicesecurity issue

openSUSE Kernel Important Fixes Denial of Service 2026-2638-1

An update that solves 21 vulnerabilities and has two security fixes can now be installed.. # Security update for the Linux Kernel Announcement ID: SUSE-SU-2026:2638-1 Release Date: 2026-06-26T06:37:49Z Rating: important References: * bsc#1255416 * bsc#1258538 * bsc#1260531 * bsc#1262663 * bsc#1262993 * bsc#1263769 * bsc#1263879 * bsc#1263880 * bsc#1264076 * bsc#1264116 * bsc#1264470 * bsc#1264610 * bsc#1266214 * bsc#1266290 * bsc#1267214 * bsc#1267361 * bsc#1267369 * bsc#1267381 * bsc#1267387 * bsc#1267621 * bsc#1267640 * bsc#1267652 * bsc#1267697 Cross-References: * CVE-2025-10263 * CVE-2025-68324 * CVE-2026-23392 * CVE-2026-31473 * CVE-2026-31500 * CVE-2026-31613 * CVE-2026-31697 * CVE-2026-31698 * CVE-2026-31699 * CVE-2026-31759 * CVE-2026-43077 * CVE-2026-43198 * CVE-2026-45984 * CVE-2026-46037 * CVE-2026-46116 * CVE-2026-46120 * CVE-2026-46123 * CVE-2026-46150 * CVE-2026-46159 * CVE-2026-46197 * CVE-2026-46227 CVSS scores: * CVE-2025-10263 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-68324 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23392 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23392 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31473 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31473 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31473 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31500 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31500 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31613 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-31613 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31613 ( NVD ): 8.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H * CVE-2026-31697 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31697 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31698 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31698 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31699 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31699 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-31759 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31759 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2026-31759 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43077 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43077 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43077 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-43198 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43198 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43198 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45984 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-45984 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-45984 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46037 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46037 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-46037 ( NVD ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-46116 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46116 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46116 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46120 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46120 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46123 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-46123 ( SUSE ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-46123 ( NVD ): 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2026-46150 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-46150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46150 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-46159 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46159 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-46197 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46197 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46197 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46227 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-46227 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46227 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSELinux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves 21 vulnerabilities and has two security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). * CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work (bsc#1255416). * CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531). * CVE-2026-31473: media: mc, v4l2: serialize REINIT and REQBUFS with req_queue_mutex (bsc#1262663). * CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). * CVE-2026-31613: smb: client: fix OOB reads parsing symlink error response (bsc#1263769). * CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). * CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). * CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). * CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). * CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). * CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). * CVE-2026-45984: gfs2: Move the inode glock locking to gfs2_file_buffered_write (bsc#1267214). * CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). *CVE-2026-46116: xfrm: defensively unhash xfrm_state lists in __xfrm_state_delete (bsc#1267369). * CVE-2026-46120: ip6_gre: Use cached t-> net in ip6erspan_changelink() (bsc#1267640). * CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). * CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). * CVE-2026-46159: btrfs: fix btrfs_ioctl_space_info() slot_count TOCTOU which can lead to info-leak (bsc#1267652). * CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). * CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). The following non security issues were fixed: * smb: client: correctly handle ErrorContextData as a flexible array (git- fixes). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-2638=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2638=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2638=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2638=1 * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2638=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2638=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2638=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2638=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2638=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2638=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2638=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc ppc64le x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * kernel-64kb-devel-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4(aarch64 x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise High PerformanceComputing LTSS 15 SP4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64) * kernel-64kb-devel-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.225.2 * dlm-kmp-default-5.14.21-150400.24.225.2 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * dlm-kmp-default-debuginfo-5.14.21-150400.24.225.2 * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * ocfs2-kmp-default-5.14.21-150400.24.225.2 * cluster-md-kmp-default-5.14.21-150400.24.225.2 * gfs2-kmp-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise High Availability Extension 15 SP4 (nosrc) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Live Patching 15-SP4 (nosrc) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-livepatch-SLE15-SP4_Update_56-debugsource-1-150400.9.3.2 * kernel-default-livepatch-5.14.21-150400.24.225.2 * kernel-livepatch-5_14_21-150400_24_225-default-1-150400.9.3.2 * kernel-default-livepatch-devel-5.14.21-150400.24.225.2 * kernel-livepatch-5_14_21-150400_24_225-default-debuginfo-1-150400.9.3.2 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (aarch64) * dlm-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-apple-5.14.21-150400.24.225.1 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-extra-5.14.21-150400.24.225.2 * dtb-arm-5.14.21-150400.24.225.1 * dtb-cavium-5.14.21-150400.24.225.1 *reiserfs-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-amazon-5.14.21-150400.24.225.1 * kernel-64kb-optional-5.14.21-150400.24.225.2 * kernel-64kb-devel-5.14.21-150400.24.225.2 * dtb-xilinx-5.14.21-150400.24.225.1 * dtb-mediatek-5.14.21-150400.24.225.1 * dtb-qcom-5.14.21-150400.24.225.1 * dtb-broadcom-5.14.21-150400.24.225.1 * dtb-hisilicon-5.14.21-150400.24.225.1 * ocfs2-kmp-64kb-5.14.21-150400.24.225.2 * dtb-exynos-5.14.21-150400.24.225.1 * dtb-lg-5.14.21-150400.24.225.1 * reiserfs-kmp-64kb-5.14.21-150400.24.225.2 * gfs2-kmp-64kb-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * dtb-amd-5.14.21-150400.24.225.1 * gfs2-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-altera-5.14.21-150400.24.225.1 * cluster-md-kmp-64kb-5.14.21-150400.24.225.2 * dtb-nvidia-5.14.21-150400.24.225.1 * dlm-kmp-64kb-5.14.21-150400.24.225.2 * dtb-apm-5.14.21-150400.24.225.1 * ocfs2-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * kselftests-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * dtb-renesas-5.14.21-150400.24.225.1 * cluster-md-kmp-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-optional-debuginfo-5.14.21-150400.24.225.2 * dtb-sprd-5.14.21-150400.24.225.1 * dtb-allwinner-5.14.21-150400.24.225.1 * dtb-marvell-5.14.21-150400.24.225.1 * kernel-64kb-extra-debuginfo-5.14.21-150400.24.225.2 * dtb-socionext-5.14.21-150400.24.225.1 * kselftests-kmp-64kb-5.14.21-150400.24.225.2 * dtb-freescale-5.14.21-150400.24.225.1 * dtb-amlogic-5.14.21-150400.24.225.1 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 * dtb-rockchip-5.14.21-150400.24.225.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * ocfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kselftests-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kselftests-kmp-default-5.14.21-150400.24.225.2 *kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-default-livepatch-5.14.21-150400.24.225.2 * kernel-default-optional-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * ocfs2-kmp-default-5.14.21-150400.24.225.2 * kernel-default-extra-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * dlm-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * gfs2-kmp-default-debuginfo-5.14.21-150400.24.225.2 * dlm-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * cluster-md-kmp-default-debuginfo-5.14.21-150400.24.225.2 * gfs2-kmp-default-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-optional-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-obs-qa-5.14.21-150400.24.225.1 * kernel-default-extra-debuginfo-5.14.21-150400.24.225.2 * cluster-md-kmp-default-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (nosrc) * dtb-aarch64-5.14.21-150400.24.225.1 * openSUSE Leap 15.4 (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (aarch64 nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-default-base-rebuild-5.14.21-150400.24.225.2.150400.24.114.2 * kernel-kvmsmall-devel-5.14.21-150400.24.225.2 * kernel-kvmsmall-debuginfo-5.14.21-150400.24.225.2 * kernel-kvmsmall-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-kvmsmall-debugsource-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_225-default-1-150400.9.3.2 * kernel-livepatch-5_14_21-150400_24_225-default-debuginfo-1-150400.9.3.2 *kernel-livepatch-SLE15-SP4_Update_56-debugsource-1-150400.9.3.2 * kernel-default-livepatch-devel-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-vanilla-5.14.21-150400.24.225.2 * kernel-docs-html-5.14.21-150400.24.225.1 * kernel-devel-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (noarch nosrc) * kernel-docs-5.14.21-150400.24.225.1 * openSUSE Leap 15.4 (aarch64 nosrc ppc64le x86_64) * kernel-kvmsmall-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.225.2 * openSUSE Leap 15.4 (s390x) * kernel-zfcpdump-debuginfo-5.14.21-150400.24.225.2 * kernel-zfcpdump-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.3 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE LinuxEnterprise Micro for Rancher 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Micro 5.4 (noarch) * kernel-macros-5.14.21-150400.24.225.2 * kernel-source-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 nosrc ppc64le s390x x86_64) * kernel-default-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le x86_64) * kernel-default-base-5.14.21-150400.24.225.2.150400.24.114.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * reiserfs-kmp-default-debuginfo-5.14.21-150400.24.225.2 * kernel-default-debugsource-5.14.21-150400.24.225.2 * kernel-obs-build-debugsource-5.14.21-150400.24.225.2 * kernel-default-devel-5.14.21-150400.24.225.2 * kernel-obs-build-5.14.21-150400.24.225.2 * kernel-syms-5.14.21-150400.24.225.1 * kernel-default-debuginfo-5.14.21-150400.24.225.2 * reiserfs-kmp-default-5.14.21-150400.24.225.2 * kernel-default-devel-debuginfo-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * kernel-source-5.14.21-150400.24.225.2 * kernel-macros-5.14.21-150400.24.225.2 * kernel-devel-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarchnosrc) * kernel-docs-5.14.21-150400.24.225.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (nosrc s390x) * kernel-zfcpdump-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (s390x) * kernel-zfcpdump-debuginfo-5.14.21-150400.24.225.2 * kernel-zfcpdump-debugsource-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 nosrc) * kernel-64kb-5.14.21-150400.24.225.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64) * kernel-64kb-devel-5.14.21-150400.24.225.2 * kernel-64kb-devel-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debuginfo-5.14.21-150400.24.225.2 * kernel-64kb-debugsource-5.14.21-150400.24.225.2 ## References: * https://www.suse.com/security/cve/CVE-2025-10263.html * https://www.suse.com/security/cve/CVE-2025-68324.html * https://www.suse.com/security/cve/CVE-2026-23392.html * https://www.suse.com/security/cve/CVE-2026-31473.html * https://www.suse.com/security/cve/CVE-2026-31500.html * https://www.suse.com/security/cve/CVE-2026-31613.html * https://www.suse.com/security/cve/CVE-2026-31697.html * https://www.suse.com/security/cve/CVE-2026-31698.html * https://www.suse.com/security/cve/CVE-2026-31699.html * https://www.suse.com/security/cve/CVE-2026-31759.html * https://www.suse.com/security/cve/CVE-2026-43077.html * https://www.suse.com/security/cve/CVE-2026-43198.html * https://www.suse.com/security/cve/CVE-2026-45984.html * https://www.suse.com/security/cve/CVE-2026-46037.html * https://www.suse.com/security/cve/CVE-2026-46116.html * https://www.suse.com/security/cve/CVE-2026-46120.html * https://www.suse.com/security/cve/CVE-2026-46123.html * https://www.suse.com/security/cve/CVE-2026-46150.html * https://www.suse.com/security/cve/CVE-2026-46159.html * https://www.suse.com/security/cve/CVE-2026-46197.html * https://www.suse.com/security/cve/CVE-2026-46227.html * https://bugzilla.suse.com/show_bug.cgi?id=1255416 * https://bugzilla.suse.com/show_bug.cgi?id=1258538 *https://bugzilla.suse.com/show_bug.cgi?id=1260531 * https://bugzilla.suse.com/show_bug.cgi?id=1262663 * https://bugzilla.suse.com/show_bug.cgi?id=1262993 * https://bugzilla.suse.com/show_bug.cgi?id=1263769 * https://bugzilla.suse.com/show_bug.cgi?id=1263879 * https://bugzilla.suse.com/show_bug.cgi?id=1263880 * https://bugzilla.suse.com/show_bug.cgi?id=1264076 * https://bugzilla.suse.com/show_bug.cgi?id=1264116 * https://bugzilla.suse.com/show_bug.cgi?id=1264470 * https://bugzilla.suse.com/show_bug.cgi?id=1264610 * https://bugzilla.suse.com/show_bug.cgi?id=1266214 * https://bugzilla.suse.com/show_bug.cgi?id=1266290 * https://bugzilla.suse.com/show_bug.cgi?id=1267214 * https://bugzilla.suse.com/show_bug.cgi?id=1267361 * https://bugzilla.suse.com/show_bug.cgi?id=1267369 * https://bugzilla.suse.com/show_bug.cgi?id=1267381 * https://bugzilla.suse.com/show_bug.cgi?id=1267387 * https://bugzilla.suse.com/show_bug.cgi?id=1267621 * https://bugzilla.suse.com/show_bug.cgi?id=1267640 * https://bugzilla.suse.com/show_bug.cgi?id=1267652 * https://bugzilla.suse.com/show_bug.cgi?id=1267697 . This advisory details important security updates for the openSUSE kernel, addressing 21 vulnerabilities with solutions.. openSUSE kernel vulnerabilities update. . Severity: Important. LinuxSecurity.com Team

Jun 26, 2026 •Important OpenSUSE

security advisorydenial of serviceSuSE

SUSE Containerd Important DoS Authorization Bypass Vulnern 2026-2639-1

An update that solves four vulnerabilities can now be installed.. # Security update for containerd Announcement ID: SUSE-SU-2026:2639-1 Release Date: 2026-06-26T07:06:05Z Rating: important References: * bsc#1260296 * bsc#1262948 * bsc#1265794 * bsc#1266640 Cross-References: * CVE-2026-33186 * CVE-2026-33814 * CVE-2026-34986 * CVE-2026-39821 CVSS scores: * CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34986 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34986 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34986 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39821 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-39821 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-39821 ( NVD ): 9.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N Affected Products: * Basesystem Module 15-SP7 * Containers Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux EnterpriseMicro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves four vulnerabilities can now be installed. ## Description: This update for containerd fixes the following issues * CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header (bsc#1260296). * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265794). * CVE-2026-34986: github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262948). * CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation (bsc#1266640). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2639=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2639=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2639=1 * Containers Module 15-SP7 zypper in -tpatch SUSE-SLE-Module-Containers-15-SP7-2026-2639=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2639=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2639=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2639=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2639=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2639=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2639=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2639=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2639=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2639=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2639=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2639=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2639=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2639=1 ## Package List: * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4(aarch64 x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * containerd-1.7.29-150000.137.1 * Containers Module 15-SP7 (aarch64 ppc64le s390x x86_64) * containerd-devel-1.7.29-150000.137.1 * containerd-ctr-1.7.29-150000.137.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * containerd-ctr-1.7.29-150000.137.1 *containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * containerd-ctr-1.7.29-150000.137.1 * containerd-devel-1.7.29-150000.137.1 * containerd-1.7.29-150000.137.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33186.html * https://www.suse.com/security/cve/CVE-2026-33814.html * https://www.suse.com/security/cve/CVE-2026-34986.html * https://www.suse.com/security/cve/CVE-2026-39821.html * https://bugzilla.suse.com/show_bug.cgi?id=1260296 * https://bugzilla.suse.com/show_bug.cgi?id=1262948 * https://bugzilla.suse.com/show_bug.cgi?id=1265794 * https://bugzilla.suse.com/show_bug.cgi?id=1266640 . A security update for containerd addresses four important vulnerabilities affecting SUSE systems.. SUSE containerd security update important denial of service authorization bypass. . Severity: Important. LinuxSecurity.com Team

Jun 26, 2026 •Important SuSE

security advisorydenial of serviceSuSE

SUSE containerd Important Denial of Service Fix 2026-2640-1

An update that solves four vulnerabilities can now be installed.. # Security update for containerd Announcement ID: SUSE-SU-2026:2640-1 Release Date: 2026-06-26T07:06:35Z Rating: important References: * bsc#1260296 * bsc#1262948 * bsc#1265794 * bsc#1266640 Cross-References: * CVE-2026-33186 * CVE-2026-33814 * CVE-2026-34986 * CVE-2026-39821 CVSS scores: * CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34986 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34986 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34986 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-39821 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-39821 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-39821 ( NVD ): 9.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves four vulnerabilities can now be installed. ## Description: This update for containerd fixes the following issues * CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header (bsc#1260296). * CVE-2026-33814: golang.org/x/net/http2: infinite loopin HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265794). * CVE-2026-34986: github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262948). * CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation (bsc#1266640). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2640=1 * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2640=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * containerd-ctr-1.7.29-16.110.1 * containerd-1.7.29-16.110.1 * containerd-devel-1.7.29-16.110.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * containerd-ctr-1.7.29-16.110.1 * containerd-1.7.29-16.110.1 * containerd-devel-1.7.29-16.110.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33186.html * https://www.suse.com/security/cve/CVE-2026-33814.html * https://www.suse.com/security/cve/CVE-2026-34986.html * https://www.suse.com/security/cve/CVE-2026-39821.html * https://bugzilla.suse.com/show_bug.cgi?id=1260296 * https://bugzilla.suse.com/show_bug.cgi?id=1262948 * https://bugzilla.suse.com/show_bug.cgi?id=1265794 * https://bugzilla.suse.com/show_bug.cgi?id=1266640 . An essential SUSE update for containerd fixes critical issues allowing privilege escalation and potential DoS.. SUSE security update, containerd vulnerabilities, software patch, Linux advisory. . Severity: Important. LinuxSecurity.com Team

Jun 26, 2026 •Important SuSE

security advisorybuffer overflowremote exploit

SUSE Apache2 Important Security Fixes Vulnerabilities 2026-2641-1

An update that solves 10 vulnerabilities, contains one feature and has five security fixes can now be installed.. # Security update for apache2 Announcement ID: SUSE-SU-2026:2641-1 Release Date: 2026-06-26T07:10:45Z Rating: important References: * bsc#1207327 * bsc#1208708 * bsc#1214357 * bsc#1263935 * bsc#1263950 * bsc#1263951 * bsc#1263952 * bsc#1263953 * bsc#1263954 * bsc#1263955 * bsc#1263956 * bsc#1263957 * bsc#1264150 * bsc#1264163 * bsc#690734 * jsc#PED-16334 Cross-References: * CVE-2026-24072 * CVE-2026-28780 * CVE-2026-29168 * CVE-2026-29169 * CVE-2026-33006 * CVE-2026-33007 * CVE-2026-33523 * CVE-2026-33857 * CVE-2026-34032 * CVE-2026-34059 CVSS scores: * CVE-2026-24072 ( SUSE ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-24072 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-28780 ( SUSE ): 8.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-28780 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-28780 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-29168 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-29168 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-29168 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-29169 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-29169 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-29169 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33006 ( SUSE ): 9.1 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33006 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33006 ( NVD ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-33007 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N *CVE-2026-33007 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33007 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33523 ( SUSE ): 9.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:H/SI:H/SA:N * CVE-2026-33523 ( SUSE ): 8.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2026-33523 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-33857 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2026-33857 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-33857 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-34032 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34032 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-34032 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2026-34059 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-34059 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-34059 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves 10 vulnerabilities, contains one feature and has five security fixes can now be installed. ## Description: This update for apache2 fixes the following issues Update to 2.4.66 (jsc#PED-16334): Security issues: * CVE-2026-23918: http2: double free and possible RCE on early reset (bsc#1263957). * CVE-2026-24072: mod_rewrite elevation of privileges via ap_expr (bsc#1263935). * CVE-2026-28780: heap buffer overflow in `mod_proxy_ajp` via `ajp_msg_check_header()` (bsc#1264163). * CVE-2026-29168: allocation ofresources without limits in `mod_md` via OCSP response (bsc#1264150). * CVE-2026-29169: NULL pointer dereference in `mod_dav_lock` allows server crash via malicious requests (bsc#1263956). * CVE-2026-33006: `mod_auth_digest` timing attack allows bypass of Digest authentication (bsc#1263955). * CVE-2026-33007: NULL pointer dereference in `mod_authn_socache` allows unauthenticated remote user to crash a child processes (bsc#1263954). * CVE-2026-33523: HTTP response splitting forwarding malicious status line (bsc#1263953). * CVE-2026-33857: off-by-one OOB reads in AJP getter functions (bsc#1263952). * CVE-2026-34032: heap buffer overread in `mod_proxy_ajp` due to missing null- termination check (bsc#1263951). * CVE-2026-34059: heap buffer overread and memory disclosure via `ajp_parse_data()` (bsc#1263950). Non security issue: * Internal server error on very long URL (bsc#690734). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2026-2641=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2641=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * apache2-example-pages-2.4.66-35.78.1 * apache2-prefork-debuginfo-2.4.66-35.78.1 * apache2-worker-2.4.66-35.78.1 * apache2-tls13-prefork-debuginfo-2.4.66-35.78.1 * apache2-prefork-2.4.66-35.78.1 * apache2-tls13-devel-2.4.66-35.78.1 * apache2-devel-2.4.66-35.78.1 * apache2-debugsource-2.4.66-35.78.1 * apache2-tls13-worker-debuginfo-2.4.66-35.78.1 * apache2-utils-debuginfo-2.4.66-35.78.1 * apache2-tls13-example-pages-2.4.66-35.78.1 * apache2-2.4.66-35.78.1 * apache2-debuginfo-2.4.66-35.78.1 * apache2-tls13-worker-2.4.66-35.78.1 * apache2-tls13-debugsource-2.4.66-35.78.1 * apache2-tls13-debuginfo-2.4.66-35.78.1 * apache2-tls13-2.4.66-35.78.1 * apache2-tls13-utils-debuginfo-2.4.66-35.78.1 * apache2-utils-2.4.66-35.78.1 * apache2-tls13-prefork-2.4.66-35.78.1 * apache2-tls13-utils-2.4.66-35.78.1 * apache2-worker-debuginfo-2.4.66-35.78.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (noarch) * apache2-doc-2.4.66-35.78.1 * apache2-tls13-doc-2.4.66-35.78.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * apache2-example-pages-2.4.66-35.78.1 * apache2-prefork-debuginfo-2.4.66-35.78.1 * apache2-worker-2.4.66-35.78.1 * apache2-tls13-prefork-debuginfo-2.4.66-35.78.1 * apache2-prefork-2.4.66-35.78.1 * apache2-tls13-devel-2.4.66-35.78.1 * apache2-devel-2.4.66-35.78.1 * apache2-debugsource-2.4.66-35.78.1 * apache2-tls13-worker-debuginfo-2.4.66-35.78.1 * apache2-utils-debuginfo-2.4.66-35.78.1 * apache2-tls13-example-pages-2.4.66-35.78.1 * apache2-2.4.66-35.78.1 * apache2-debuginfo-2.4.66-35.78.1 * apache2-tls13-worker-2.4.66-35.78.1 * apache2-tls13-debugsource-2.4.66-35.78.1 * apache2-tls13-debuginfo-2.4.66-35.78.1 * apache2-tls13-2.4.66-35.78.1 * apache2-tls13-utils-debuginfo-2.4.66-35.78.1 * apache2-utils-2.4.66-35.78.1 * apache2-tls13-prefork-2.4.66-35.78.1 * apache2-tls13-utils-2.4.66-35.78.1 * apache2-worker-debuginfo-2.4.66-35.78.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (noarch) * apache2-doc-2.4.66-35.78.1 * apache2-tls13-doc-2.4.66-35.78.1 ## References: * https://www.suse.com/security/cve/CVE-2026-24072.html * https://www.suse.com/security/cve/CVE-2026-28780.html * https://www.suse.com/security/cve/CVE-2026-29168.html * https://www.suse.com/security/cve/CVE-2026-29169.html * https://www.suse.com/security/cve/CVE-2026-33006.html * https://www.suse.com/security/cve/CVE-2026-33007.html *https://www.suse.com/security/cve/CVE-2026-33523.html * https://www.suse.com/security/cve/CVE-2026-33857.html * https://www.suse.com/security/cve/CVE-2026-34032.html * https://www.suse.com/security/cve/CVE-2026-34059.html * https://bugzilla.suse.com/show_bug.cgi?id=1207327 * https://bugzilla.suse.com/show_bug.cgi?id=1208708 * https://bugzilla.suse.com/show_bug.cgi?id=1214357 * https://bugzilla.suse.com/show_bug.cgi?id=1263935 * https://bugzilla.suse.com/show_bug.cgi?id=1263950 * https://bugzilla.suse.com/show_bug.cgi?id=1263951 * https://bugzilla.suse.com/show_bug.cgi?id=1263952 * https://bugzilla.suse.com/show_bug.cgi?id=1263953 * https://bugzilla.suse.com/show_bug.cgi?id=1263954 * https://bugzilla.suse.com/show_bug.cgi?id=1263955 * https://bugzilla.suse.com/show_bug.cgi?id=1263956 * https://bugzilla.suse.com/show_bug.cgi?id=1263957 * https://bugzilla.suse.com/show_bug.cgi?id=1264150 * https://bugzilla.suse.com/show_bug.cgi?id=1264163 * https://bugzilla.suse.com/show_bug.cgi?id=690734 * https://jira.suse.com/browse/PED-16334 . This update addresses five security issues in apache2 for SUSE, ensuring vital fixes to enhance system security.. SUSE Apache2 Security Update, Important Security Fixes, Remote Exploitation of Apache2, SUSE Linux Security Advisories. . Severity: Important. LinuxSecurity.com Team

Jun 26, 2026 •Important SuSE

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

openSUSE haproxy Important Buffer Misparse Null Pointer 2026-2651-1

openSUSE haproxy Important Buffer Overflow Null Pointer Attack 2026-2652-1

openSUSE libsoup2 Moderate HTTP Request Smuggling Fix SUSE-SU-2026-2654-1

openSUSE opensc Important Security Update Stack Overflow Vuln 2026-2657-1

SUSE Exiv2 Moderate Out-Of-Bounds Integer Overflow Vuln 2026-2663-1

SUSE Python Important Code Execution Issues Fixed in 2026-2664-1

SUSE giflib Important Heap Overflow Vulnerability CVE-2026-26740

SUSE giflib Important Heap Buffer Overflow Fix 2026-2667-1

Rocky Linux python-wheel Moderate DoS Issue RLSA-2023-6712 CVE-2022-40898

Refine advisories

Get the latest News and Insights

Community Poll

Does sandboxing completely stop hackers?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 24.04 LTS Kernel Update Raises Serious Privilege Escalation Risks

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Explore Latest Linux Security advisories

Rocky Linux FreeRADIUS Moderate Security Issues RLSA-2023-2870

Rocky Linux python27 Moderate CPU Denial of Service Vulnern RLSA-2023-2860

Debian 11 gdcm Critical Buffer Overflow Denial-of-Service DLA-4652-1

SUSE Kernel Important Security Update 2026-2638-1 Fixing 21 Issues

openSUSE Kernel Important Fixes Denial of Service 2026-2638-1

SUSE Containerd Important DoS Authorization Bypass Vulnern 2026-2639-1

SUSE containerd Important Denial of Service Fix 2026-2640-1

SUSE Apache2 Important Security Fixes Vulnerabilities 2026-2641-1

Get the latest News and Insights

Community Poll

Does sandboxing completely stop hackers?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 24.04 LTS Kernel Update Raises Serious Privilege Escalation Risks

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

openSUSE haproxy Important Buffer Misparse Null Pointer 2026-2651-1

openSUSE haproxy Important Buffer Overflow Null Pointer Attack 2026-2652-1

openSUSE libsoup2 Moderate HTTP Request Smuggling Fix SUSE-SU-2026-2654-1

openSUSE opensc Important Security Update Stack Overflow Vuln 2026-2657-1

SUSE Exiv2 Moderate Out-Of-Bounds Integer Overflow Vuln 2026-2663-1

SUSE Python Important Code Execution Issues Fixed in 2026-2664-1

SUSE giflib Important Heap Overflow Vulnerability CVE-2026-26740

SUSE giflib Important Heap Buffer Overflow Fix 2026-2667-1

Rocky Linux python-wheel Moderate DoS Issue RLSA-2023-6712 CVE-2022-40898

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

Does sandboxing completely stop hackers?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

Does sandboxing completely stop hackers?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!