SUSE-SU-2026:22436-1

Vulnerability from csaf_suse - Published: 2026-06-30 23:09 - Updated: 2026-06-30 23:09
Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch: The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-31414: netfilter: nf_conntrack_expect: use expect->helper (bsc#1262085). - CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false - CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748). - CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798). - CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178). - CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm->lock (bsc#1263123). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563). - CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744). - CVE-2026-31697: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (bsc#1264116). - CVE-2026-31698: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880). - CVE-2026-31699: crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (bsc#1263879). - CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145). - CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996). - CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993). - CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080). - CVE-2026-43053: xfs: close crash window in attr dabtree inactivation (bsc#1264084). - CVE-2026-43074: eventpoll: defer struct eventpoll free to RCU grace period (bsc#1264263). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266). - CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239). - CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437). - CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev->req_status (bsc#1264561). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43239: smb: client: prevent races in ->query_interfaces() (bsc#1264444). - CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763). - CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103). - CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741). - CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143). - CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628). - CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397). - CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390). - CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705). - CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704). - CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895). - CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916). - CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933). - CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698). - CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208). - CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922). - CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431). - CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361). - CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878). - CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628). - CVE-2026-46120: ip6_gre: Use cached t->net in ip6erspan_changelink() (bsc#1267640). - CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621). - CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387). - CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624). - CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903). - CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381). - CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697). - CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654). - CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685). - CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651). The following non-security bugs were fixed: - ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes). - ACPI: IPMI: Fix message kref handling on dead device (git-fixes). - ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes). - ALSA: aloop: Drop superfluous break (git-fixes). - ALSA: cmipci: check snd_ctl_new1() return value (git-fixes). - ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes). - ALSA: es1938: check snd_ctl_new1() return value (git-fixes). - ALSA: gus: check snd_ctl_new1() return value (git-fixes). - ALSA: ice1712: check snd_ctl_new1() return value (git-fixes). - ALSA: seq: Clear variable event pointer on read (git-fixes). - ALSA: seq: Fix partial userptr event expansion (git-fixes). - ALSA: seq: midi: Serialize output teardown with event_input (git-fixes). - ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes). - ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes). - ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes). - ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes). - ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes). - ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes). - ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes). - ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes). - ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes). - ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes). - ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes). - ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes). - ASoC: SOF: topology: validate vendor array size before parsing (git-fixes). - ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes). - ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes). - ASoC: cs35l56: Cleanup if component_probe fails (git-fixes). - ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes). - ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes). - ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes). - ASoC: meson: aiu: Validate written enum values (git-fixes). - ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes). - ASoC: topology: Check PCM and DAI name strings before use (git-fixes). - ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes). - Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes). - Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes). - Bluetooth: btusb: fix use-after-free on registration failure (git-fixes). - Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes). - Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes). - Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes). - Bluetooth: hci: validate codec capability element length (git-fixes). - Bluetooth: vhci: validate devcoredump state before side effects (git-fixes). - Drivers: hv: vmbus: Improve the logic of reserving fb_mmio on Gen2 VMs (git-fixes). - KVM: SEV: Ignore MMIO requests of length '0' (git-fixes). - KVM: SEV: Ignore Port I/O requests of length '0' (git-fixes). - KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes). - KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes). - KVM: SVM: Flush the current TLB when transitioning from xAVIC => x2AVIC (git-fixes). - KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes). - KVM: arm64: Discard PC update state on vcpu reset (git-fixes). - KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes). - KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes). - KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes). - KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes). - KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes). - KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes). - KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes). - KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes). - KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes). - KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN) (git-fixes). - KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes). - PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes). - USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes). - USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes). - USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes). - X.509: Fix validation of ASN.1 certificate header (git-fixes). - add bugnumber to existing mana_ib change (bsc#1267682) - agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes). - batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes). - batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes). - batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes). - batman-adv: tp_meter: avoid window underflow (git-fixes). - batman-adv: tp_meter: fix fast recovery precondition (git-fixes). - batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes). - batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes). - batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes). - batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes). - bnxt_en: Fix NULL pointer dereference (bsc#1268307). - crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes). - crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes). - crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes). - crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes). - crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes). - crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes). - crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes). - crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes). - crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes). - crypto: drbg - Fix the fips_enabled priority boost (git-fixes). - crypto: ecc - Fix carry overflow in vli multiplication (git-fixes). - crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes). - crypto: hisilicon/qm - disable error report before flr (git-fixes). - crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes). - crypto: pcrypt - restore callback for non-parallel fallback (git-fixes). - crypto: qat - protect service table iterations with service_lock (git-fixes). - crypto: qat - validate RSA CRT component lengths (git-fixes). - crypto: rng - Free default RNG on module exit (git-fixes). - driver core: reject devices with unregistered buses (git-fixes). - driver core: use READ_ONCE() for dev->driver in dev_has_sync_state() (git-fixes). - drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes). - drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes). - drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes). - drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes). - drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes). - drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes). - drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes). - drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes). - drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes). - drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes). - drm/hyperv: use VMBUS_RING_SIZE() (git-fixes). - drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes). - drm/msm/dp: Fix the ISR_* enum values (git-fixes). - drm/msm/dp: fix HPD state status bit shift value (git-fixes). - drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes). - drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes). - drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes). - drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes). - drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes). - drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes). - drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes). - drm/tidss: Fix missing drm_bridge_add() call (git-fixes). - drm/vc4: fix krealloc() memory leak (git-fixes). - drm/virtio: Fix driver removal with disabled KMS (git-fixes). - drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes). - ethtool: provide customized dim profile management (bsc#1261256). - fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes). - fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes). - fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes). - fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes). - fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes). - fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes). - fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes). - fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes). - fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes). - fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes). - fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes). - fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes). - fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes). - fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes). - firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes). - firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes). - firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes). - firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes). - gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes). - gpu: host1x: Allow entries in BO caches to be freed (git-fixes). - gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes). - hv: utils: handle and propagate errors in kvp_register (git-fixes). - hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes). - hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes). - hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes). - hyperv: Clean up and fix the guest ID comment in hvgdk.h (git-fixes). - i2c: core: fix irq domain leak on adapter registration failure (git-fixes). - i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes). - i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes). - i2c: tegra: Fix NOIRQ suspend/resume (git-fixes). - linux/dim: move useful macros to .h file (bsc#1261256). - misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes). - misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes). - misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes). - misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes). - net: ethtool: add ethtool COALESCE_RX_CQE_FRAMES/NSECS (bsc#1261256). - net: mana: Add ethtool counters for RX CQEs in coalesced type (bsc#1261256). - net: mana: Add support for RX CQE Coalescing (bsc#1261256). - of: cpu: add check in __of_find_n_match_cpu_property() (git-fixes). - slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes). - soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes). - soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes). - spi: at91-usart: drop dead runtime pm support (git-fixes). - spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes). - spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes). - spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes). - spi: meson-spifc: fix runtime PM leak on remove (git-fixes). - spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes). - thermal: hwmon: Fix critical temperature attribute removal (git-fixes). - thunderbolt: Bound root directory content to block size (git-fixes). - thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes). - thunderbolt: Limit XDomain response copy to actual frame size (git-fixes). - thunderbolt: Reject zero-length property entries in validator (git-fixes). - thunderbolt: Validate XDomain request packet size before type cast (git-fixes). - watchdog: apple: Add "apple,t8103-wdt" compatible (git-fixes). - watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes). - watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes). - watchdog: unregister PM notifier on watchdog unregister (git-fixes). - wifi: ath11k: fix warning when unbinding (git-fixes). - wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes). - wifi: cfg80211: fix grammar in MLO group key error message (git-fixes). - wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes). - wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes). - wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes). - wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes). - wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes). - wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes). - wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes). - wifi: rtw88: increase TX report timeout to fix race condition (git-fixes). - wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes). - wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes). - wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes). - wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes). - wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes).
Patchnames: SUSE-SLE-Micro-6.0-kernel-496
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact critical
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact low
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact important
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
Affected products
Product Identifier Version Remediation
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch
Vendor Fix
Unresolved product id: SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch
Vendor Fix
Threats
Impact moderate
References
URL Category
https://www.suse.com/support/security/rating/ external
https://ftp.suse.com/pub/projects/security/csaf/s… self
https://www.suse.com/support/update/announcement/… self
https://lists.suse.com/pipermail/sle-updates/2026… self
https://bugzilla.suse.com/1256668 self
https://bugzilla.suse.com/1261256 self
https://bugzilla.suse.com/1262085 self
https://bugzilla.suse.com/1262392 self
https://bugzilla.suse.com/1262617 self
https://bugzilla.suse.com/1262620 self
https://bugzilla.suse.com/1262674 self
https://bugzilla.suse.com/1262748 self
https://bugzilla.suse.com/1262798 self
https://bugzilla.suse.com/1262993 self
https://bugzilla.suse.com/1263123 self
https://bugzilla.suse.com/1263137 self
https://bugzilla.suse.com/1263178 self
https://bugzilla.suse.com/1263563 self
https://bugzilla.suse.com/1263568 self
https://bugzilla.suse.com/1263578 self
https://bugzilla.suse.com/1263879 self
https://bugzilla.suse.com/1263880 self
https://bugzilla.suse.com/1263930 self
https://bugzilla.suse.com/1263934 self
https://bugzilla.suse.com/1263993 self
https://bugzilla.suse.com/1263996 self
https://bugzilla.suse.com/1264045 self
https://bugzilla.suse.com/1264076 self
https://bugzilla.suse.com/1264080 self
https://bugzilla.suse.com/1264084 self
https://bugzilla.suse.com/1264116 self
https://bugzilla.suse.com/1264137 self
https://bugzilla.suse.com/1264145 self
https://bugzilla.suse.com/1264239 self
https://bugzilla.suse.com/1264263 self
https://bugzilla.suse.com/1264266 self
https://bugzilla.suse.com/1264437 self
https://bugzilla.suse.com/1264444 self
https://bugzilla.suse.com/1264470 self
https://bugzilla.suse.com/1264549 self
https://bugzilla.suse.com/1264561 self
https://bugzilla.suse.com/1264595 self
https://bugzilla.suse.com/1264603 self
https://bugzilla.suse.com/1264610 self
https://bugzilla.suse.com/1264741 self
https://bugzilla.suse.com/1264763 self
https://bugzilla.suse.com/1265103 self
https://bugzilla.suse.com/1265143 self
https://bugzilla.suse.com/1265628 self
https://bugzilla.suse.com/1266290 self
https://bugzilla.suse.com/1266390 self
https://bugzilla.suse.com/1266397 self
https://bugzilla.suse.com/1266698 self
https://bugzilla.suse.com/1266704 self
https://bugzilla.suse.com/1266705 self
https://bugzilla.suse.com/1266878 self
https://bugzilla.suse.com/1266895 self
https://bugzilla.suse.com/1266903 self
https://bugzilla.suse.com/1266916 self
https://bugzilla.suse.com/1266922 self
https://bugzilla.suse.com/1266933 self
https://bugzilla.suse.com/1267208 self
https://bugzilla.suse.com/1267361 self
https://bugzilla.suse.com/1267381 self
https://bugzilla.suse.com/1267387 self
https://bugzilla.suse.com/1267431 self
https://bugzilla.suse.com/1267621 self
https://bugzilla.suse.com/1267624 self
https://bugzilla.suse.com/1267628 self
https://bugzilla.suse.com/1267640 self
https://bugzilla.suse.com/1267651 self
https://bugzilla.suse.com/1267654 self
https://bugzilla.suse.com/1267682 self
https://bugzilla.suse.com/1267685 self
https://bugzilla.suse.com/1267697 self
https://bugzilla.suse.com/1267744 self
https://bugzilla.suse.com/1268307 self
https://www.suse.com/security/cve/CVE-2025-10263/ self
https://www.suse.com/security/cve/CVE-2025-68822/ self
https://www.suse.com/security/cve/CVE-2026-31414/ self
https://www.suse.com/security/cve/CVE-2026-31429/ self
https://www.suse.com/security/cve/CVE-2026-31452/ self
https://www.suse.com/security/cve/CVE-2026-31453/ self
https://www.suse.com/security/cve/CVE-2026-31469/ self
https://www.suse.com/security/cve/CVE-2026-31492/ self
https://www.suse.com/security/cve/CVE-2026-31495/ self
https://www.suse.com/security/cve/CVE-2026-31499/ self
https://www.suse.com/security/cve/CVE-2026-31500/ self
https://www.suse.com/security/cve/CVE-2026-31555/ self
https://www.suse.com/security/cve/CVE-2026-31592/ self
https://www.suse.com/security/cve/CVE-2026-31664/ self
https://www.suse.com/security/cve/CVE-2026-31665/ self
https://www.suse.com/security/cve/CVE-2026-31674/ self
https://www.suse.com/security/cve/CVE-2026-31680/ self
https://www.suse.com/security/cve/CVE-2026-31693/ self
https://www.suse.com/security/cve/CVE-2026-31697/ self
https://www.suse.com/security/cve/CVE-2026-31698/ self
https://www.suse.com/security/cve/CVE-2026-31699/ self
https://www.suse.com/security/cve/CVE-2026-31752/ self
https://www.suse.com/security/cve/CVE-2026-31759/ self
https://www.suse.com/security/cve/CVE-2026-31771/ self
https://www.suse.com/security/cve/CVE-2026-43023/ self
https://www.suse.com/security/cve/CVE-2026-43024/ self
https://www.suse.com/security/cve/CVE-2026-43028/ self
https://www.suse.com/security/cve/CVE-2026-43035/ self
https://www.suse.com/security/cve/CVE-2026-43036/ self
https://www.suse.com/security/cve/CVE-2026-43049/ self
https://www.suse.com/security/cve/CVE-2026-43053/ self
https://www.suse.com/security/cve/CVE-2026-43074/ self
https://www.suse.com/security/cve/CVE-2026-43077/ self
https://www.suse.com/security/cve/CVE-2026-43083/ self
https://www.suse.com/security/cve/CVE-2026-43101/ self
https://www.suse.com/security/cve/CVE-2026-43112/ self
https://www.suse.com/security/cve/CVE-2026-43119/ self
https://www.suse.com/security/cve/CVE-2026-43158/ self
https://www.suse.com/security/cve/CVE-2026-43171/ self
https://www.suse.com/security/cve/CVE-2026-43187/ self
https://www.suse.com/security/cve/CVE-2026-43198/ self
https://www.suse.com/security/cve/CVE-2026-43239/ self
https://www.suse.com/security/cve/CVE-2026-43339/ self
https://www.suse.com/security/cve/CVE-2026-43345/ self
https://www.suse.com/security/cve/CVE-2026-43405/ self
https://www.suse.com/security/cve/CVE-2026-43469/ self
https://www.suse.com/security/cve/CVE-2026-43491/ self
https://www.suse.com/security/cve/CVE-2026-45840/ self
https://www.suse.com/security/cve/CVE-2026-45841/ self
https://www.suse.com/security/cve/CVE-2026-45862/ self
https://www.suse.com/security/cve/CVE-2026-45870/ self
https://www.suse.com/security/cve/CVE-2026-45894/ self
https://www.suse.com/security/cve/CVE-2026-45940/ self
https://www.suse.com/security/cve/CVE-2026-45961/ self
https://www.suse.com/security/cve/CVE-2026-45964/ self
https://www.suse.com/security/cve/CVE-2026-45965/ self
https://www.suse.com/security/cve/CVE-2026-45974/ self
https://www.suse.com/security/cve/CVE-2026-46005/ self
https://www.suse.com/security/cve/CVE-2026-46037/ self
https://www.suse.com/security/cve/CVE-2026-46101/ self
https://www.suse.com/security/cve/CVE-2026-46119/ self
https://www.suse.com/security/cve/CVE-2026-46120/ self
https://www.suse.com/security/cve/CVE-2026-46123/ self
https://www.suse.com/security/cve/CVE-2026-46150/ self
https://www.suse.com/security/cve/CVE-2026-46160/ self
https://www.suse.com/security/cve/CVE-2026-46172/ self
https://www.suse.com/security/cve/CVE-2026-46197/ self
https://www.suse.com/security/cve/CVE-2026-46227/ self
https://www.suse.com/security/cve/CVE-2026-46244/ self
https://www.suse.com/security/cve/CVE-2026-46259/ self
https://www.suse.com/security/cve/CVE-2026-46273/ self
https://www.suse.com/security/cve/CVE-2025-10263 external
https://bugzilla.suse.com/1266290 external
https://bugzilla.suse.com/1266954 external
https://bugzilla.suse.com/1270230 external
https://www.suse.com/security/cve/CVE-2025-68822 external
https://bugzilla.suse.com/1256668 external
https://www.suse.com/security/cve/CVE-2026-31414 external
https://bugzilla.suse.com/1262085 external
https://www.suse.com/security/cve/CVE-2026-31429 external
https://bugzilla.suse.com/1262392 external
https://www.suse.com/security/cve/CVE-2026-31452 external
https://bugzilla.suse.com/1262620 external
https://www.suse.com/security/cve/CVE-2026-31453 external
https://bugzilla.suse.com/1262617 external
https://www.suse.com/security/cve/CVE-2026-31469 external
https://bugzilla.suse.com/1267816 external
https://www.suse.com/security/cve/CVE-2026-31492 external
https://bugzilla.suse.com/1262748 external
https://www.suse.com/security/cve/CVE-2026-31495 external
https://bugzilla.suse.com/1262798 external
https://www.suse.com/security/cve/CVE-2026-31499 external
https://bugzilla.suse.com/1262674 external
https://www.suse.com/security/cve/CVE-2026-31500 external
https://bugzilla.suse.com/1262993 external
https://bugzilla.suse.com/1262994 external
https://www.suse.com/security/cve/CVE-2026-31555 external
https://bugzilla.suse.com/1263178 external
https://bugzilla.suse.com/1263179 external
https://www.suse.com/security/cve/CVE-2026-31592 external
https://bugzilla.suse.com/1263123 external
https://www.suse.com/security/cve/CVE-2026-31664 external
https://bugzilla.suse.com/1263578 external
https://www.suse.com/security/cve/CVE-2026-31665 external
https://bugzilla.suse.com/1263137 external
https://www.suse.com/security/cve/CVE-2026-31674 external
https://bugzilla.suse.com/1263568 external
https://www.suse.com/security/cve/CVE-2026-31680 external
https://bugzilla.suse.com/1263563 external
https://www.suse.com/security/cve/CVE-2026-31693 external
https://bugzilla.suse.com/1267744 external
https://www.suse.com/security/cve/CVE-2026-31697 external
https://bugzilla.suse.com/1264116 external
https://bugzilla.suse.com/1264144 external
https://www.suse.com/security/cve/CVE-2026-31698 external
https://bugzilla.suse.com/1263880 external
https://bugzilla.suse.com/1263929 external
https://www.suse.com/security/cve/CVE-2026-31699 external
https://bugzilla.suse.com/1263879 external
https://bugzilla.suse.com/1263928 external
https://www.suse.com/security/cve/CVE-2026-31752 external
https://bugzilla.suse.com/1264045 external
https://www.suse.com/security/cve/CVE-2026-31759 external
https://bugzilla.suse.com/1264076 external
https://bugzilla.suse.com/1264078 external
https://www.suse.com/security/cve/CVE-2026-31771 external
https://bugzilla.suse.com/1264145 external
https://bugzilla.suse.com/1264146 external
https://www.suse.com/security/cve/CVE-2026-43023 external
https://bugzilla.suse.com/1264137 external
https://bugzilla.suse.com/1264138 external
https://www.suse.com/security/cve/CVE-2026-43024 external
https://bugzilla.suse.com/1263930 external
https://www.suse.com/security/cve/CVE-2026-43028 external
https://bugzilla.suse.com/1263934 external
https://www.suse.com/security/cve/CVE-2026-43035 external
https://bugzilla.suse.com/1263996 external
https://www.suse.com/security/cve/CVE-2026-43036 external
https://bugzilla.suse.com/1263993 external
https://www.suse.com/security/cve/CVE-2026-43049 external
https://bugzilla.suse.com/1264080 external
https://www.suse.com/security/cve/CVE-2026-43053 external
https://bugzilla.suse.com/1264084 external
https://www.suse.com/security/cve/CVE-2026-43074 external
https://bugzilla.suse.com/1264263 external
https://bugzilla.suse.com/1265307 external
https://www.suse.com/security/cve/CVE-2026-43077 external
https://bugzilla.suse.com/1264470 external
https://bugzilla.suse.com/1265306 external
https://www.suse.com/security/cve/CVE-2026-43083 external
https://bugzilla.suse.com/1264266 external
https://www.suse.com/security/cve/CVE-2026-43101 external
https://bugzilla.suse.com/1264239 external
https://www.suse.com/security/cve/CVE-2026-43112 external
https://bugzilla.suse.com/1264437 external
https://www.suse.com/security/cve/CVE-2026-43119 external
https://bugzilla.suse.com/1264561 external
https://www.suse.com/security/cve/CVE-2026-43158 external
https://bugzilla.suse.com/1264595 external
https://www.suse.com/security/cve/CVE-2026-43171 external
https://bugzilla.suse.com/1264549 external
https://www.suse.com/security/cve/CVE-2026-43187 external
https://bugzilla.suse.com/1264603 external
https://www.suse.com/security/cve/CVE-2026-43198 external
https://bugzilla.suse.com/1264610 external
https://bugzilla.suse.com/1264611 external
https://www.suse.com/security/cve/CVE-2026-43239 external
https://bugzilla.suse.com/1264444 external
https://www.suse.com/security/cve/CVE-2026-43339 external
https://bugzilla.suse.com/1264763 external
https://www.suse.com/security/cve/CVE-2026-43345 external
https://bugzilla.suse.com/1265103 external
https://www.suse.com/security/cve/CVE-2026-43405 external
https://bugzilla.suse.com/1264741 external
https://www.suse.com/security/cve/CVE-2026-43469 external
https://bugzilla.suse.com/1265143 external
https://www.suse.com/security/cve/CVE-2026-43491 external
https://bugzilla.suse.com/1265628 external
https://www.suse.com/security/cve/CVE-2026-45840 external
https://bugzilla.suse.com/1266397 external
https://www.suse.com/security/cve/CVE-2026-45841 external
https://bugzilla.suse.com/1266390 external
https://www.suse.com/security/cve/CVE-2026-45862 external
https://bugzilla.suse.com/1266705 external
https://www.suse.com/security/cve/CVE-2026-45870 external
https://bugzilla.suse.com/1266704 external
https://www.suse.com/security/cve/CVE-2026-45894 external
https://bugzilla.suse.com/1266895 external
https://www.suse.com/security/cve/CVE-2026-45940 external
https://bugzilla.suse.com/1266916 external
https://www.suse.com/security/cve/CVE-2026-45961 external
https://bugzilla.suse.com/1266933 external
https://www.suse.com/security/cve/CVE-2026-45964 external
https://bugzilla.suse.com/1266698 external
https://www.suse.com/security/cve/CVE-2026-45965 external
https://bugzilla.suse.com/1267208 external
https://www.suse.com/security/cve/CVE-2026-45974 external
https://bugzilla.suse.com/1266922 external
https://www.suse.com/security/cve/CVE-2026-46005 external
https://bugzilla.suse.com/1267431 external
https://www.suse.com/security/cve/CVE-2026-46037 external
https://bugzilla.suse.com/1267361 external
https://bugzilla.suse.com/1267362 external
https://www.suse.com/security/cve/CVE-2026-46101 external
https://bugzilla.suse.com/1266878 external
https://www.suse.com/security/cve/CVE-2026-46119 external
https://bugzilla.suse.com/1267628 external
https://bugzilla.suse.com/1267894 external
https://www.suse.com/security/cve/CVE-2026-46120 external
https://bugzilla.suse.com/1267640 external
https://bugzilla.suse.com/1267893 external
https://www.suse.com/security/cve/CVE-2026-46123 external
https://bugzilla.suse.com/1267621 external
https://bugzilla.suse.com/1267622 external
https://www.suse.com/security/cve/CVE-2026-46150 external
https://bugzilla.suse.com/1267387 external
https://bugzilla.suse.com/1267388 external
https://www.suse.com/security/cve/CVE-2026-46160 external
https://bugzilla.suse.com/1267624 external
https://www.suse.com/security/cve/CVE-2026-46172 external
https://bugzilla.suse.com/1266903 external
https://www.suse.com/security/cve/CVE-2026-46197 external
https://bugzilla.suse.com/1267381 external
https://bugzilla.suse.com/1267382 external
https://www.suse.com/security/cve/CVE-2026-46227 external
https://bugzilla.suse.com/1267697 external
https://bugzilla.suse.com/1267698 external
https://www.suse.com/security/cve/CVE-2026-46244 external
https://bugzilla.suse.com/1267654 external
https://www.suse.com/security/cve/CVE-2026-46259 external
https://bugzilla.suse.com/1267685 external
https://www.suse.com/security/cve/CVE-2026-46273 external
https://bugzilla.suse.com/1267651 external

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2025-10263: arm64: errata: Mitigate TLBI errata on various Arm CPUs (bsc#1266290).\n- CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668).\n- CVE-2026-31414: netfilter: nf_conntrack_expect: use expect-\u003ehelper (bsc#1262085).\n- CVE-2026-31429: net: skb: fix cross-cache free of KFENCE-allocated skb head (bsc#1262392).\n- CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620).\n- CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false\n- CVE-2026-31492: RDMA/irdma: Initialize free_qp completion before using it (bsc#1262748).\n- CVE-2026-31495: netfilter: ctnetlink: use netlink policy range checks (bsc#1262798).\n- CVE-2026-31499: Bluetooth: L2CAP: Fix deadlock in l2cap_conn_del() (bsc#1262674).\n- CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993).\n- CVE-2026-31555: futex: Clear stale exiting pointer in futex_lock_pi() retry path (bsc#1263178).\n- CVE-2026-31592: KVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm-\u003elock (bsc#1263123).\n- CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578).\n- CVE-2026-31665: kABI: netfilter: nft_ct: fix use-after-free in timeout object destroy (bsc#1263137).\n- CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568).\n- CVE-2026-31680: net: ipv6: flowlabel: defer exclusive option free until RCU teardown (bsc#1263563).\n- CVE-2026-31693: cifs: some missing initializations on replay (bsc#1267744).\n- CVE-2026-31697: crypto: ccp: Don\u0027t attempt to copy ID to userspace if PSP command failed (bsc#1264116).\n- CVE-2026-31698: crypto: ccp: Don\u0027t attempt to copy PDH cert to userspace if PSP command failed (bsc#1263880).\n- CVE-2026-31699: crypto: ccp: Don\u0027t attempt to copy CSR to userspace if PSP command failed (bsc#1263879).\n- CVE-2026-31752: bridge: br_nd_send: validate ND option lengths (bsc#1264045).\n- CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076).\n- CVE-2026-31771: Bluetooth: hci_event: move wake reason storage into validated event handlers (bsc#1264145).\n- CVE-2026-43023: Bluetooth: SCO: fix race conditions in sco_sock_connect() (bsc#1264137).\n- CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930).\n- CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934).\n- CVE-2026-43035: net: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak (bsc#1263996).\n- CVE-2026-43036: net: use skb_header_pointer() for TCPv4 GSO frag_off check (bsc#1263993).\n- CVE-2026-43049: HID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure (bsc#1264080).\n- CVE-2026-43053: xfs: close crash window in attr dabtree inactivation (bsc#1264084).\n- CVE-2026-43074: eventpoll: defer struct eventpoll free to RCU grace period (bsc#1264263).\n- CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470).\n- CVE-2026-43083: net: ioam6: fix OOB and missing lock (bsc#1264266).\n- CVE-2026-43101: ipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data() (bsc#1264239).\n- CVE-2026-43112: fs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath (bsc#1264437).\n- CVE-2026-43119: Bluetooth: hci_sync: annotate data-races around hdev-\u003ereq_status (bsc#1264561).\n- CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595).\n- CVE-2026-43171: EFI/CPER: do not dump the entire memory region (bsc#1264549).\n- CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603).\n- CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610).\n- CVE-2026-43239: smb: client: prevent races in -\u003equery_interfaces() (bsc#1264444).\n- CVE-2026-43339: ipv6: prevent possible UaF in addrconf_permanent_addr() (bsc#1264763).\n- CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0+ (bsc#1265103).\n- CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() (bsc#1264741).\n- CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths (bsc#1265143).\n- CVE-2026-43491: net: qrtr: ns: Limit the maximum server registration per node (bsc#1265628).\n- CVE-2026-45840: openvswitch: cap upcall PID array size and pre-size vport replies (bsc#1266397).\n- CVE-2026-45841: netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO (bsc#1266390).\n- CVE-2026-45862: iommu/vt-d: Flush cache for PASID table before using it (bsc#1266705).\n- CVE-2026-45870: SUNRPC: auth_gss: fix memory leaks in XDR decoding error paths (bsc#1266704).\n- CVE-2026-45894: iommu/vt-d: Clear Present bit before tearing down PASID entry (bsc#1266895).\n- CVE-2026-45940: net: stmmac: fix oops when split header is enabled (bsc#1266916).\n- CVE-2026-45961: gfs2: fix memory leaks in gfs2_fill_super error path (bsc#1266933).\n- CVE-2026-45964: SUNRPC: fix gss_auth kref leak in gss_alloc_msg error path (bsc#1266698).\n- CVE-2026-45965: apparmor: fix invalid deref of rawdata when export_binary is unset (bsc#1267208).\n- CVE-2026-45974: btrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found (bsc#1266922).\n- CVE-2026-46005: xfs: fix a resource leak in xfs_alloc_buftarg() (bsc#1267431).\n- CVE-2026-46037: ipv4: icmp: validate reply type before using icmp_pointers (bsc#1267361).\n- CVE-2026-46101: netfilter: reject zero shift in nft_bitwise (bsc#1266878).\n- CVE-2026-46119: libceph: Fix slab-out-of-bounds access in auth message processing (bsc#1267628).\n- CVE-2026-46120: ip6_gre: Use cached t-\u003enet in ip6erspan_changelink() (bsc#1267640).\n- CVE-2026-46123: Bluetooth: virtio_bt: clamp rx length before skb_put (bsc#1267621).\n- CVE-2026-46150: fanotify: fix false positive on permission events (bsc#1267387).\n- CVE-2026-46160: btrfs: fix missing last_unlink_trans update when removing a directory (bsc#1267624).\n- CVE-2026-46172: ipv6: xfrm6: release dst on error in xfrm6_rcv_encap() (bsc#1266903).\n- CVE-2026-46197: drm/amdkfd: validate SVM ioctl nattr against buffer size (bsc#1267381).\n- CVE-2026-46227: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL (bsc#1267697).\n- CVE-2026-46244: netfilter: nft_inner: Fix IPv6 inner_thoff desync (bsc#1267654).\n- CVE-2026-46259: procfs: fix missing RCU protection when reading real_parent in do_task_stat() (bsc#1267685).\n- CVE-2026-46273: ibmveth: Disable GSO for packets with small MSS (bsc#1267651).\n\nThe following non-security bugs were fixed:\n\n- ACPI: CPPC: Suppress UBSAN warning caused by field misuse (git-fixes).\n- ACPI: IPMI: Fix message kref handling on dead device (git-fixes).\n- ACPI: NFIT: core: Fix possible NULL pointer dereference (git-fixes).\n- ALSA: aloop: Drop superfluous break (git-fixes).\n- ALSA: cmipci: check snd_ctl_new1() return value (git-fixes).\n- ALSA: core: Fix unintuitive behavior of snd_power_ref_and_wait() (git-fixes).\n- ALSA: es1938: check snd_ctl_new1() return value (git-fixes).\n- ALSA: gus: check snd_ctl_new1() return value (git-fixes).\n- ALSA: ice1712: check snd_ctl_new1() return value (git-fixes).\n- ALSA: seq: Clear variable event pointer on read (git-fixes).\n- ALSA: seq: Fix partial userptr event expansion (git-fixes).\n- ALSA: seq: midi: Serialize output teardown with event_input (git-fixes).\n- ALSA: usb-audio: Propagate US-16x08 write errors in route/mix EQ-switch put callbacks (git-fixes).\n- ALSA: usb-audio: Propagate errors in scarlett_ctl_enum_put() (git-fixes).\n- ALSA: usb-audio: Roll back quirk control caches on write errors (git-fixes).\n- ALSA: usb-audio: Update Babyface Pro control caches only after successful writes (git-fixes).\n- ALSA: usb-audio: Update US-16x08 EQ/comp shadow state after successful writes (git-fixes).\n- ALSA: virtio: Add missing 384 kHz PCM rate mapping (git-fixes).\n- ALSA: ymfpci: check snd_ctl_new1() return value (git-fixes).\n- ASoC: SOF: ipc3-control: Fix TOCTOU in bytes_put and bytes_get (git-fixes).\n- ASoC: SOF: ipc3-control: Fix heap overflow in bytes_ext put/get (git-fixes).\n- ASoC: SOF: ipc3-control: Use overflow checks in control_update size calc (git-fixes).\n- ASoC: SOF: ipc3-control: Validate size in snd_sof_update_control (git-fixes).\n- ASoC: SOF: ipc4-control: Fix TOCTOU in sof_ipc4_bytes_put (git-fixes).\n- ASoC: SOF: topology: validate vendor array size before parsing (git-fixes).\n- ASoC: adau1372: Clear PLL_EN on failed PLL lock without reset GPIO (git-fixes).\n- ASoC: codecs: hdac_hdmi: Validate written enum value (git-fixes).\n- ASoC: cs35l56: Cleanup if component_probe fails (git-fixes).\n- ASoC: cs35l56: Do not leave parent IRQ disabled if system_suspend fails (git-fixes).\n- ASoC: cs35l56: Fix missing calls to wm_adsp2_remove() (git-fixes).\n- ASoC: fsl: fsl_audmix: Validate written enum values (git-fixes).\n- ASoC: meson: aiu: Validate written enum values (git-fixes).\n- ASoC: tegra: tegra210_ahub: Validate written enum value (git-fixes).\n- ASoC: topology: Check PCM and DAI name strings before use (git-fixes).\n- ASoC: wm_adsp: Fix NULL dereference when removing firmware controls (git-fixes).\n- Bluetooth: btmtksdio: fix infinite loop in btmtksdio_txrx_work() (git-fixes).\n- Bluetooth: btusb: fix use-after-free on marvell probe failure (git-fixes).\n- Bluetooth: btusb: fix use-after-free on registration failure (git-fixes).\n- Bluetooth: btusb: fix wakeup irq devres lifetime (git-fixes).\n- Bluetooth: btusb: fix wakeup source leak on probe failure (git-fixes).\n- Bluetooth: eir: Fix stack OOB write when prepending the Flags AD (git-fixes).\n- Bluetooth: hci: validate codec capability element length (git-fixes).\n- Bluetooth: vhci: validate devcoredump state before side effects (git-fixes).\n- Drivers: hv: vmbus: Improve the logic of reserving fb_mmio on Gen2 VMs (git-fixes).\n- KVM: SEV: Ignore MMIO requests of length \u00270\u0027 (git-fixes).\n- KVM: SEV: Ignore Port I/O requests of length \u00270\u0027 (git-fixes).\n- KVM: SVM: Allow KVM_SET_NESTED_STATE to clear GIF when SVME==0 (git-fixes).\n- KVM: SVM: Do not set GIF when clearing EFER.SVME (git-fixes).\n- KVM: SVM: Flush the current TLB when transitioning from xAVIC =\u003e x2AVIC (git-fixes).\n- KVM: SVM: check validity of VMCB controls when returning from SMM (git-fixes).\n- KVM: arm64: Discard PC update state on vcpu reset (git-fixes).\n- KVM: arm64: Guard against NULL vcpu on VHE hyp panic path (git-fixes).\n- KVM: arm64: PMU: Preserve AArch32 counter low bits (git-fixes).\n- KVM: arm64: Treat vCPU with pending SError as runnable (git-fixes).\n- KVM: arm64: Wake-up from WFI when iqrchip is in userspace (git-fixes).\n- KVM: arm64: vgic-its: Reject restored DTE with out-of-range num_eventid_bits (git-fixes).\n- KVM: arm64: vgic: Fix IIDR revision field extracted from wrong value (git-fixes).\n- KVM: nSVM: Always use vmcb01 in VMLOAD/VMSAVE emulation (git-fixes).\n- KVM: nSVM: Ensure AVIC is inhibited when restoring a vCPU to guest mode (git-fixes).\n- KVM: nSVM: Mark all of vmcb02 dirty when restoring nested state (git-fixes).\n- KVM: nSVM: Set exit_code_hi to -1 when synthesizing SVM_EXIT_ERR (failed VMRUN) (git-fixes).\n- KVM: x86/mmu: Fix UBSAN warning when reading nx_huge_pages parameter (git-fixes).\n- PM: sleep: Use complete() in device_pm_sleep_init() (git-fixes).\n- USB: serial: io_ti: fix heap overflow in build_i2c_fw_hdr() (git-fixes).\n- USB: serial: io_ti: fix heap overflow in get_manuf_info() (git-fixes).\n- USB: serial: kl5kusb105: fix bulk-out buffer overflow (git-fixes).\n- X.509: Fix validation of ASN.1 certificate header (git-fixes).\n- add bugnumber to existing mana_ib change (bsc#1267682)\n- agp/amd64: Fix broken error propagation in agp_amd64_probe() (git-fixes).\n- batman-adv: bla: annotate lasttime access with READ/WRITE_ONCE (git-fixes).\n- batman-adv: tp_meter: add only finished tp_vars to lists (git-fixes).\n- batman-adv: tp_meter: avoid divide-by-zero for dec_cwnd (git-fixes).\n- batman-adv: tp_meter: avoid window underflow (git-fixes).\n- batman-adv: tp_meter: fix fast recovery precondition (git-fixes).\n- batman-adv: tp_meter: handle seqno wrap-around for fast recovery detection (git-fixes).\n- batman-adv: tp_meter: initialize dec_cwnd explicitly (git-fixes).\n- batman-adv: tp_meter: initialize dup_acks explicitly (git-fixes).\n- batman-adv: tp_meter: keep unacked list in ascending ordered (git-fixes).\n- bnxt_en: Fix NULL pointer dereference (bsc#1268307).\n- crypto: af_alg - Cap AEAD AD length to 0x80000000 (git-fixes).\n- crypto: amlogic - avoid double cleanup in meson_crypto_probe() (git-fixes).\n- crypto: asymmetric_keys - fix OOB read in pefile_digest_pe_contents (git-fixes).\n- crypto: atmel-sha204a - fix blocking and non-blocking rng logic (git-fixes).\n- crypto: cavium/cpt - fix DMA cleanup using wrong loop index (git-fixes).\n- crypto: ccp - Fix snp_filter_reserved_mem_regions() off-by-one (git-fixes).\n- crypto: ccp - Treat zero-length cert chain as query for blob lengths (git-fixes).\n- crypto: drbg - Fix drbg_max_addtl() on 64-bit kernels (git-fixes).\n- crypto: drbg - Fix returning success on failure in CTR_DRBG (git-fixes).\n- crypto: drbg - Fix the fips_enabled priority boost (git-fixes).\n- crypto: ecc - Fix carry overflow in vli multiplication (git-fixes).\n- crypto: ecrdsa - fix unknown OID check in ecrdsa_param_curve (git-fixes).\n- crypto: hisilicon/qm - disable error report before flr (git-fixes).\n- crypto: marvell/octeontx - fix DMA cleanup using wrong loop index (git-fixes).\n- crypto: pcrypt - restore callback for non-parallel fallback (git-fixes).\n- crypto: qat - protect service table iterations with service_lock (git-fixes).\n- crypto: qat - validate RSA CRT component lengths (git-fixes).\n- crypto: rng - Free default RNG on module exit (git-fixes).\n- driver core: reject devices with unregistered buses (git-fixes).\n- driver core: use READ_ONCE() for dev-\u003edriver in dev_has_sync_state() (git-fixes).\n- drm/amd/display: Add missing kdoc for ALLM parameters (git-fixes).\n- drm/amdgpu: fix integer overflow in amdgpu_gem_align_pitch() (git-fixes).\n- drm/amdgpu: set sub_block_index for mca ras sub-blocks (git-fixes).\n- drm/amdkfd: Validate CRIU-restored IDs before idr_alloc (git-fixes).\n- drm/bridge: cdns-dsi: Replace deprecated UNIVERSAL_DEV_PM_OPS() (git-fixes).\n- drm/dp/mst: fix OOB reads in remote DPCD/I2C sideband reply parsers (git-fixes).\n- drm/dp/mst: fix OOB reads on 2-byte fields in sideband reply parsers (git-fixes).\n- drm/dp/mst: fix buffer overflows in sideband chunk accumulation (git-fixes).\n- drm/hisilicon/hibmc: move display contrl config to hibmc_probe() (git-fixes).\n- drm/hisilicon/hibmc: use clock to look up the PLL value (git-fixes).\n- drm/hyperv: use VMBUS_RING_SIZE() (git-fixes).\n- drm/i915/gem: Fix phys BO pread/pwrite with offset (git-fixes).\n- drm/msm/dp: Fix the ISR_* enum values (git-fixes).\n- drm/msm/dp: fix HPD state status bit shift value (git-fixes).\n- drm/nouveau/bios: specify correct display fuse register for Ampere and Ada (git-fixes).\n- drm/radeon: fix integer overflow in radeon_align_pitch() (git-fixes).\n- drm/radeon: fix memory leak in radeon_ring_restore() on lock failure (git-fixes).\n- drm/rockchip: cdn-dp: add missing check in cdn_dp_config_video() (git-fixes).\n- drm/tegra: Fix iommu_map_sgtable() return value check (git-fixes).\n- drm/tegra: dc: Fix device node reference leak in tegra_dc_has_output() (git-fixes).\n- drm/tidss: Drop extra drm_mode_config_reset() call (git-fixes).\n- drm/tidss: Fix missing drm_bridge_add() call (git-fixes).\n- drm/vc4: fix krealloc() memory leak (git-fixes).\n- drm/virtio: Fix driver removal with disabled KMS (git-fixes).\n- drm/virtio: fix dma_fence refcount leak on error in virtio_gpu_dma_fence_wait() (git-fixes).\n- ethtool: provide customized dim profile management (bsc#1261256).\n- fbdev: broadsheetfb: fix potential memory leak in broadsheetfb_probe() (git-fixes).\n- fbdev: hecubafb: fix potential memory leak in hecubafb_probe() (git-fixes).\n- fbdev: i740fb: fix potential memory leak in i740fb_probe() (git-fixes).\n- fbdev: metronomefb: fix potential memory leak in metronomefb_probe() (git-fixes).\n- fbdev: modedb: Fix misaligned fields in the 1920x1080-60 mode (git-fixes).\n- fbdev: nvidia: fix potential memory leak in nvidiafb_probe() (git-fixes).\n- fbdev: radeon: fix potential memory leak in radeonfb_pci_register() (git-fixes).\n- fbdev: s3fb: fix potential memory leak in s3_pci_probe() (git-fixes).\n- fbdev: sm501fb: Fix buffer errors in OF binding code (git-fixes).\n- fbdev: sm712: Fix operator precedence in big_swap macro (git-fixes).\n- fbdev: tdfxfb: fix potential memory leak in tdfxfb_probe() (git-fixes).\n- fbdev: tridentfb: fix potential memory leak in trident_pci_probe() (git-fixes).\n- fbdev: uvesafb: fix potential memory leak in uvesafb_probe() (git-fixes).\n- fbdev: vesafb: fix memory leak in vesafb_probe() (git-fixes).\n- firmware: arm_scmi: Fix OOB in scmi_power_name_get() (git-fixes).\n- firmware: arm_scmi: Read sensor config as 32-bit value (git-fixes).\n- firmware_loader: Fix recursive lock in device_cache_fw_images() (git-fixes).\n- firmware_loader: fix device reference leak in firmware_upload_register() (git-fixes).\n- gpio: mvebu: fix NULL pointer dereference in suspend/resume (git-fixes).\n- gpu: host1x: Allow entries in BO caches to be freed (git-fixes).\n- gpu: host1x: Fix iommu_map_sgtable() return value check (git-fixes).\n- hv: utils: handle and propagate errors in kvp_register (git-fixes).\n- hwmon: (it87) Clamp negative values to zero in set_fan() (git-fixes).\n- hwrng: jh7110 - fix refcount leak in starfive_trng_read() (git-fixes).\n- hwrng: virtio: clamp device-reported used.len at copy_data() (git-fixes).\n- hyperv: Clean up and fix the guest ID comment in hvgdk.h (git-fixes).\n- i2c: core: fix irq domain leak on adapter registration failure (git-fixes).\n- i2c: qcom-cci: Fix NULL pointer dereference in cci_remove() (git-fixes).\n- i2c: stm32f7: fix timing computation ignoring i2c-analog-filter (git-fixes).\n- i2c: tegra: Fix NOIRQ suspend/resume (git-fixes).\n- linux/dim: move useful macros to .h file (bsc#1261256).\n- misc: fastrpc: Fix NULL pointer dereference in rpmsg callback (git-fixes).\n- misc: fastrpc: fix DMA address corruption due to find_vma misuse (git-fixes).\n- misc: fastrpc: fix use-after-free of fastrpc_user in workqueue context (git-fixes).\n- misc: fastrpc: fix use-after-free race in fastrpc_map_create (git-fixes).\n- net: ethtool: add ethtool COALESCE_RX_CQE_FRAMES/NSECS (bsc#1261256).\n- net: mana: Add ethtool counters for RX CQEs in coalesced type (bsc#1261256).\n- net: mana: Add support for RX CQE Coalescing (bsc#1261256).\n- of: cpu: add check in __of_find_n_match_cpu_property() (git-fixes).\n- slimbus: qcom-ngd-ctrl: fix OF node refcount (git-fixes).\n- soc: fsl: qe: panic on ioremap() failure in qe_reset() (git-fixes).\n- soc: ti: k3-ringacc: Fix access mode for k3_ringacc_ring_pop_tail_io/proxy (git-fixes).\n- spi: at91-usart: drop dead runtime pm support (git-fixes).\n- spi: ep93xx: fix double-free of zeropage on DMA setup failure (git-fixes).\n- spi: fsl-lpspi: replace dmaengine_terminate_all() with dmaengine_terminate_sync() (git-fixes).\n- spi: fsl-lpspi: terminate the RX channel on TX prepare failure path (git-fixes).\n- spi: meson-spifc: fix runtime PM leak on remove (git-fixes).\n- spi: xilinx: use FIFO occupancy register to determine buffer size (git-fixes).\n- thermal: hwmon: Fix critical temperature attribute removal (git-fixes).\n- thunderbolt: Bound root directory content to block size (git-fixes).\n- thunderbolt: Clamp XDomain response data copy to allocation size (git-fixes).\n- thunderbolt: Limit XDomain response copy to actual frame size (git-fixes).\n- thunderbolt: Reject zero-length property entries in validator (git-fixes).\n- thunderbolt: Validate XDomain request packet size before type cast (git-fixes).\n- watchdog: apple: Add \"apple,t8103-wdt\" compatible (git-fixes).\n- watchdog: sp5100_tco: Use EFCH MMIO for newer Hygon FCH (git-fixes).\n- watchdog: sprd_wdt: Remove redundant sprd_wdt_disable() on register failure (git-fixes).\n- watchdog: unregister PM notifier on watchdog unregister (git-fixes).\n- wifi: ath11k: fix warning when unbinding (git-fixes).\n- wifi: ath9k: fix OOB access from firmware tx status queue ID (git-fixes).\n- wifi: cfg80211: fix grammar in MLO group key error message (git-fixes).\n- wifi: mac80211: fix monitor mode frame capture for real chanctx drivers (git-fixes).\n- wifi: mt76: fix argument to ieee80211_is_first_frag() (git-fixes).\n- wifi: mt76: mt7915: fix potential tx_retries underflow (git-fixes).\n- wifi: mt76: mt7921: fix potential tx_retries underflow (git-fixes).\n- wifi: mt76: mt7925: clean up DMA on probe failure (git-fixes).\n- wifi: mt76: mt7925: fix potential tx_retries underflow (git-fixes).\n- wifi: mt76: mt7996: fix potential tx_retries underflow (git-fixes).\n- wifi: rtlwifi: rtl8821ae: Fix C2H bit location in RX descriptor (git-fixes).\n- wifi: rtw88: fix OOB read from firmware RX descriptor exceeding DMA buffer (git-fixes).\n- wifi: rtw88: increase TX report timeout to fix race condition (git-fixes).\n- wifi: rtw88: usb: fix memory leaks on USB write failures (git-fixes).\n- wifi: rtw89: Correct data type for scan index to avoid infinite loop (git-fixes).\n- wifi: wcn36xx: fix OOB read from firmware count in PRINT_REG_INFO indication (git-fixes).\n- wifi: wcn36xx: fix OOB read from short trigger BA firmware response (git-fixes).\n- wifi: wcn36xx: fix heap overflow from oversized firmware HAL response (git-fixes).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-SLE-Micro-6.0-kernel-496",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22436-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:22436-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622436-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:22436-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2026-July/047859.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1256668",
        "url": "https://bugzilla.suse.com/1256668"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1261256",
        "url": "https://bugzilla.suse.com/1261256"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262085",
        "url": "https://bugzilla.suse.com/1262085"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262392",
        "url": "https://bugzilla.suse.com/1262392"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262617",
        "url": "https://bugzilla.suse.com/1262617"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262620",
        "url": "https://bugzilla.suse.com/1262620"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262674",
        "url": "https://bugzilla.suse.com/1262674"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262748",
        "url": "https://bugzilla.suse.com/1262748"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262798",
        "url": "https://bugzilla.suse.com/1262798"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1262993",
        "url": "https://bugzilla.suse.com/1262993"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263123",
        "url": "https://bugzilla.suse.com/1263123"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263137",
        "url": "https://bugzilla.suse.com/1263137"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263178",
        "url": "https://bugzilla.suse.com/1263178"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263563",
        "url": "https://bugzilla.suse.com/1263563"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263568",
        "url": "https://bugzilla.suse.com/1263568"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263578",
        "url": "https://bugzilla.suse.com/1263578"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263879",
        "url": "https://bugzilla.suse.com/1263879"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263880",
        "url": "https://bugzilla.suse.com/1263880"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263930",
        "url": "https://bugzilla.suse.com/1263930"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263934",
        "url": "https://bugzilla.suse.com/1263934"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263993",
        "url": "https://bugzilla.suse.com/1263993"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263996",
        "url": "https://bugzilla.suse.com/1263996"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264045",
        "url": "https://bugzilla.suse.com/1264045"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264076",
        "url": "https://bugzilla.suse.com/1264076"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264080",
        "url": "https://bugzilla.suse.com/1264080"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264084",
        "url": "https://bugzilla.suse.com/1264084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264116",
        "url": "https://bugzilla.suse.com/1264116"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264137",
        "url": "https://bugzilla.suse.com/1264137"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264145",
        "url": "https://bugzilla.suse.com/1264145"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264239",
        "url": "https://bugzilla.suse.com/1264239"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264263",
        "url": "https://bugzilla.suse.com/1264263"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264266",
        "url": "https://bugzilla.suse.com/1264266"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264437",
        "url": "https://bugzilla.suse.com/1264437"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264444",
        "url": "https://bugzilla.suse.com/1264444"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264470",
        "url": "https://bugzilla.suse.com/1264470"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264549",
        "url": "https://bugzilla.suse.com/1264549"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264561",
        "url": "https://bugzilla.suse.com/1264561"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264595",
        "url": "https://bugzilla.suse.com/1264595"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264603",
        "url": "https://bugzilla.suse.com/1264603"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264610",
        "url": "https://bugzilla.suse.com/1264610"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264741",
        "url": "https://bugzilla.suse.com/1264741"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1264763",
        "url": "https://bugzilla.suse.com/1264763"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1265103",
        "url": "https://bugzilla.suse.com/1265103"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1265143",
        "url": "https://bugzilla.suse.com/1265143"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1265628",
        "url": "https://bugzilla.suse.com/1265628"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266290",
        "url": "https://bugzilla.suse.com/1266290"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266390",
        "url": "https://bugzilla.suse.com/1266390"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266397",
        "url": "https://bugzilla.suse.com/1266397"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266698",
        "url": "https://bugzilla.suse.com/1266698"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266704",
        "url": "https://bugzilla.suse.com/1266704"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266705",
        "url": "https://bugzilla.suse.com/1266705"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266878",
        "url": "https://bugzilla.suse.com/1266878"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266895",
        "url": "https://bugzilla.suse.com/1266895"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266903",
        "url": "https://bugzilla.suse.com/1266903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266916",
        "url": "https://bugzilla.suse.com/1266916"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266922",
        "url": "https://bugzilla.suse.com/1266922"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1266933",
        "url": "https://bugzilla.suse.com/1266933"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267208",
        "url": "https://bugzilla.suse.com/1267208"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267361",
        "url": "https://bugzilla.suse.com/1267361"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267381",
        "url": "https://bugzilla.suse.com/1267381"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267387",
        "url": "https://bugzilla.suse.com/1267387"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267431",
        "url": "https://bugzilla.suse.com/1267431"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267621",
        "url": "https://bugzilla.suse.com/1267621"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267624",
        "url": "https://bugzilla.suse.com/1267624"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267628",
        "url": "https://bugzilla.suse.com/1267628"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267640",
        "url": "https://bugzilla.suse.com/1267640"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267651",
        "url": "https://bugzilla.suse.com/1267651"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267654",
        "url": "https://bugzilla.suse.com/1267654"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267682",
        "url": "https://bugzilla.suse.com/1267682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267685",
        "url": "https://bugzilla.suse.com/1267685"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267697",
        "url": "https://bugzilla.suse.com/1267697"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1267744",
        "url": "https://bugzilla.suse.com/1267744"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1268307",
        "url": "https://bugzilla.suse.com/1268307"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-10263 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-10263/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-68822 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-68822/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31414 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31414/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31429 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31429/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31452 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31452/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31453 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31453/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31469 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31469/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31492 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31492/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31495 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31495/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31499 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31499/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31500 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31500/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31555 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31555/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31592 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31592/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31664 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31664/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31665 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31665/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31674 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31674/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31680 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31680/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31693 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31693/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31697 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31697/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31698 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31698/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31699 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31699/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31752 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31752/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31759 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31759/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-31771 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-31771/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43023 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43023/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43024 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43024/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43028 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43028/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43035 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43035/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43036 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43036/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43049 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43049/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43053 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43053/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43074 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43074/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43077 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43077/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43083 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43083/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43101 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43101/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43112 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43112/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43119 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43119/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43158 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43158/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43171 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43171/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43187 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43187/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43198 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43198/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43239 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43239/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43339 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43339/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43345 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43345/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43405 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43405/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43469 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43469/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-43491 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-43491/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45840 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45840/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45841 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45841/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45862 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45870 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45870/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45894 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45894/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45940 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45940/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45961 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45961/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45964 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45964/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45965 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45965/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-45974 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-45974/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46005 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46005/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46037 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46037/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46101 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46101/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46119 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46119/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46120 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46120/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46123 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46123/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46150 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46150/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46160 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46160/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46172 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46172/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46197 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46197/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46227 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46227/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46244 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46244/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46259 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46259/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-46273 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-46273/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2026-06-30T23:09:03Z",
      "generator": {
        "date": "2026-06-30T23:09:03Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:22436-1",
      "initial_release_date": "2026-06-30T23:09:03Z",
      "revision_history": [
        {
          "date": "2026-06-30T23:09:03Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-6.4.0-48.1.aarch64",
                "product": {
                  "name": "kernel-default-6.4.0-48.1.aarch64",
                  "product_id": "kernel-default-6.4.0-48.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-6.4.0-48.1.21.25.aarch64",
                "product": {
                  "name": "kernel-default-base-6.4.0-48.1.21.25.aarch64",
                  "product_id": "kernel-default-base-6.4.0-48.1.21.25.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-6.4.0-48.1.noarch",
                "product": {
                  "name": "kernel-devel-6.4.0-48.1.noarch",
                  "product_id": "kernel-devel-6.4.0-48.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-6.4.0-48.1.noarch",
                "product": {
                  "name": "kernel-macros-6.4.0-48.1.noarch",
                  "product_id": "kernel-macros-6.4.0-48.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-6.4.0-48.1.noarch",
                "product": {
                  "name": "kernel-source-6.4.0-48.1.noarch",
                  "product_id": "kernel-source-6.4.0-48.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-6.4.0-48.1.s390x",
                "product": {
                  "name": "kernel-default-6.4.0-48.1.s390x",
                  "product_id": "kernel-default-6.4.0-48.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-livepatch-6.4.0-48.1.s390x",
                "product": {
                  "name": "kernel-default-livepatch-6.4.0-48.1.s390x",
                  "product_id": "kernel-default-livepatch-6.4.0-48.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-default-6.4.0-48.1.x86_64",
                "product": {
                  "name": "kernel-default-6.4.0-48.1.x86_64",
                  "product_id": "kernel-default-6.4.0-48.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-6.4.0-48.1.21.25.x86_64",
                "product": {
                  "name": "kernel-default-base-6.4.0-48.1.21.25.x86_64",
                  "product_id": "kernel-default-base-6.4.0-48.1.21.25.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-livepatch-6.4.0-48.1.x86_64",
                "product": {
                  "name": "kernel-default-livepatch-6.4.0-48.1.x86_64",
                  "product_id": "kernel-default-livepatch-6.4.0-48.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-kvmsmall-6.4.0-48.1.x86_64",
                "product": {
                  "name": "kernel-kvmsmall-6.4.0-48.1.x86_64",
                  "product_id": "kernel-kvmsmall-6.4.0-48.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Micro 6.0",
                "product": {
                  "name": "SUSE Linux Micro 6.0",
                  "product_id": "SUSE Linux Micro 6.0",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sl-micro:6.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-6.4.0-48.1.aarch64 as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64"
        },
        "product_reference": "kernel-default-6.4.0-48.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-6.4.0-48.1.s390x as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x"
        },
        "product_reference": "kernel-default-6.4.0-48.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-6.4.0-48.1.x86_64 as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64"
        },
        "product_reference": "kernel-default-6.4.0-48.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-6.4.0-48.1.21.25.aarch64 as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64"
        },
        "product_reference": "kernel-default-base-6.4.0-48.1.21.25.aarch64",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-6.4.0-48.1.21.25.x86_64 as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64"
        },
        "product_reference": "kernel-default-base-6.4.0-48.1.21.25.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-livepatch-6.4.0-48.1.s390x as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x"
        },
        "product_reference": "kernel-default-livepatch-6.4.0-48.1.s390x",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-livepatch-6.4.0-48.1.x86_64 as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64"
        },
        "product_reference": "kernel-default-livepatch-6.4.0-48.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-6.4.0-48.1.noarch as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch"
        },
        "product_reference": "kernel-devel-6.4.0-48.1.noarch",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-kvmsmall-6.4.0-48.1.x86_64 as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64"
        },
        "product_reference": "kernel-kvmsmall-6.4.0-48.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-6.4.0-48.1.noarch as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch"
        },
        "product_reference": "kernel-macros-6.4.0-48.1.noarch",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-6.4.0-48.1.noarch as component of SUSE Linux Micro 6.0",
          "product_id": "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        },
        "product_reference": "kernel-source-6.4.0-48.1.noarch",
        "relates_to_product_reference": "SUSE Linux Micro 6.0"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-10263",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-10263"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Arm C1-Ultra, C1-Premium, Neoverse V3 \u0026 V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925, Cortex-X4, Cortex-X3, Cortex-X2, Cortex-X1 \u0026 X1C, Cortex-A710, Cortex-A78, A78AE \u0026 A78C, Cortex-A77, Cortex-A76 \u0026 A76A may allow writes to resources owned by a higher exception level.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-10263",
          "url": "https://www.suse.com/security/cve/CVE-2025-10263"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266290 for CVE-2025-10263",
          "url": "https://bugzilla.suse.com/1266290"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266954 for CVE-2025-10263",
          "url": "https://bugzilla.suse.com/1266954"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1270230 for CVE-2025-10263",
          "url": "https://bugzilla.suse.com/1270230"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2025-10263"
    },
    {
      "cve": "CVE-2025-68822",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-68822"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: alps - fix use-after-free bugs caused by dev3_register_work\n\nThe dev3_register_work delayed work item is initialized within\nalps_reconnect() and scheduled upon receipt of the first bare\nPS/2 packet from an external PS/2 device connected to the ALPS\ntouchpad. During device detachment, the original implementation\ncalls flush_workqueue() in psmouse_disconnect() to ensure\ncompletion of dev3_register_work. However, the flush_workqueue()\nin psmouse_disconnect() only blocks and waits for work items that\nwere already queued to the workqueue prior to its invocation. Any\nwork items submitted after flush_workqueue() is called are not\nincluded in the set of tasks that the flush operation awaits.\nThis means that after flush_workqueue() has finished executing,\nthe dev3_register_work could still be scheduled. Although the\npsmouse state is set to PSMOUSE_CMD_MODE in psmouse_disconnect(),\nthe scheduling of dev3_register_work remains unaffected.\n\nThe race condition can occur as follows:\n\nCPU 0 (cleanup path)     | CPU 1 (delayed work)\npsmouse_disconnect()     |\n  psmouse_set_state()    |\n  flush_workqueue()      | alps_report_bare_ps2_packet()\n  alps_disconnect()      |   psmouse_queue_work()\n    kfree(priv); // FREE | alps_register_bare_ps2_mouse()\n                         |   priv = container_of(work...); // USE\n                         |   priv-\u003edev3 // USE\n\nAdd disable_delayed_work_sync() in alps_disconnect() to ensure\nthat dev3_register_work is properly canceled and prevented from\nexecuting after the alps_data structure has been deallocated.\n\nThis bug is identified by static analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-68822",
          "url": "https://www.suse.com/security/cve/CVE-2025-68822"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1256668 for CVE-2025-68822",
          "url": "https://bugzilla.suse.com/1256668"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2025-68822"
    },
    {
      "cve": "CVE-2026-31414",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31414"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_conntrack_expect: use expect-\u003ehelper\n\nUse expect-\u003ehelper in ctnetlink and /proc to dump the helper name.\nUsing nfct_help() without holding a reference to the master conntrack\nis unsafe.\n\nUse exp-\u003emaster-\u003ehelper in ctnetlink path if userspace does not provide\nan explicit helper when creating an expectation to retain the existing\nbehaviour. The ctnetlink expectation path holds the reference on the\nmaster conntrack and nf_conntrack_expect lock and the nfnetlink glue\npath refers to the master ct that is attached to the skb.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31414",
          "url": "https://www.suse.com/security/cve/CVE-2026-31414"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262085 for CVE-2026-31414",
          "url": "https://bugzilla.suse.com/1262085"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31414"
    },
    {
      "cve": "CVE-2026-31429",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31429"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: skb: fix cross-cache free of KFENCE-allocated skb head\n\nSKB_SMALL_HEAD_CACHE_SIZE is intentionally set to a non-power-of-2\nvalue (e.g. 704 on x86_64) to avoid collisions with generic kmalloc\nbucket sizes. This ensures that skb_kfree_head() can reliably use\nskb_end_offset to distinguish skb heads allocated from\nskb_small_head_cache vs. generic kmalloc caches.\n\nHowever, when KFENCE is enabled, kfence_ksize() returns the exact\nrequested allocation size instead of the slab bucket size. If a caller\n(e.g. bpf_test_init) allocates skb head data via kzalloc() and the\nrequested size happens to equal SKB_SMALL_HEAD_CACHE_SIZE, then\nslab_build_skb() -\u003e ksize() returns that exact value. After subtracting\nskb_shared_info overhead, skb_end_offset ends up matching\nSKB_SMALL_HEAD_HEADROOM, causing skb_kfree_head() to incorrectly free\nthe object to skb_small_head_cache instead of back to the original\nkmalloc cache, resulting in a slab cross-cache free:\n\n  kmem_cache_free(skbuff_small_head): Wrong slab cache. Expected\n  skbuff_small_head but got kmalloc-1k\n\nFix this by always calling kfree(head) in skb_kfree_head(). This keeps\nthe free path generic and avoids allocator-specific misclassification\nfor KFENCE objects.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31429",
          "url": "https://www.suse.com/security/cve/CVE-2026-31429"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262392 for CVE-2026-31429",
          "url": "https://bugzilla.suse.com/1262392"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31429"
    },
    {
      "cve": "CVE-2026-31452",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31452"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: convert inline data to extents when truncate exceeds inline size\n\nAdd a check in ext4_setattr() to convert files from inline data storage\nto extent-based storage when truncate() grows the file size beyond the\ninline capacity. This prevents the filesystem from entering an\ninconsistent state where the inline data flag is set but the file size\nexceeds what can be stored inline.\n\nWithout this fix, the following sequence causes a kernel BUG_ON():\n\n1. Mount filesystem with inode that has inline flag set and small size\n2. truncate(file, 50MB) - grows size but inline flag remains set\n3. sendfile() attempts to write data\n4. ext4_write_inline_data() hits BUG_ON(write_size \u003e inline_capacity)\n\nThe crash occurs because ext4_write_inline_data() expects inline storage\nto accommodate the write, but the actual inline capacity (~60 bytes for\ni_block + ~96 bytes for xattrs) is far smaller than the file size and\nwrite request.\n\nThe fix checks if the new size from setattr exceeds the inode\u0027s actual\ninline capacity (EXT4_I(inode)-\u003ei_inline_size) and converts the file to\nextent-based storage before proceeding with the size change.\n\nThis addresses the root cause by ensuring the inline data flag and file\nsize remain consistent during truncate operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31452",
          "url": "https://www.suse.com/security/cve/CVE-2026-31452"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262620 for CVE-2026-31452",
          "url": "https://bugzilla.suse.com/1262620"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31452"
    },
    {
      "cve": "CVE-2026-31453",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31453"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: avoid dereferencing log items after push callbacks\n\nAfter xfsaild_push_item() calls iop_push(), the log item may have been\nfreed if the AIL lock was dropped during the push. Background inode\nreclaim or the dquot shrinker can free the log item while the AIL lock\nis not held, and the tracepoints in the switch statement dereference\nthe log item after iop_push() returns.\n\nFix this by capturing the log item type, flags, and LSN before calling\nxfsaild_push_item(), and introducing a new xfs_ail_push_class trace\nevent class that takes these pre-captured values and the ailp pointer\ninstead of the log item pointer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31453",
          "url": "https://www.suse.com/security/cve/CVE-2026-31453"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262617 for CVE-2026-31453",
          "url": "https://bugzilla.suse.com/1262617"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31453"
    },
    {
      "cve": "CVE-2026-31469",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31469"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false\n\nA UAF issue occurs when the virtio_net driver is configured with napi_tx=N\nand the device\u0027s IFF_XMIT_DST_RELEASE flag is cleared\n(e.g., during the configuration of tc route filter rules).\n\nWhen IFF_XMIT_DST_RELEASE is removed from the net_device, the network stack\nexpects the driver to hold the reference to skb-\u003edst until the packet\nis fully transmitted and freed. In virtio_net with napi_tx=N,\nskbs may remain in the virtio transmit ring for an extended period.\n\nIf the network namespace is destroyed while these skbs are still pending,\nthe corresponding dst_ops structure has freed. When a subsequent packet\nis transmitted, free_old_xmit() is triggered to clean up old skbs.\nIt then calls dst_release() on the skb associated with the stale dst_entry.\nSince the dst_ops (referenced by the dst_entry) has already been freed,\na UAF kernel paging request occurs.\n\nfix it by adds skb_dst_drop(skb) in start_xmit to explicitly release\nthe dst reference before the skb is queued in virtio_net.\n\nCall Trace:\n Unable to handle kernel paging request at virtual address ffff80007e150000\n CPU: 2 UID: 0 PID: 6236 Comm: ping Kdump: loaded Not tainted 7.0.0-rc1+ #6 PREEMPT\n  ...\n  percpu_counter_add_batch+0x3c/0x158 lib/percpu_counter.c:98 (P)\n  dst_release+0xe0/0x110  net/core/dst.c:177\n  skb_release_head_state+0xe8/0x108 net/core/skbuff.c:1177\n  sk_skb_reason_drop+0x54/0x2d8 net/core/skbuff.c:1255\n  dev_kfree_skb_any_reason+0x64/0x78 net/core/dev.c:3469\n  napi_consume_skb+0x1c4/0x3a0 net/core/skbuff.c:1527\n  __free_old_xmit+0x164/0x230  drivers/net/virtio_net.c:611 [virtio_net]\n  free_old_xmit drivers/net/virtio_net.c:1081 [virtio_net]\n  start_xmit+0x7c/0x530 drivers/net/virtio_net.c:3329 [virtio_net]\n  ...\n\nReproduction Steps:\nNETDEV=\"enp3s0\"\n\nconfig_qdisc_route_filter() {\n    tc qdisc del dev $NETDEV root\n    tc qdisc add dev $NETDEV root handle 1: prio\n    tc filter add dev $NETDEV parent 1:0 \\\n\tprotocol ip prio 100 route to 100 flowid 1:1\n    ip route add 192.168.1.100/32 dev $NETDEV realm 100\n}\n\ntest_ns() {\n    ip netns add testns\n    ip link set $NETDEV netns testns\n    ip netns exec testns ifconfig $NETDEV  10.0.32.46/24\n    ip netns exec testns ping -c 1 10.0.32.1\n    ip netns del testns\n}\n\nconfig_qdisc_route_filter\n\ntest_ns\nsleep 2\ntest_ns",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31469",
          "url": "https://www.suse.com/security/cve/CVE-2026-31469"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267816 for CVE-2026-31469",
          "url": "https://bugzilla.suse.com/1267816"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31469"
    },
    {
      "cve": "CVE-2026-31492",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31492"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Initialize free_qp completion before using it\n\nIn irdma_create_qp, if ib_copy_to_udata fails, it will call\nirdma_destroy_qp to clean up which will attempt to wait on\nthe free_qp completion, which is not initialized yet. Fix this\nby initializing the completion before the ib_copy_to_udata call.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31492",
          "url": "https://www.suse.com/security/cve/CVE-2026-31492"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262748 for CVE-2026-31492",
          "url": "https://bugzilla.suse.com/1262748"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31492"
    },
    {
      "cve": "CVE-2026-31495",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31495"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ctnetlink: use netlink policy range checks\n\nReplace manual range and mask validations with netlink policy\nannotations in ctnetlink code paths, so that the netlink core rejects\ninvalid values early and can generate extack errors.\n\n- CTA_PROTOINFO_TCP_STATE: reject values \u003e TCP_CONNTRACK_SYN_SENT2 at\n  policy level, removing the manual \u003e= TCP_CONNTRACK_MAX check.\n- CTA_PROTOINFO_TCP_WSCALE_ORIGINAL/REPLY: reject values \u003e TCP_MAX_WSCALE\n  (14). The normal TCP option parsing path already clamps to this value,\n  but the ctnetlink path accepted 0-255, causing undefined behavior when\n  used as a u32 shift count.\n- CTA_FILTER_ORIG_FLAGS/REPLY_FLAGS: use NLA_POLICY_MASK with\n  CTA_FILTER_F_ALL, removing the manual mask checks.\n- CTA_EXPECT_FLAGS: use NLA_POLICY_MASK with NF_CT_EXPECT_MASK, adding\n  a new mask define grouping all valid expect flags.\n\nExtracted from a broader nf-next patch by Florian Westphal, scoped to\nctnetlink for the fixes tree.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31495",
          "url": "https://www.suse.com/security/cve/CVE-2026-31495"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262798 for CVE-2026-31495",
          "url": "https://bugzilla.suse.com/1262798"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31495"
    },
    {
      "cve": "CVE-2026-31499",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31499"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: L2CAP: Fix deadlock in l2cap_conn_del()\n\nl2cap_conn_del() calls cancel_delayed_work_sync() for both info_timer\nand id_addr_timer while holding conn-\u003elock. However, the work functions\nl2cap_info_timeout() and l2cap_conn_update_id_addr() both acquire\nconn-\u003elock, creating a potential AB-BA deadlock if the work is already\nexecuting when l2cap_conn_del() takes the lock.\n\nMove the work cancellations before acquiring conn-\u003elock and use\ndisable_delayed_work_sync() to additionally prevent the works from\nbeing rearmed after cancellation, consistent with the pattern used in\nhci_conn_del().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31499",
          "url": "https://www.suse.com/security/cve/CVE-2026-31499"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262674 for CVE-2026-31499",
          "url": "https://bugzilla.suse.com/1262674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31499"
    },
    {
      "cve": "CVE-2026-31500",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31500"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock\n\nbtintel_hw_error() issues two __hci_cmd_sync() calls (HCI_OP_RESET\nand Intel exception-info retrieval) without holding\nhci_req_sync_lock().  This lets it race against\nhci_dev_do_close() -\u003e btintel_shutdown_combined(), which also runs\n__hci_cmd_sync() under the same lock.  When both paths manipulate\nhdev-\u003ereq_status/req_rsp concurrently, the close path may free the\nresponse skb first, and the still-running hw_error path hits a\nslab-use-after-free in kfree_skb().\n\nWrap the whole recovery sequence in hci_req_sync_lock/unlock so it\nis serialized with every other synchronous HCI command issuer.\n\nBelow is the data race report and the kasan report:\n\n  BUG: data-race in __hci_cmd_sync_sk / btintel_shutdown_combined\n\n  read of hdev-\u003ereq_rsp at net/bluetooth/hci_sync.c:199\n  by task kworker/u17:1/83:\n   __hci_cmd_sync_sk+0x12f2/0x1c30 net/bluetooth/hci_sync.c:200\n   __hci_cmd_sync+0x55/0x80 net/bluetooth/hci_sync.c:223\n   btintel_hw_error+0x114/0x670 drivers/bluetooth/btintel.c:254\n   hci_error_reset+0x348/0xa30 net/bluetooth/hci_core.c:1030\n\n  write/free by task ioctl/22580:\n   btintel_shutdown_combined+0xd0/0x360\n    drivers/bluetooth/btintel.c:3648\n   hci_dev_close_sync+0x9ae/0x2c10 net/bluetooth/hci_sync.c:5246\n   hci_dev_do_close+0x232/0x460 net/bluetooth/hci_core.c:526\n\n  BUG: KASAN: slab-use-after-free in\n   sk_skb_reason_drop+0x43/0x380 net/core/skbuff.c:1202\n  Read of size 4 at addr ffff888144a738dc\n  by task kworker/u17:1/83:\n   __hci_cmd_sync_sk+0x12f2/0x1c30 net/bluetooth/hci_sync.c:200\n   __hci_cmd_sync+0x55/0x80 net/bluetooth/hci_sync.c:223\n   btintel_hw_error+0x186/0x670 drivers/bluetooth/btintel.c:260",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31500",
          "url": "https://www.suse.com/security/cve/CVE-2026-31500"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262993 for CVE-2026-31500",
          "url": "https://bugzilla.suse.com/1262993"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1262994 for CVE-2026-31500",
          "url": "https://bugzilla.suse.com/1262994"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-31500"
    },
    {
      "cve": "CVE-2026-31555",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31555"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfutex: Clear stale exiting pointer in futex_lock_pi() retry path\n\nFuzzying/stressing futexes triggered:\n\n    WARNING: kernel/futex/core.c:825 at wait_for_owner_exiting+0x7a/0x80, CPU#11: futex_lock_pi_s/524\n\nWhen futex_lock_pi_atomic() sees the owner is exiting, it returns -EBUSY\nand stores a refcounted task pointer in \u0027exiting\u0027.\n\nAfter wait_for_owner_exiting() consumes that reference, the local pointer\nis never reset to nil. Upon a retry, if futex_lock_pi_atomic() returns a\ndifferent error, the bogus pointer is passed to wait_for_owner_exiting().\n\n  CPU0\t\t\t     CPU1\t\t       CPU2\n  futex_lock_pi(uaddr)\n  // acquires the PI futex\n  exit()\n    futex_cleanup_begin()\n      futex_state = EXITING;\n\t\t\t     futex_lock_pi(uaddr)\n\t\t\t       futex_lock_pi_atomic()\n\t\t\t\t attach_to_pi_owner()\n\t\t\t\t   // observes EXITING\n\t\t\t\t   *exiting = owner;  // takes ref\n\t\t\t\t   return -EBUSY\n\t\t\t       wait_for_owner_exiting(-EBUSY, owner)\n\t\t\t\t put_task_struct();   // drops ref\n\t\t\t       // exiting still points to owner\n\t\t\t       goto retry;\n\t\t\t       futex_lock_pi_atomic()\n\t\t\t\t lock_pi_update_atomic()\n\t\t\t\t   cmpxchg(uaddr)\n\t\t\t\t\t*uaddr ^= WAITERS // whatever\n\t\t\t\t   // value changed\n\t\t\t\t return -EAGAIN;\n\t\t\t       wait_for_owner_exiting(-EAGAIN, exiting) // stale\n\t\t\t\t WARN_ON_ONCE(exiting)\n\nFix this by resetting upon retry, essentially aligning it with requeue_pi.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31555",
          "url": "https://www.suse.com/security/cve/CVE-2026-31555"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263178 for CVE-2026-31555",
          "url": "https://bugzilla.suse.com/1263178"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263179 for CVE-2026-31555",
          "url": "https://bugzilla.suse.com/1263179"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31555"
    },
    {
      "cve": "CVE-2026-31592",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31592"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SEV: Protect *all* of sev_mem_enc_register_region() with kvm-\u003elock\n\nTake and hold kvm-\u003elock for before checking sev_guest() in\nsev_mem_enc_register_region(), as sev_guest() isn\u0027t stable unless kvm-\u003elock\nis held (or KVM can guarantee KVM_SEV_INIT{2} has completed and can\u0027t\nrollack state).  If KVM_SEV_INIT{2} fails, KVM can end up trying to add to\na not-yet-initialized sev-\u003eregions_list, e.g. triggering a #GP\n\n  Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI\n  KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\n  CPU: 110 UID: 0 PID: 72717 Comm: syz.15.11462 Tainted: G     U  W  O        6.16.0-smp-DEV #1 NONE\n  Tainted: [U]=USER, [W]=WARN, [O]=OOT_MODULE\n  Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 12.52.0-0 10/28/2024\n  RIP: 0010:sev_mem_enc_register_region+0x3f0/0x4f0 ../include/linux/list.h:83\n  Code: \u003c41\u003e 80 3c 04 00 74 08 4c 89 ff e8 f1 c7 a2 00 49 39 ed 0f 84 c6 00\n  RSP: 0018:ffff88838647fbb8 EFLAGS: 00010256\n  RAX: dffffc0000000000 RBX: 1ffff92015cf1e0b RCX: dffffc0000000000\n  RDX: 0000000000000000 RSI: 0000000000001000 RDI: ffff888367870000\n  RBP: ffffc900ae78f050 R08: ffffea000d9e0007 R09: 1ffffd4001b3c000\n  R10: dffffc0000000000 R11: fffff94001b3c001 R12: 0000000000000000\n  R13: ffff8982ab0bde00 R14: ffffc900ae78f058 R15: 0000000000000000\n  FS:  00007f34e9dc66c0(0000) GS:ffff89ee64d33000(0000) knlGS:0000000000000000\n  CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  CR2: 00007fe180adef98 CR3: 000000047210e000 CR4: 0000000000350ef0\n  Call Trace:\n   \u003cTASK\u003e\n   kvm_arch_vm_ioctl+0xa72/0x1240 ../arch/x86/kvm/x86.c:7371\n   kvm_vm_ioctl+0x649/0x990 ../virt/kvm/kvm_main.c:5363\n   __se_sys_ioctl+0x101/0x170 ../fs/ioctl.c:51\n   do_syscall_x64 ../arch/x86/entry/syscall_64.c:63 [inline]\n   do_syscall_64+0x6f/0x1f0 ../arch/x86/entry/syscall_64.c:94\n   entry_SYSCALL_64_after_hwframe+0x76/0x7e\n  RIP: 0033:0x7f34e9f7e9a9\n  Code: \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48\n  RSP: 002b:00007f34e9dc6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n  RAX: ffffffffffffffda RBX: 00007f34ea1a6080 RCX: 00007f34e9f7e9a9\n  RDX: 0000200000000280 RSI: 000000008010aebb RDI: 0000000000000007\n  RBP: 00007f34ea000d69 R08: 0000000000000000 R09: 0000000000000000\n  R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n  R13: 0000000000000000 R14: 00007f34ea1a6080 R15: 00007ffce77197a8\n   \u003c/TASK\u003e\n\nwith a syzlang reproducer that looks like:\n\n  syz_kvm_add_vcpu$x86(0x0, \u0026(0x7f0000000040)={0x0, \u0026(0x7f0000000180)=ANY=[], 0x70}) (async)\n  syz_kvm_add_vcpu$x86(0x0, \u0026(0x7f0000000080)={0x0, \u0026(0x7f0000000180)=ANY=[@ANYBLOB=\"...\"], 0x4f}) (async)\n  r0 = openat$kvm(0xffffffffffffff9c, \u0026(0x7f0000000200), 0x0, 0x0)\n  r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)\n  r2 = openat$kvm(0xffffffffffffff9c, \u0026(0x7f0000000240), 0x0, 0x0)\n  r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)\n  ioctl$KVM_SET_CLOCK(r3, 0xc008aeba, \u0026(0x7f0000000040)={0x1, 0x8, 0x0, 0x5625e9b0}) (async)\n  ioctl$KVM_SET_PIT2(r3, 0x8010aebb, \u0026(0x7f0000000280)={[...], 0x5}) (async)\n  ioctl$KVM_SET_PIT2(r1, 0x4070aea0, 0x0) (async)\n  r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)\n  openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)\n  ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, \u0026(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, \u0026(0x7f0000001000/0x2000)=nil}) (async)\n  r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)\n  close(r0) (async)\n  openat$kvm(0xffffffffffffff9c, \u0026(0x7f0000000000), 0x8000, 0x0) (async)\n  ioctl$KVM_SET_GUEST_DEBUG(r5, 0x4048ae9b, \u0026(0x7f0000000300)={0x4376ea830d46549b, 0x0, [0x46, 0x0, 0x0, 0x0, 0x0, 0x1000]}) (async)\n  ioctl$KVM_RUN(r5, 0xae80, 0x0)\n\nOpportunistically use guard() to avoid having to define a new error label\nand goto usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31592",
          "url": "https://www.suse.com/security/cve/CVE-2026-31592"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263123 for CVE-2026-31592",
          "url": "https://bugzilla.suse.com/1263123"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31592"
    },
    {
      "cve": "CVE-2026-31664",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31664"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: clear trailing padding in build_polexpire()\n\nbuild_expire() clears the trailing padding bytes of struct\nxfrm_user_expire after setting the hard field via memset_after(),\nbut the analogous function build_polexpire() does not do this for\nstruct xfrm_user_polexpire.\n\nThe padding bytes after the __u8 hard field are left\nuninitialized from the heap allocation, and are then sent to\nuserspace via netlink multicast to XFRMNLGRP_EXPIRE listeners,\nleaking kernel heap memory contents.\n\nAdd the missing memset_after() call, matching build_expire().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31664",
          "url": "https://www.suse.com/security/cve/CVE-2026-31664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263578 for CVE-2026-31664",
          "url": "https://bugzilla.suse.com/1263578"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31664"
    },
    {
      "cve": "CVE-2026-31665",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31665"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_ct: fix use-after-free in timeout object destroy\n\nnft_ct_timeout_obj_destroy() frees the timeout object with kfree()\nimmediately after nf_ct_untimeout(), without waiting for an RCU grace\nperiod. Concurrent packet processing on other CPUs may still hold\nRCU-protected references to the timeout object obtained via\nrcu_dereference() in nf_ct_timeout_data().\n\nAdd an rcu_head to struct nf_ct_timeout and use kfree_rcu() to defer\nfreeing until after an RCU grace period, matching the approach already\nused in nfnetlink_cttimeout.c.\n\nKASAN report:\n BUG: KASAN: slab-use-after-free in nf_conntrack_tcp_packet+0x1381/0x29d0\n Read of size 4 at addr ffff8881035fe19c by task exploit/80\n\n Call Trace:\n  nf_conntrack_tcp_packet+0x1381/0x29d0\n  nf_conntrack_in+0x612/0x8b0\n  nf_hook_slow+0x70/0x100\n  __ip_local_out+0x1b2/0x210\n  tcp_sendmsg_locked+0x722/0x1580\n  __sys_sendto+0x2d8/0x320\n\n Allocated by task 75:\n  nft_ct_timeout_obj_init+0xf6/0x290\n  nft_obj_init+0x107/0x1b0\n  nf_tables_newobj+0x680/0x9c0\n  nfnetlink_rcv_batch+0xc29/0xe00\n\n Freed by task 26:\n  nft_obj_destroy+0x3f/0xa0\n  nf_tables_trans_destroy_work+0x51c/0x5c0\n  process_one_work+0x2c4/0x5a0",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31665",
          "url": "https://www.suse.com/security/cve/CVE-2026-31665"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263137 for CVE-2026-31665",
          "url": "https://bugzilla.suse.com/1263137"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31665"
    },
    {
      "cve": "CVE-2026-31674",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31674"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check()\n\nReject rt match rules whose addrnr exceeds IP6T_RT_HOPS.\n\nrt_mt6() expects addrnr to stay within the bounds of rtinfo-\u003eaddrs[].\nValidate addrnr during rule installation so malformed rules are rejected\nbefore the match logic can use an out-of-range value.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31674",
          "url": "https://www.suse.com/security/cve/CVE-2026-31674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263568 for CVE-2026-31674",
          "url": "https://bugzilla.suse.com/1263568"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31674"
    },
    {
      "cve": "CVE-2026-31680",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31680"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipv6: flowlabel: defer exclusive option free until RCU teardown\n\n`ip6fl_seq_show()` walks the global flowlabel hash under the seq-file\nRCU read-side lock and prints `fl-\u003eopt-\u003eopt_nflen` when an option block\nis present.\n\nExclusive flowlabels currently free `fl-\u003eopt` as soon as `fl-\u003eusers`\ndrops to zero in `fl_release()`. However, the surrounding\n`struct ip6_flowlabel` remains visible in the global hash table until\nlater garbage collection removes it and `fl_free_rcu()` finally tears it\ndown.\n\nA concurrent `/proc/net/ip6_flowlabel` reader can therefore race that\nearly `kfree()` and dereference freed option state, triggering a crash\nin `ip6fl_seq_show()`.\n\nFix this by keeping `fl-\u003eopt` alive until `fl_free_rcu()`. That matches\nthe lifetime already required for the enclosing flowlabel while readers\ncan still reach it under RCU.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31680",
          "url": "https://www.suse.com/security/cve/CVE-2026-31680"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263563 for CVE-2026-31680",
          "url": "https://bugzilla.suse.com/1263563"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31680"
    },
    {
      "cve": "CVE-2026-31693",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31693"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: some missing initializations on replay\n\nIn several places in the code, we have a label to signify\nthe start of the code where a request can be replayed if\nnecessary. However, some of these places were missing the\nnecessary reinitializations of certain local variables\nbefore replay.\n\nThis change makes sure that these variables get initialized\nafter the label.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31693",
          "url": "https://www.suse.com/security/cve/CVE-2026-31693"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267744 for CVE-2026-31693",
          "url": "https://bugzilla.suse.com/1267744"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31693"
    },
    {
      "cve": "CVE-2026-31697",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31697"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: ccp: Don\u0027t attempt to copy ID to userspace if PSP command failed\n\nWhen retrieving the ID for the CPU, don\u0027t attempt to copy the ID blob to\nuserspace if the firmware command failed.  If the failure was due to an\ninvalid length, i.e. the userspace buffer+length was too small, copying\nthe number of bytes _firmware_ requires will overflow the kernel-allocated\nbuffer and leak data to userspace.\n\n  BUG: KASAN: slab-out-of-bounds in instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n  BUG: KASAN: slab-out-of-bounds in _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n  BUG: KASAN: slab-out-of-bounds in _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n  Read of size 64 at addr ffff8881867f5960 by task syz.0.906/24388\n\n  CPU: 130 UID: 0 PID: 24388 Comm: syz.0.906 Tainted: G     U     O        7.0.0-smp-DEV #28 PREEMPTLAZY\n  Tainted: [U]=USER, [O]=OOT_MODULE\n  Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 12.62.0-0 11/19/2025\n  Call Trace:\n   \u003cTASK\u003e\n   dump_stack_lvl+0xc5/0x110 ../lib/dump_stack.c:120\n   print_address_description ../mm/kasan/report.c:378 [inline]\n   print_report+0xbc/0x260 ../mm/kasan/report.c:482\n   kasan_report+0xa2/0xe0 ../mm/kasan/report.c:595\n   check_region_inline ../mm/kasan/generic.c:-1 [inline]\n   kasan_check_range+0x264/0x2c0 ../mm/kasan/generic.c:200\n   instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n   _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n   _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n   copy_to_user ../include/linux/uaccess.h:236 [inline]\n   sev_ioctl_do_get_id2+0x361/0x490 ../drivers/crypto/ccp/sev-dev.c:2222\n   sev_ioctl+0x25f/0x490 ../drivers/crypto/ccp/sev-dev.c:2575\n   vfs_ioctl ../fs/ioctl.c:51 [inline]\n   __do_sys_ioctl ../fs/ioctl.c:597 [inline]\n   __se_sys_ioctl+0x11d/0x1b0 ../fs/ioctl.c:583\n   do_syscall_x64 ../arch/x86/entry/syscall_64.c:63 [inline]\n   do_syscall_64+0xe0/0x800 ../arch/x86/entry/syscall_64.c:94\n   entry_SYSCALL_64_after_hwframe+0x76/0x7e\n   \u003c/TASK\u003e\n\nWARN if the driver says the command succeeded, but the firmware error code\nsays otherwise, as __sev_do_cmd_locked() is expected to return -EIO on any\nfirwmware error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31697",
          "url": "https://www.suse.com/security/cve/CVE-2026-31697"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264116 for CVE-2026-31697",
          "url": "https://bugzilla.suse.com/1264116"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264144 for CVE-2026-31697",
          "url": "https://bugzilla.suse.com/1264144"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31697"
    },
    {
      "cve": "CVE-2026-31698",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31698"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: ccp: Don\u0027t attempt to copy PDH cert to userspace if PSP command failed\n\nWhen retrieving the PDH cert, don\u0027t attempt to copy the blobs to userspace\nif the firmware command failed.  If the failure was due to an invalid\nlength, i.e. the userspace buffer+length was too small, copying the number\nof bytes _firmware_ requires will overflow the kernel-allocated buffer and\nleak data to userspace.\n\n  BUG: KASAN: slab-out-of-bounds in instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n  BUG: KASAN: slab-out-of-bounds in _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n  BUG: KASAN: slab-out-of-bounds in _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n  Read of size 2084 at addr ffff8885c4ab8aa0 by task syz.0.186/21033\n\n  CPU: 51 UID: 0 PID: 21033 Comm: syz.0.186 Tainted: G     U     O        7.0.0-smp-DEV #28 PREEMPTLAZY\n  Tainted: [U]=USER, [O]=OOT_MODULE\n  Hardware name: Google, Inc.                                                       Arcadia_IT_80/Arcadia_IT_80, BIOS 34.84.12-0 11/17/2025\n  Call Trace:\n   \u003cTASK\u003e\n   dump_stack_lvl+0xc5/0x110 ../lib/dump_stack.c:120\n   print_address_description ../mm/kasan/report.c:378 [inline]\n   print_report+0xbc/0x260 ../mm/kasan/report.c:482\n   kasan_report+0xa2/0xe0 ../mm/kasan/report.c:595\n   check_region_inline ../mm/kasan/generic.c:-1 [inline]\n   kasan_check_range+0x264/0x2c0 ../mm/kasan/generic.c:200\n   instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n   _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n   _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n   copy_to_user ../include/linux/uaccess.h:236 [inline]\n   sev_ioctl_do_pdh_export+0x3d3/0x7c0 ../drivers/crypto/ccp/sev-dev.c:2347\n   sev_ioctl+0x2a2/0x490 ../drivers/crypto/ccp/sev-dev.c:2568\n   vfs_ioctl ../fs/ioctl.c:51 [inline]\n   __do_sys_ioctl ../fs/ioctl.c:597 [inline]\n   __se_sys_ioctl+0x11d/0x1b0 ../fs/ioctl.c:583\n   do_syscall_x64 ../arch/x86/entry/syscall_64.c:63 [inline]\n   do_syscall_64+0xe0/0x800 ../arch/x86/entry/syscall_64.c:94\n   entry_SYSCALL_64_after_hwframe+0x76/0x7e\n   \u003c/TASK\u003e\n\nWARN if the driver says the command succeeded, but the firmware error code\nsays otherwise, as __sev_do_cmd_locked() is expected to return -EIO on any\nfirwmware error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31698",
          "url": "https://www.suse.com/security/cve/CVE-2026-31698"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263880 for CVE-2026-31698",
          "url": "https://bugzilla.suse.com/1263880"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263929 for CVE-2026-31698",
          "url": "https://bugzilla.suse.com/1263929"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31698"
    },
    {
      "cve": "CVE-2026-31699",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31699"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: ccp: Don\u0027t attempt to copy CSR to userspace if PSP command failed\n\nWhen retrieving the PEK CSR, don\u0027t attempt to copy the blob to userspace\nif the firmware command failed.  If the failure was due to an invalid\nlength, i.e. the userspace buffer+length was too small, copying the number\nof bytes _firmware_ requires will overflow the kernel-allocated buffer and\nleak data to userspace.\n\n  BUG: KASAN: slab-out-of-bounds in instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n  BUG: KASAN: slab-out-of-bounds in _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n  BUG: KASAN: slab-out-of-bounds in _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n  Read of size 2084 at addr ffff898144612e20 by task syz.9.219/21405\n\n  CPU: 14 UID: 0 PID: 21405 Comm: syz.9.219 Tainted: G     U     O        7.0.0-smp-DEV #28 PREEMPTLAZY\n  Tainted: [U]=USER, [O]=OOT_MODULE\n  Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 12.62.0-0 11/19/2025\n  Call Trace:\n   \u003cTASK\u003e\n   dump_stack_lvl+0xc5/0x110 ../lib/dump_stack.c:120\n   print_address_description ../mm/kasan/report.c:378 [inline]\n   print_report+0xbc/0x260 ../mm/kasan/report.c:482\n   kasan_report+0xa2/0xe0 ../mm/kasan/report.c:595\n   check_region_inline ../mm/kasan/generic.c:-1 [inline]\n   kasan_check_range+0x264/0x2c0 ../mm/kasan/generic.c:200\n   instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n   _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n   _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n   copy_to_user ../include/linux/uaccess.h:236 [inline]\n   sev_ioctl_do_pek_csr+0x31f/0x590 ../drivers/crypto/ccp/sev-dev.c:1872\n   sev_ioctl+0x3a4/0x490 ../drivers/crypto/ccp/sev-dev.c:2562\n   vfs_ioctl ../fs/ioctl.c:51 [inline]\n   __do_sys_ioctl ../fs/ioctl.c:597 [inline]\n   __se_sys_ioctl+0x11d/0x1b0 ../fs/ioctl.c:583\n   do_syscall_x64 ../arch/x86/entry/syscall_64.c:63 [inline]\n   do_syscall_64+0xe0/0x800 ../arch/x86/entry/syscall_64.c:94\n   entry_SYSCALL_64_after_hwframe+0x76/0x7e\n   \u003c/TASK\u003e\n\nWARN if the driver says the command succeeded, but the firmware error code\nsays otherwise, as __sev_do_cmd_locked() is expected to return -EIO on any\nfirwmware error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31699",
          "url": "https://www.suse.com/security/cve/CVE-2026-31699"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263879 for CVE-2026-31699",
          "url": "https://bugzilla.suse.com/1263879"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263928 for CVE-2026-31699",
          "url": "https://bugzilla.suse.com/1263928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31699"
    },
    {
      "cve": "CVE-2026-31752",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31752"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbridge: br_nd_send: validate ND option lengths\n\nbr_nd_send() walks ND options according to option-provided lengths.\nA malformed option can make the parser advance beyond the computed\noption span or use a too-short source LLADDR option payload.\n\nValidate option lengths against the remaining NS option area before\nadvancing, and only read source LLADDR when the option is large enough\nfor an Ethernet address.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31752",
          "url": "https://www.suse.com/security/cve/CVE-2026-31752"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264045 for CVE-2026-31752",
          "url": "https://bugzilla.suse.com/1264045"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-31752"
    },
    {
      "cve": "CVE-2026-31759",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31759"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: ulpi: fix double free in ulpi_register_interface() error path\n\nWhen device_register() fails, ulpi_register() calls put_device() on\nulpi-\u003edev.\n\nThe device release callback ulpi_dev_release() drops the OF node\nreference and frees ulpi, but the current error path in\nulpi_register_interface() then calls kfree(ulpi) again, causing a\ndouble free.\n\nLet put_device() handle the cleanup through ulpi_dev_release() and\navoid freeing ulpi again in ulpi_register_interface().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31759",
          "url": "https://www.suse.com/security/cve/CVE-2026-31759"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264076 for CVE-2026-31759",
          "url": "https://bugzilla.suse.com/1264076"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264078 for CVE-2026-31759",
          "url": "https://bugzilla.suse.com/1264078"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-31759"
    },
    {
      "cve": "CVE-2026-31771",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-31771"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: move wake reason storage into validated event handlers\n\nhci_store_wake_reason() is called from hci_event_packet() immediately\nafter stripping the HCI event header but before hci_event_func()\nenforces the per-event minimum payload length from hci_ev_table.\nThis means a short HCI event frame can reach bacpy() before any bounds\ncheck runs.\n\nRather than duplicating skb parsing and per-event length checks inside\nhci_store_wake_reason(), move wake-address storage into the individual\nevent handlers after their existing event-length validation has\nsucceeded. Convert hci_store_wake_reason() into a small helper that only\nstores an already-validated bdaddr while the caller holds hci_dev_lock().\nUse the same helper after hci_event_func() with a NULL address to\npreserve the existing unexpected-wake fallback semantics when no\nvalidated event handler records a wake address.\n\nAnnotate the helper with __must_hold(\u0026hdev-\u003elock) and add\nlockdep_assert_held(\u0026hdev-\u003elock) so future call paths keep the lock\ncontract explicit.\n\nCall the helper from hci_conn_request_evt(), hci_conn_complete_evt(),\nhci_sync_conn_complete_evt(), le_conn_complete_evt(),\nhci_le_adv_report_evt(), hci_le_ext_adv_report_evt(),\nhci_le_direct_adv_report_evt(), hci_le_pa_sync_established_evt(), and\nhci_le_past_received_evt().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-31771",
          "url": "https://www.suse.com/security/cve/CVE-2026-31771"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264145 for CVE-2026-31771",
          "url": "https://bugzilla.suse.com/1264145"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264146 for CVE-2026-31771",
          "url": "https://bugzilla.suse.com/1264146"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-31771"
    },
    {
      "cve": "CVE-2026-43023",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43023"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: fix race conditions in sco_sock_connect()\n\nsco_sock_connect() checks sk_state and sk_type without holding\nthe socket lock. Two concurrent connect() syscalls on the same\nsocket can both pass the check and enter sco_connect(), leading\nto use-after-free.\n\nThe buggy scenario involves three participants and was confirmed\nwith additional logging instrumentation:\n\n  Thread A (connect):    HCI disconnect:      Thread B (connect):\n\n  sco_sock_connect(sk)                        sco_sock_connect(sk)\n  sk_state==BT_OPEN                           sk_state==BT_OPEN\n  (pass, no lock)                             (pass, no lock)\n  sco_connect(sk):                            sco_connect(sk):\n    hci_dev_lock                                hci_dev_lock\n    hci_connect_sco                               \u003c- blocked\n      -\u003e hcon1\n    sco_conn_add-\u003econn1\n    lock_sock(sk)\n    sco_chan_add:\n      conn1-\u003esk = sk\n      sk-\u003econn = conn1\n    sk_state=BT_CONNECT\n    release_sock\n    hci_dev_unlock\n                           hci_dev_lock\n                           sco_conn_del:\n                             lock_sock(sk)\n                             sco_chan_del:\n                               sk-\u003econn=NULL\n                               conn1-\u003esk=NULL\n                               sk_state=\n                                 BT_CLOSED\n                               SOCK_ZAPPED\n                             release_sock\n                           hci_dev_unlock\n                                                  (unblocked)\n                                                  hci_connect_sco\n                                                    -\u003e hcon2\n                                                  sco_conn_add\n                                                    -\u003e conn2\n                                                  lock_sock(sk)\n                                                  sco_chan_add:\n                                                    sk-\u003econn=conn2\n                                                  sk_state=\n                                                    BT_CONNECT\n                                                  // zombie sk!\n                                                  release_sock\n                                                  hci_dev_unlock\n\nThread B revives a BT_CLOSED + SOCK_ZAPPED socket back to\nBT_CONNECT. Subsequent cleanup triggers double sock_put() and\nuse-after-free. Meanwhile conn1 is leaked as it was orphaned\nwhen sco_conn_del() cleared the association.\n\nFix this by:\n- Moving lock_sock() before the sk_state/sk_type checks in\n  sco_sock_connect() to serialize concurrent connect attempts\n- Fixing the sk_type != SOCK_SEQPACKET check to actually\n  return the error instead of just assigning it\n- Adding a state re-check in sco_connect() after lock_sock()\n  to catch state changes during the window between the locks\n- Adding sco_pi(sk)-\u003econn check in sco_chan_add() to prevent\n  double-attach of a socket to multiple connections\n- Adding hci_conn_drop() on sco_chan_add failure to prevent\n  HCI connection leaks",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43023",
          "url": "https://www.suse.com/security/cve/CVE-2026-43023"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264137 for CVE-2026-43023",
          "url": "https://bugzilla.suse.com/1264137"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264138 for CVE-2026-43023",
          "url": "https://bugzilla.suse.com/1264138"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-43023"
    },
    {
      "cve": "CVE-2026-43024",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43024"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: reject immediate NF_QUEUE verdict\n\nnft_queue is always used from userspace nftables to deliver the NF_QUEUE\nverdict. Immediately emitting an NF_QUEUE verdict is never used by the\nuserspace nft tools, so reject immediate NF_QUEUE verdicts.\n\nThe arp family does not provide queue support, but such an immediate\nverdict is still reachable. Globally reject NF_QUEUE immediate verdicts\nto address this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43024",
          "url": "https://www.suse.com/security/cve/CVE-2026-43024"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263930 for CVE-2026-43024",
          "url": "https://bugzilla.suse.com/1263930"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43024"
    },
    {
      "cve": "CVE-2026-43028",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43028"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: x_tables: ensure names are nul-terminated\n\nReject names that lack a \\0 character before feeding them\nto functions that expect c-strings.\n\nFixes tag is the most recent commit that needs this change.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43028",
          "url": "https://www.suse.com/security/cve/CVE-2026-43028"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263934 for CVE-2026-43028",
          "url": "https://bugzilla.suse.com/1263934"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43028"
    },
    {
      "cve": "CVE-2026-43035",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43035"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: cls_api: fix tc_chain_fill_node to initialize tcm_info to zero to prevent an info-leak\n\nWhen building netlink messages, tc_chain_fill_node() never initializes\nthe tcm_info field of struct tcmsg. Since the allocation is not zeroed,\nkernel heap memory is leaked to userspace through this 4-byte field.\n\nThe fix simply zeroes tcm_info alongside the other fields that are\nalready initialized.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43035",
          "url": "https://www.suse.com/security/cve/CVE-2026-43035"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263996 for CVE-2026-43035",
          "url": "https://bugzilla.suse.com/1263996"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43035"
    },
    {
      "cve": "CVE-2026-43036",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43036"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: use skb_header_pointer() for TCPv4 GSO frag_off check\n\nSyzbot reported a KMSAN uninit-value warning in gso_features_check()\ncalled from netif_skb_features() [1].\n\ngso_features_check() reads iph-\u003efrag_off to decide whether to clear\nmangleid_features. Accessing the IPv4 header via ip_hdr()/inner_ip_hdr()\ncan rely on skb header offsets that are not always safe for direct\ndereference on packets injected from PF_PACKET paths.\n\nUse skb_header_pointer() for the TCPv4 frag_off check so the header read\nis robust whether data is already linear or needs copying.\n\n[1] https://syzkaller.appspot.com/bug?extid=1543a7d954d9c6d00407",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43036",
          "url": "https://www.suse.com/security/cve/CVE-2026-43036"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263993 for CVE-2026-43036",
          "url": "https://bugzilla.suse.com/1263993"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43036"
    },
    {
      "cve": "CVE-2026-43049",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43049"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: logitech-hidpp: Prevent use-after-free on force feedback initialisation failure\n\nPresently, if the force feedback initialisation fails when probing the\nLogitech G920 Driving Force Racing Wheel for Xbox One, an error number\nwill be returned and propagated before the userspace infrastructure\n(sysfs and /dev/input) has been torn down.  If userspace ignores the\nerrors and continues to use its references to these dangling entities, a\nUAF will promptly follow.\n\nWe have 2 options; continue to return the error, but ensure that all of\nthe infrastructure is torn down accordingly or continue to treat this\ncondition as a warning by emitting the message but returning success.\nIt is thought that the original author\u0027s intention was to emit the\nwarning but keep the device functional, less the force feedback feature,\nso let\u0027s go with that.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43049",
          "url": "https://www.suse.com/security/cve/CVE-2026-43049"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264080 for CVE-2026-43049",
          "url": "https://bugzilla.suse.com/1264080"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43049"
    },
    {
      "cve": "CVE-2026-43053",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43053"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: close crash window in attr dabtree inactivation\n\nWhen inactivating an inode with node-format extended attributes,\nxfs_attr3_node_inactive() invalidates all child leaf/node blocks via\nxfs_trans_binval(), but intentionally does not remove the corresponding\nentries from their parent node blocks.  The implicit assumption is that\nxfs_attr_inactive() will truncate the entire attr fork to zero extents\nafterwards, so log recovery will never reach the root node and follow\nthose stale pointers.\n\nHowever, if a log shutdown occurs after the leaf/node block cancellations\ncommit but before the attr bmap truncation commits, this assumption\nbreaks.  Recovery replays the attr bmap intact (the inode still has\nattr fork extents), but suppresses replay of all cancelled leaf/node\nblocks, maybe leaving them as stale data on disk.  On the next mount,\nxlog_recover_process_iunlinks() retries inactivation and attempts to\nread the root node via the attr bmap. If the root node was not replayed,\nreading the unreplayed root block triggers a metadata verification\nfailure immediately; if it was replayed, following its child pointers\nto unreplayed child blocks triggers the same failure:\n\n XFS (pmem0): Metadata corruption detected at\n xfs_da3_node_read_verify+0x53/0x220, xfs_da3_node block 0x78\n XFS (pmem0): Unmount and run xfs_repair\n XFS (pmem0): First 128 bytes of corrupted metadata buffer:\n 00000000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n 00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n XFS (pmem0): metadata I/O error in \"xfs_da_read_buf+0x104/0x190\" at daddr 0x78 len 8 error 117\n\nFix this in two places:\n\nIn xfs_attr3_node_inactive(), after calling xfs_trans_binval() on a\nchild block, immediately remove the entry that references it from the\nparent node in the same transaction.  This eliminates the window where\nthe parent holds a pointer to a cancelled block.  Once all children are\nremoved, the now-empty root node is converted to a leaf block within the\nsame transaction. This node-to-leaf conversion is necessary for crash\nsafety. If the system shutdown after the empty node is written to the\nlog but before the second-phase bmap truncation commits, log recovery\nwill attempt to verify the root block on disk. xfs_da3_node_verify()\ndoes not permit a node block with count == 0; such a block will fail\nverification and trigger a metadata corruption shutdown. on the other\nhand, leaf blocks are allowed to have this transient state.\n\nIn xfs_attr_inactive(), split the attr fork truncation into two explicit\nphases.  First, truncate all extents beyond the root block (the child\nextents whose parent references have already been removed above).\nSecond, invalidate the root block and truncate the attr bmap to zero in\na single transaction.  The two operations in the second phase must be\natomic: as long as the attr bmap has any non-zero length, recovery can\nfollow it to the root block, so the root block invalidation must commit\ntogether with the bmap-to-zero truncation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43053",
          "url": "https://www.suse.com/security/cve/CVE-2026-43053"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264084 for CVE-2026-43053",
          "url": "https://bugzilla.suse.com/1264084"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43053"
    },
    {
      "cve": "CVE-2026-43074",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43074"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\neventpoll: defer struct eventpoll free to RCU grace period\n\nIn certain situations, ep_free() in eventpoll.c will kfree the epi-\u003eep\neventpoll struct while it still being used by another concurrent thread.\nDefer the kfree() to an RCU callback to prevent UAF.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43074",
          "url": "https://www.suse.com/security/cve/CVE-2026-43074"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264263 for CVE-2026-43074",
          "url": "https://bugzilla.suse.com/1264263"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1265307 for CVE-2026-43074",
          "url": "https://bugzilla.suse.com/1265307"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-43074"
    },
    {
      "cve": "CVE-2026-43077",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43077"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: algif_aead - Fix minimum RX size check for decryption\n\nThe check for the minimum receive buffer size did not take the\ntag size into account during decryption.  Fix this by adding the\nrequired extra length.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43077",
          "url": "https://www.suse.com/security/cve/CVE-2026-43077"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264470 for CVE-2026-43077",
          "url": "https://bugzilla.suse.com/1264470"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1265306 for CVE-2026-43077",
          "url": "https://bugzilla.suse.com/1265306"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-43077"
    },
    {
      "cve": "CVE-2026-43083",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43083"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ioam6: fix OOB and missing lock\n\nWhen trace-\u003etype.bit6 is set:\n\n    if (trace-\u003etype.bit6) {\n        ...\n        queue = skb_get_tx_queue(dev, skb);\n        qdisc = rcu_dereference(queue-\u003eqdisc);\n\nThis code can lead to an out-of-bounds access of the dev-\u003e_tx[] array\nwhen is_input is true. In such a case, the packet is on the RX path and\nskb-\u003equeue_mapping contains the RX queue index of the ingress device. If\nthe ingress device has more RX queues than the egress device (dev) has\nTX queues, skb_get_queue_mapping(skb) will exceed dev-\u003enum_tx_queues.\nAdd a check to avoid this situation since skb_get_tx_queue() does not\nclamp the index. This issue has also revealed that per queue visibility\ncannot be accurate and will be replaced later as a new feature.\n\nWhile at it, add missing lock around qdisc_qstats_qlen_backlog(). The\nfunction __ioam6_fill_trace_data() is called from both softirq and\nprocess contexts, hence the use of spin_lock_bh() here.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43083",
          "url": "https://www.suse.com/security/cve/CVE-2026-43083"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264266 for CVE-2026-43083",
          "url": "https://bugzilla.suse.com/1264266"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43083"
    },
    {
      "cve": "CVE-2026-43101",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43101"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: ioam: fix potential NULL dereferences in __ioam6_fill_trace_data()\n\nWe need to check __in6_dev_get() for possible NULL value, as\nsuggested by Yiming Qian.\n\nAlso add skb_dst_dev_rcu() instead of skb_dst_dev(),\nand two missing READ_ONCE().\n\nNote that @dev can\u0027t be NULL.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43101",
          "url": "https://www.suse.com/security/cve/CVE-2026-43101"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264239 for CVE-2026-43101",
          "url": "https://bugzilla.suse.com/1264239"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43101"
    },
    {
      "cve": "CVE-2026-43112",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43112"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/smb/client: fix out-of-bounds read in cifs_sanitize_prepath\n\nWhen cifs_sanitize_prepath is called with an empty string or a string\ncontaining only delimiters (e.g., \"/\"), the current logic attempts to\ncheck *(cursor2 - 1) before cursor2 has advanced. This results in an\nout-of-bounds read.\n\nThis patch adds an early exit check after stripping prepended\ndelimiters. If no path content remains, the function returns NULL.\n\nThe bug was identified via manual audit and verified using a\nstandalone test case compiled with AddressSanitizer, which\ntriggered a SEGV on affected inputs.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43112",
          "url": "https://www.suse.com/security/cve/CVE-2026-43112"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264437 for CVE-2026-43112",
          "url": "https://bugzilla.suse.com/1264437"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43112"
    },
    {
      "cve": "CVE-2026-43119",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43119"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: annotate data-races around hdev-\u003ereq_status\n\n__hci_cmd_sync_sk() sets hdev-\u003ereq_status under hdev-\u003ereq_lock:\n\n    hdev-\u003ereq_status = HCI_REQ_PEND;\n\nHowever, several other functions read or write hdev-\u003ereq_status without\nholding any lock:\n\n  - hci_send_cmd_sync() reads req_status in hci_cmd_work (workqueue)\n  - hci_cmd_sync_complete() reads/writes from HCI event completion\n  - hci_cmd_sync_cancel() / hci_cmd_sync_cancel_sync() read/write\n  - hci_abort_conn() reads in connection abort path\n\nSince __hci_cmd_sync_sk() runs on hdev-\u003ereq_workqueue while\nhci_send_cmd_sync() runs on hdev-\u003eworkqueue, these are different\nworkqueues that can execute concurrently on different CPUs. The plain\nC accesses constitute a data race.\n\nAdd READ_ONCE()/WRITE_ONCE() annotations on all concurrent accesses\nto hdev-\u003ereq_status to prevent potential compiler optimizations that\ncould affect correctness (e.g., load fusing in the wait_event\ncondition or store reordering).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43119",
          "url": "https://www.suse.com/security/cve/CVE-2026-43119"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264561 for CVE-2026-43119",
          "url": "https://bugzilla.suse.com/1264561"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43119"
    },
    {
      "cve": "CVE-2026-43158",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43158"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix freemap adjustments when adding xattrs to leaf blocks\n\nxfs/592 and xfs/794 both trip this assertion in the leaf block freemap\nadjustment code after ~20 minutes of running on my test VMs:\n\n ASSERT(ichdr-\u003efirstused \u003e= ichdr-\u003ecount * sizeof(xfs_attr_leaf_entry_t)\n\t\t\t\t\t+ xfs_attr3_leaf_hdr_size(leaf));\n\nUpon enabling quite a lot more debugging code, I narrowed this down to\nfsstress trying to set a local extended attribute with namelen=3 and\nvaluelen=71.  This results in an entry size of 80 bytes.\n\nAt the start of xfs_attr3_leaf_add_work, the freemap looks like this:\n\ni 0 base 448 size 0 rhs 448 count 46\ni 1 base 388 size 132 rhs 448 count 46\ni 2 base 2120 size 4 rhs 448 count 46\nfirstused = 520\n\nwhere \"rhs\" is the first byte past the end of the leaf entry array.\nThis is inconsistent -- the entries array ends at byte 448, but\nfreemap[1] says there\u0027s free space starting at byte 388!\n\nBy the end of the function, the freemap is in worse shape:\n\ni 0 base 456 size 0 rhs 456 count 47\ni 1 base 388 size 52 rhs 456 count 47\ni 2 base 2120 size 4 rhs 456 count 47\nfirstused = 440\n\nImportant note: 388 is not aligned with the entries array element size\nof 8 bytes.\n\nBased on the incorrect freemap, the name area starts at byte 440, which\nis below the end of the entries array!  That\u0027s why the assertion\ntriggers and the filesystem shuts down.\n\nHow did we end up here?  First, recall from the previous patch that the\nfreemap array in an xattr leaf block is not intended to be a\ncomprehensive map of all free space in the leaf block.  In other words,\nit\u0027s perfectly legal to have a leaf block with:\n\n * 376 bytes in use by the entries array\n * freemap[0] has [base = 376, size = 8]\n * freemap[1] has [base = 388, size = 1500]\n * the space between 376 and 388 is free, but the freemap stopped\n   tracking that some time ago\n\nIf we add one xattr, the entries array grows to 384 bytes, and\nfreemap[0] becomes [base = 384, size = 0].  So far, so good.  But if we\nadd a second xattr, the entries array grows to 392 bytes, and freemap[0]\ngets pushed up to [base = 392, size = 0].  This is bad, because\nfreemap[1] hasn\u0027t been updated, and now the entries array and the free\nspace claim the same space.\n\nThe fix here is to adjust all freemap entries so that none of them\ncollide with the entries array.  Note that this fix relies on commit\n2a2b5932db6758 (\"xfs: fix attr leaf header freemap.size underflow\") and\nthe previous patch that resets zero length freemap entries to have\nbase = 0.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43158",
          "url": "https://www.suse.com/security/cve/CVE-2026-43158"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264595 for CVE-2026-43158",
          "url": "https://bugzilla.suse.com/1264595"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43158"
    },
    {
      "cve": "CVE-2026-43171",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43171"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEFI/CPER: don\u0027t dump the entire memory region\n\nThe current logic at cper_print_fw_err() doesn\u0027t check if the\nerror record length is big enough to handle offset. On a bad firmware,\nif the ofset is above the actual record, length -= offset will\nunderflow, making it dump the entire memory.\n\nThe end result can be:\n\n - the logic taking a lot of time dumping large regions of memory;\n - data disclosure due to the memory dumps;\n - an OOPS, if it tries to dump an unmapped memory region.\n\nFix it by checking if the section length is too small before doing\na hex dump.\n\n[ rjw: Subject tweaks ]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43171",
          "url": "https://www.suse.com/security/cve/CVE-2026-43171"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264549 for CVE-2026-43171",
          "url": "https://bugzilla.suse.com/1264549"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43171"
    },
    {
      "cve": "CVE-2026-43187",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43187"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: delete attr leaf freemap entries when empty\n\nBack in commit 2a2b5932db6758 (\"xfs: fix attr leaf header freemap.size\nunderflow\"), Brian Foster observed that it\u0027s possible for a small\nfreemap at the end of the end of the xattr entries array to experience\na size underflow when subtracting the space consumed by an expansion of\nthe entries array.  There are only three freemap entries, which means\nthat it is not a complete index of all free space in the leaf block.\n\nThis code can leave behind a zero-length freemap entry with a nonzero\nbase.  Subsequent setxattr operations can increase the base up to the\npoint that it overlaps with another freemap entry.  This isn\u0027t in and of\nitself a problem because the code in _leaf_add that finds free space\nignores any freemap entry with zero size.\n\nHowever, there\u0027s another bug in the freemap update code in _leaf_add,\nwhich is that it fails to update a freemap entry that begins midway\nthrough the xattr entry that was just appended to the array.  That can\nresult in the freemap containing two entries with the same base but\ndifferent sizes (0 for the \"pushed-up\" entry, nonzero for the entry\nthat\u0027s actually tracking free space).  A subsequent _leaf_add can then\nallocate xattr namevalue entries on top of the entries array, leading to\ndata loss.  But fixing that is for later.\n\nFor now, eliminate the possibility of confusion by zeroing out the base\nof any freemap entry that has zero size.  Because the freemap is not\nintended to be a complete index of free space, a subsequent failure to\nfind any free space for a new xattr will trigger block compaction, which\nregenerates the freemap.\n\nIt looks like this bug has been in the codebase for quite a long time.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43187",
          "url": "https://www.suse.com/security/cve/CVE-2026-43187"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264603 for CVE-2026-43187",
          "url": "https://bugzilla.suse.com/1264603"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43187"
    },
    {
      "cve": "CVE-2026-43198",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43198"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntcp: fix potential race in tcp_v6_syn_recv_sock()\n\nCode in tcp_v6_syn_recv_sock() after the call to tcp_v4_syn_recv_sock()\nis done too late.\n\nAfter tcp_v4_syn_recv_sock(), the child socket is already visible\nfrom TCP ehash table and other cpus might use it.\n\nSince newinet-\u003epinet6 is still pointing to the listener ipv6_pinfo\nbad things can happen as syzbot found.\n\nMove the problematic code in tcp_v6_mapped_child_init()\nand call this new helper from tcp_v4_syn_recv_sock() before\nthe ehash insertion.\n\nThis allows the removal of one tcp_sync_mss(), since\ntcp_v4_syn_recv_sock() will call it with the correct\ncontext.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43198",
          "url": "https://www.suse.com/security/cve/CVE-2026-43198"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264610 for CVE-2026-43198",
          "url": "https://bugzilla.suse.com/1264610"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264611 for CVE-2026-43198",
          "url": "https://bugzilla.suse.com/1264611"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-43198"
    },
    {
      "cve": "CVE-2026-43239",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43239"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: prevent races in -\u003equery_interfaces()\n\nIt was possible for two query interface works to be concurrently trying\nto update the interfaces.\n\nPrevent this by checking and updating iface_last_update under\niface_lock.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43239",
          "url": "https://www.suse.com/security/cve/CVE-2026-43239"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264444 for CVE-2026-43239",
          "url": "https://bugzilla.suse.com/1264444"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43239"
    },
    {
      "cve": "CVE-2026-43339",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43339"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: prevent possible UaF in addrconf_permanent_addr()\n\nThe mentioned helper try to warn the user about an exceptional\ncondition, but the message is delivered too late, accessing the ipv6\nafter its possible deletion.\n\nReorder the statement to avoid the possible UaF; while at it, place the\nwarning outside the idev-\u003elock as it needs no protection.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43339",
          "url": "https://www.suse.com/security/cve/CVE-2026-43339"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264763 for CVE-2026-43339",
          "url": "https://bugzilla.suse.com/1264763"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43339"
    },
    {
      "cve": "CVE-2026-43345",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43345"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ipa: fix event ring index not programmed for IPA v5.0+\n\nFor IPA v5.0+, the event ring index field moved from CH_C_CNTXT_0 to\nCH_C_CNTXT_1. The v5.0 register definition intended to define this\nfield in the CH_C_CNTXT_1 fmask array but used the old identifier of\nERINDEX instead of CH_ERINDEX.\n\nWithout a valid event ring, GSI channels could never signal transfer\ncompletions. This caused gsi_channel_trans_quiesce() to block\nforever in wait_for_completion().\n\nAt least for IPA v5.2 this resolves an issue seen where runtime\nsuspend, system suspend, and remoteproc stop all hanged forever. It\nalso meant the IPA data path was completely non functional.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43345",
          "url": "https://www.suse.com/security/cve/CVE-2026-43345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1265103 for CVE-2026-43345",
          "url": "https://bugzilla.suse.com/1265103"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43345"
    },
    {
      "cve": "CVE-2026-43405",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43405"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: Use u32 for non-negative values in ceph_monmap_decode()\n\nThis patch fixes unnecessary implicit conversions that change signedness\nof blob_len and num_mon in ceph_monmap_decode().\nCurrently blob_len and num_mon are (signed) int variables. They are used\nto hold values that are always non-negative and get assigned in\nceph_decode_32_safe(), which is meant to assign u32 values. Both\nvariables are subsequently used as unsigned values, and the value of\nnum_mon is further assigned to monmap-\u003enum_mon, which is of type u32.\nTherefore, both variables should be of type u32. This is especially\nrelevant for num_mon. If the value read from the incoming message is\nvery large, it is interpreted as a negative value, and the check for\nnum_mon \u003e CEPH_MAX_MON does not catch it. This leads to the attempt to\nallocate a very large chunk of memory for monmap, which will most likely\nfail. In this case, an unnecessary attempt to allocate memory is\nperformed, and -ENOMEM is returned instead of -EINVAL.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43405",
          "url": "https://www.suse.com/security/cve/CVE-2026-43405"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1264741 for CVE-2026-43405",
          "url": "https://bugzilla.suse.com/1264741"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43405"
    },
    {
      "cve": "CVE-2026-43469",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43469"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxprtrdma: Decrement re_receiving on the early exit paths\n\nIn the event that rpcrdma_post_recvs() fails to create a work request\n(due to memory allocation failure, say) or otherwise exits early, we\nshould decrement ep-\u003ere_receiving before returning. Otherwise we will\nhang in rpcrdma_xprt_drain() as re_receiving will never reach zero and\nthe completion will never be triggered.\n\nOn a system with high memory pressure, this can appear as the following\nhung task:\n\n    INFO: task kworker/u385:17:8393 blocked for more than 122 seconds.\n          Tainted: G S          E       6.19.0 #3\n    \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n    task:kworker/u385:17 state:D stack:0     pid:8393  tgid:8393  ppid:2      task_flags:0x4248060 flags:0x00080000\n    Workqueue: xprtiod xprt_autoclose [sunrpc]\n    Call Trace:\n     \u003cTASK\u003e\n     __schedule+0x48b/0x18b0\n     ? ib_post_send_mad+0x247/0xae0 [ib_core]\n     schedule+0x27/0xf0\n     schedule_timeout+0x104/0x110\n     __wait_for_common+0x98/0x180\n     ? __pfx_schedule_timeout+0x10/0x10\n     wait_for_completion+0x24/0x40\n     rpcrdma_xprt_disconnect+0x444/0x460 [rpcrdma]\n     xprt_rdma_close+0x12/0x40 [rpcrdma]\n     xprt_autoclose+0x5f/0x120 [sunrpc]\n     process_one_work+0x191/0x3e0\n     worker_thread+0x2e3/0x420\n     ? __pfx_worker_thread+0x10/0x10\n     kthread+0x10d/0x230\n     ? __pfx_kthread+0x10/0x10\n     ret_from_fork+0x273/0x2b0\n     ? __pfx_kthread+0x10/0x10\n     ret_from_fork_asm+0x1a/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43469",
          "url": "https://www.suse.com/security/cve/CVE-2026-43469"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1265143 for CVE-2026-43469",
          "url": "https://bugzilla.suse.com/1265143"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43469"
    },
    {
      "cve": "CVE-2026-43491",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-43491"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: ns: Limit the maximum server registration per node\n\nCurrent code does no bound checking on the number of servers added per\nnode. A malicious client can flood NEW_SERVER messages and exhaust memory.\n\nFix this issue by limiting the maximum number of server registrations to\n256 per node. If the NEW_SERVER message is received for an old port, then\ndon\u0027t restrict it as it will get replaced. While at it, also rate limit\nthe error messages in the failure path of qrtr_ns_worker().\n\nNote that the limit of 256 is chosen based on the current platform\nrequirements. If requirement changes in the future, this limit can be\nincreased.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-43491",
          "url": "https://www.suse.com/security/cve/CVE-2026-43491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1265628 for CVE-2026-43491",
          "url": "https://bugzilla.suse.com/1265628"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-43491"
    },
    {
      "cve": "CVE-2026-45840",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45840"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nopenvswitch: cap upcall PID array size and pre-size vport replies\n\nThe vport netlink reply helpers allocate a fixed-size skb with\nnlmsg_new(NLMSG_DEFAULT_SIZE, ...) but serialize the full upcall PID\narray via ovs_vport_get_upcall_portids().  Since\novs_vport_set_upcall_portids() accepts any non-zero multiple of\nsizeof(u32) with no upper bound, a CAP_NET_ADMIN user can install a PID\narray large enough to overflow the reply buffer, causing nla_put() to\nfail with -EMSGSIZE and hitting BUG_ON(err \u003c 0).  On systems with\nunprivileged user namespaces enabled (e.g., Ubuntu default), this is\nreachable via unshare -Urn since OVS vport mutation operations use\nGENL_UNS_ADMIN_PERM.\n\n kernel BUG at net/openvswitch/datapath.c:2414!\n Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI\n CPU: 1 UID: 0 PID: 65 Comm: poc Not tainted 7.0.0-rc7-00195-geb216e422044 #1\n RIP: 0010:ovs_vport_cmd_set+0x34c/0x400\n Call Trace:\n  \u003cTASK\u003e\n  genl_family_rcv_msg_doit (net/netlink/genetlink.c:1116)\n  genl_rcv_msg (net/netlink/genetlink.c:1194)\n  netlink_rcv_skb (net/netlink/af_netlink.c:2550)\n  genl_rcv (net/netlink/genetlink.c:1219)\n  netlink_unicast (net/netlink/af_netlink.c:1344)\n  netlink_sendmsg (net/netlink/af_netlink.c:1894)\n  __sys_sendto (net/socket.c:2206)\n  __x64_sys_sendto (net/socket.c:2209)\n  do_syscall_64 (arch/x86/entry/syscall_64.c:63)\n  entry_SYSCALL_64_after_hwframe (arch/x86/entry/entry_64.S:130)\n  \u003c/TASK\u003e\n Kernel panic - not syncing: Fatal exception\n\nReject attempts to set more PIDs than nr_cpu_ids in\novs_vport_set_upcall_portids(), and pre-compute the worst-case reply\nsize in ovs_vport_cmd_msg_size() based on that bound, similar to the\nexisting ovs_dp_cmd_msg_size().  nr_cpu_ids matches the cap already\nused by the per-CPU dispatch configuration on the datapath side\n(ovs_dp_cmd_fill_info() serialises at most nr_cpu_ids PIDs), so the\ntwo sides stay consistent.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45840",
          "url": "https://www.suse.com/security/cve/CVE-2026-45840"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266397 for CVE-2026-45840",
          "url": "https://bugzilla.suse.com/1266397"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45840"
    },
    {
      "cve": "CVE-2026-45841",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45841"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO\n\nnf_osf_match_one() computes ctx-\u003ewindow % f-\u003ewss.val in the\nOSF_WSS_MODULO branch with no guard for f-\u003ewss.val == 0. A\nCAP_NET_ADMIN user can add such a fingerprint via nfnetlink; a\nsubsequent matching TCP SYN divides by zero and panics the kernel.\n\nReject the bogus fingerprint in nfnl_osf_add_callback() above the\nper-option for-loop. f-\u003ewss is per-fingerprint, not per-option, so\nthe check must run regardless of f-\u003eopt_num (including 0). Also\nreject wss.wc \u003e= OSF_WSS_MAX; nf_osf_match_one() already treats that\nas \"should not happen\".\n\nCrash:\n Oops: divide error: 0000 [#1] SMP KASAN NOPTI\n RIP: 0010:nf_osf_match_one (net/netfilter/nfnetlink_osf.c:98)\n Call Trace:\n \u003cIRQ\u003e\n  nf_osf_match (net/netfilter/nfnetlink_osf.c:220)\n  xt_osf_match_packet (net/netfilter/xt_osf.c:32)\n  ipt_do_table (net/ipv4/netfilter/ip_tables.c:348)\n  nf_hook_slow (net/netfilter/core.c:622)\n  ip_local_deliver (net/ipv4/ip_input.c:265)\n  ip_rcv (include/linux/skbuff.h:1162)\n  __netif_receive_skb_one_core (net/core/dev.c:6181)\n  process_backlog (net/core/dev.c:6642)\n  __napi_poll (net/core/dev.c:7710)\n  net_rx_action (net/core/dev.c:7945)\n  handle_softirqs (kernel/softirq.c:622)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45841",
          "url": "https://www.suse.com/security/cve/CVE-2026-45841"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266390 for CVE-2026-45841",
          "url": "https://bugzilla.suse.com/1266390"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45841"
    },
    {
      "cve": "CVE-2026-45862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Flush cache for PASID table before using it\n\nWhen writing the address of a freshly allocated zero-initialized PASID\ntable to a PASID directory entry, do that after the CPU cache flush for\nthis PASID table, not before it, to avoid the time window when this\nPASID table may be already used by non-coherent IOMMU hardware while\nits contents in RAM is still some random old data, not zero-initialized.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45862",
          "url": "https://www.suse.com/security/cve/CVE-2026-45862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266705 for CVE-2026-45862",
          "url": "https://bugzilla.suse.com/1266705"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45862"
    },
    {
      "cve": "CVE-2026-45870",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45870"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: auth_gss: fix memory leaks in XDR decoding error paths\n\nThe gssx_dec_ctx(), gssx_dec_status(), and gssx_dec_name()\nfunctions allocate memory via gssx_dec_buffer(), which calls\nkmemdup(). When a subsequent decode operation fails, these\nfunctions return immediately without freeing previously\nallocated buffers, causing memory leaks.\n\nThe leak in gssx_dec_ctx() is particularly relevant because\nthe caller (gssp_accept_sec_context_upcall) initializes several\nbuffer length fields to non-zero values, resulting in memory\nallocation:\n\n    struct gssx_ctx rctxh = {\n        .exported_context_token.len = GSSX_max_output_handle_sz,\n        .mech.len = GSS_OID_MAX_LEN,\n        .src_name.display_name.len = GSSX_max_princ_sz,\n        .targ_name.display_name.len = GSSX_max_princ_sz\n    };\n\nIf, for example, gssx_dec_name() succeeds for src_name but\nfails for targ_name, the memory allocated for\nexported_context_token, mech, and src_name.display_name\nremains unreferenced and cannot be reclaimed.\n\nAdd error handling with goto-based cleanup to free any\npreviously allocated buffers before returning an error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45870",
          "url": "https://www.suse.com/security/cve/CVE-2026-45870"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266704 for CVE-2026-45870",
          "url": "https://bugzilla.suse.com/1266704"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45870"
    },
    {
      "cve": "CVE-2026-45894",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45894"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Clear Present bit before tearing down PASID entry\n\nThe Intel VT-d Scalable Mode PASID table entry consists of 512 bits (64\nbytes). When tearing down an entry, the current implementation zeros the\nentire 64-byte structure immediately using multiple 64-bit writes.\n\nSince the IOMMU hardware may fetch these 64 bytes using multiple\ninternal transactions (e.g., four 128-bit bursts), updating or zeroing\nthe entire entry while it is active (P=1) risks a \"torn\" read. If a\nhardware fetch occurs simultaneously with the CPU zeroing the entry, the\nhardware could observe an inconsistent state, leading to unpredictable\nbehavior or spurious faults.\n\nFollow the \"Guidance to Software for Invalidations\" in the VT-d spec\n(Section 6.5.3.3) by implementing the recommended ownership handshake:\n\n1. Clear only the \u0027Present\u0027 (P) bit of the PASID entry.\n2. Use a dma_wmb() to ensure the cleared bit is visible to hardware\n   before proceeding.\n3. Execute the required invalidation sequence (PASID cache, IOTLB, and\n   Device-TLB flush) to ensure the hardware has released all cached\n   references.\n4. Only after the flushes are complete, zero out the remaining fields\n   of the PASID entry.\n\nAlso, add a dma_wmb() in pasid_set_present() to ensure that all other\nfields of the PASID entry are visible to the hardware before the Present\nbit is set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45894",
          "url": "https://www.suse.com/security/cve/CVE-2026-45894"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266895 for CVE-2026-45894",
          "url": "https://bugzilla.suse.com/1266895"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45894"
    },
    {
      "cve": "CVE-2026-45940",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45940"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: fix oops when split header is enabled\n\nFor GMAC4, when split header is enabled, in some rare cases, the\nhardware does not fill buf2 of the first descriptor with payload.\nThus we cannot assume buf2 is always fully filled if it is not\nthe last descriptor. Otherwise, the length of buf2 of the second\ndescriptor will be calculated wrong and cause an oops:\n\nUnable to handle kernel paging request at virtual address ffff00019246bfc0\n...\nx2 : 0000000000000040 x1 : ffff00019246bfc0 x0 : ffff00009246c000\nCall trace:\n dcache_inval_poc+0x28/0x58 (P)\n dma_direct_sync_single_for_cpu+0x38/0x6c\n __dma_sync_single_for_cpu+0x34/0x6c\n stmmac_napi_poll_rx+0x8f0/0xb60\n __napi_poll.constprop.0+0x30/0x144\n net_rx_action+0x160/0x274\n handle_softirqs+0x1b8/0x1fc\n...\n\nTo fix this, the PL bit-field in RDES3 register is used for all\ndescriptors, whether it is the last descriptor or not.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45940",
          "url": "https://www.suse.com/security/cve/CVE-2026-45940"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266916 for CVE-2026-45940",
          "url": "https://bugzilla.suse.com/1266916"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45940"
    },
    {
      "cve": "CVE-2026-45961",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45961"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: fix memory leaks in gfs2_fill_super error path\n\nFix two memory leaks in the gfs2_fill_super() error handling path when\ntransitioning a filesystem to read-write mode fails.\n\nFirst leak: kthread objects (thread_struct, task_struct, etc.)\nWhen gfs2_freeze_lock_shared() fails after init_threads() succeeds, the\ncreated kernel threads (logd and quotad) are never destroyed. This\noccurs because the fail_per_node label doesn\u0027t call\ngfs2_destroy_threads().\n\nSecond leak: quota bitmap buffer (8192 bytes)\nWhen gfs2_make_fs_rw() fails after gfs2_quota_init() succeeds but\nbefore other operations complete, the allocated quota bitmap is never\nfreed.\n\nThe fix moves thread cleanup to the fail_per_node label to handle all\nerror paths uniformly. gfs2_destroy_threads() is safe to call\nunconditionally as it checks for NULL pointers. Quota cleanup is added\nin gfs2_make_fs_rw() to properly handle the withdrawal case where\nquota initialization succeeds but the filesystem is then withdrawn.\n\nThread leak backtrace (gfs2_freeze_lock_shared failure):\n  unreferenced object 0xffff88801d7bca80 (size 4480):\n    copy_process+0x3a1/0x4670 kernel/fork.c:2422\n    kernel_clone+0xf3/0x6e0 kernel/fork.c:2779\n    kthread_create_on_node+0x100/0x150 kernel/kthread.c:478\n    init_threads+0xab/0x350 fs/gfs2/ops_fstype.c:611\n    gfs2_fill_super+0xe5c/0x1240 fs/gfs2/ops_fstype.c:1265\n\nQuota leak backtrace (gfs2_make_fs_rw failure):\n  unreferenced object 0xffff88812de7c000 (size 8192):\n    gfs2_quota_init+0xe5/0x820 fs/gfs2/quota.c:1409\n    gfs2_make_fs_rw+0x7a/0xe0 fs/gfs2/super.c:149\n    gfs2_fill_super+0xfbb/0x1240 fs/gfs2/ops_fstype.c:1275",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45961",
          "url": "https://www.suse.com/security/cve/CVE-2026-45961"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266933 for CVE-2026-45961",
          "url": "https://bugzilla.suse.com/1266933"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "low"
        }
      ],
      "title": "CVE-2026-45961"
    },
    {
      "cve": "CVE-2026-45964",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45964"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSUNRPC: fix gss_auth kref leak in gss_alloc_msg error path\n\nCommit 5940d1cf9f42 (\"SUNRPC: Rebalance a kref in auth_gss.c\") added\na kref_get(\u0026gss_auth-\u003ekref) call to balance the gss_put_auth() done\nin gss_release_msg(), but forgot to add a corresponding kref_put()\non the error path when kstrdup_const() fails.\n\nIf service_name is non-NULL and kstrdup_const() fails, the function\njumps to err_put_pipe_version which calls put_pipe_version() and\nkfree(gss_msg), but never releases the gss_auth reference. This leads\nto a kref leak where the gss_auth structure is never freed.\n\nAdd a forward declaration for gss_free_callback() and call kref_put()\nin the err_put_pipe_version error path to properly release the\nreference taken earlier.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45964",
          "url": "https://www.suse.com/security/cve/CVE-2026-45964"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266698 for CVE-2026-45964",
          "url": "https://bugzilla.suse.com/1266698"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45964"
    },
    {
      "cve": "CVE-2026-45965",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45965"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: fix invalid deref of rawdata when export_binary is unset\n\nIf the export_binary parameter is disabled on runtime, profiles that\nwere loaded before that will still have their rawdata stored in\napparmorfs, with a symbolic link to the rawdata on the policy\ndirectory. When one of those profiles are replaced, the rawdata is set\nto NULL, but when trying to resolve the symbolic links to rawdata for\nthat profile, it will try to dereference profile-\u003erawdata-\u003ename when\nprofile-\u003erawdata is now NULL causing an oops. Fix it by checking if\nrawdata is set.\n\n[  168.653080] BUG: kernel NULL pointer dereference, address: 0000000000000088\n[  168.657420] #PF: supervisor read access in kernel mode\n[  168.660619] #PF: error_code(0x0000) - not-present page\n[  168.663613] PGD 0 P4D 0\n[  168.665450] Oops: Oops: 0000 [#1] SMP NOPTI\n[  168.667836] CPU: 1 UID: 0 PID: 1729 Comm: ls Not tainted 6.19.0-rc7+ #3 PREEMPT(voluntary)\n[  168.672308] Hardware name: QEMU Ubuntu 24.04 PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014\n[  168.679327] RIP: 0010:rawdata_get_link_base.isra.0+0x23/0x330\n[  168.682768] Code: 90 90 90 90 90 90 90 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 18 48 89 55 d0 48 85 ff 0f 84 e3 01 00 00 \u003c48\u003e 83 3c 25 88 00 00 00 00 0f 84 d4 01 00 00 49 89 f6 49 89 cc e8\n[  168.689818] RSP: 0018:ffffcdcb8200fb80 EFLAGS: 00010282\n[  168.690871] RAX: ffffffffaee74ec0 RBX: 0000000000000000 RCX: ffffffffb0120158\n[  168.692251] RDX: ffffcdcb8200fbe0 RSI: ffff88c187c9fa80 RDI: ffff88c186c98a80\n[  168.693593] RBP: ffffcdcb8200fbc0 R08: 0000000000000000 R09: 0000000000000000\n[  168.694941] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88c186c98a80\n[  168.696289] R13: 00007fff005aaa20 R14: 0000000000000080 R15: ffff88c188f4fce0\n[  168.697637] FS:  0000790e81c58280(0000) GS:ffff88c20a957000(0000) knlGS:0000000000000000\n[  168.699227] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  168.700349] CR2: 0000000000000088 CR3: 000000012fd3e000 CR4: 0000000000350ef0\n[  168.701696] Call Trace:\n[  168.702325]  \u003cTASK\u003e\n[  168.702995]  rawdata_get_link_data+0x1c/0x30\n[  168.704145]  vfs_readlink+0xd4/0x160\n[  168.705152]  do_readlinkat+0x114/0x180\n[  168.706214]  __x64_sys_readlink+0x1e/0x30\n[  168.708653]  x64_sys_call+0x1d77/0x26b0\n[  168.709525]  do_syscall_64+0x81/0x500\n[  168.710348]  ? do_statx+0x72/0xb0\n[  168.711109]  ? putname+0x3e/0x80\n[  168.711845]  ? __x64_sys_statx+0xb7/0x100\n[  168.712711]  ? x64_sys_call+0x10fc/0x26b0\n[  168.713577]  ? do_syscall_64+0xbf/0x500\n[  168.714412]  ? do_user_addr_fault+0x1d2/0x8d0\n[  168.715404]  ? irqentry_exit+0xb2/0x740\n[  168.716359]  ? exc_page_fault+0x90/0x1b0\n[  168.717307]  entry_SYSCALL_64_after_hwframe+0x76/0x7e",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45965",
          "url": "https://www.suse.com/security/cve/CVE-2026-45965"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267208 for CVE-2026-45965",
          "url": "https://bugzilla.suse.com/1267208"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45965"
    },
    {
      "cve": "CVE-2026-45974",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-45974"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix invalid leaf access in btrfs_quota_enable() if ref key not found\n\nIf btrfs_search_slot_for_read() returns 1, it means we did not find any\nkey greater than or equals to the key we asked for, meaning we have\nreached the end of the tree and therefore the path is not valid. If\nthis happens we need to break out of the loop and stop, instead of\ncontinuing and accessing an invalid path.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-45974",
          "url": "https://www.suse.com/security/cve/CVE-2026-45974"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266922 for CVE-2026-45974",
          "url": "https://bugzilla.suse.com/1266922"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-45974"
    },
    {
      "cve": "CVE-2026-46005",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46005"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix a resource leak in xfs_alloc_buftarg()\n\nIn the error path, call fs_put_dax() to drop the DAX\ndevice reference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46005",
          "url": "https://www.suse.com/security/cve/CVE-2026-46005"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267431 for CVE-2026-46005",
          "url": "https://bugzilla.suse.com/1267431"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46005"
    },
    {
      "cve": "CVE-2026-46037",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46037"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv4: icmp: validate reply type before using icmp_pointers\n\nExtended echo replies use ICMP_EXT_ECHOREPLY as the outbound reply type.\nThat value is outside the range covered by icmp_pointers[], which only\ndescribes the traditional ICMP types up to NR_ICMP_TYPES.\n\nAvoid consulting icmp_pointers[] for reply types outside that range, and\nuse array_index_nospec() for the remaining in-range lookup. Normal ICMP\nreplies keep their existing behavior unchanged.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46037",
          "url": "https://www.suse.com/security/cve/CVE-2026-46037"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267361 for CVE-2026-46037",
          "url": "https://bugzilla.suse.com/1267361"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267362 for CVE-2026-46037",
          "url": "https://bugzilla.suse.com/1267362"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-46037"
    },
    {
      "cve": "CVE-2026-46101",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46101"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: reject zero shift in nft_bitwise\n\nReject zero shift operands for nft_bitwise left and right shift\nexpressions during initialization.\n\nThe carry propagation logic computes the carry from the adjacent 32-bit\nword using BITS_PER_TYPE(u32) - shift. A zero shift operand turns this\ninto a 32-bit shift, which is undefined behaviour.\n\nReject zero shift operands in the control plane, alongside the existing\ncheck for values greater than or equal to 32, so malformed rules never\nreach the packet path.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46101",
          "url": "https://www.suse.com/security/cve/CVE-2026-46101"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266878 for CVE-2026-46101",
          "url": "https://bugzilla.suse.com/1266878"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46101"
    },
    {
      "cve": "CVE-2026-46119",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46119"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: Fix slab-out-of-bounds access in auth message processing\n\nIf a (potentially corrupted) message of type CEPH_MSG_AUTH_REPLY\ncontains a positive value in its result field, it is treated as an\nerror code by ceph_handle_auth_reply() and returned to\nhandle_auth_reply(). Thereafter, an attempt is made to send the\npreallocated message of type CEPH_MSG_AUTH, where the returned value is\ninterpreted as the size of the front segment to send. If the result\nvalue in the message is greater than the size of the memory buffer\nallocated for the front segment, an out-of-bounds access occurs, and\nthe content of the memory region beyond this buffer is sent out.\n\nThis patch fixes the issue by treating only negative values in the\nresult field as errors. Positive values are therefore treated as success\nin the same way as a zero value. Additionally, a BUG_ON is added to\n__send_prepared_auth_request() comparing the len parameter to\nfront_alloc_len to prevent sending the message if it exceeds the bounds\nof the allocation and to make it easier to catch any logic flaws leading\nto this.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46119",
          "url": "https://www.suse.com/security/cve/CVE-2026-46119"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267628 for CVE-2026-46119",
          "url": "https://bugzilla.suse.com/1267628"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267894 for CVE-2026-46119",
          "url": "https://bugzilla.suse.com/1267894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46119"
    },
    {
      "cve": "CVE-2026-46120",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46120"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nip6_gre: Use cached t-\u003enet in ip6erspan_changelink().\n\nAfter commit 5e72ce3e3980 (\"net: ipv6: Use link netns in newlink() of\nrtnl_link_ops\"), ip6erspan_newlink() correctly resolves the per-netns\nip6gre hash via link_net. ip6erspan_changelink() was not converted in\nthat series and still uses dev_net(dev), which diverges from the\ndevice\u0027s creation netns after IFLA_NET_NS_FD migration.\n\nThis re-inserts the tunnel into the wrong per-netns hash. The\noriginal netns keeps a stale entry. When that netns is later\ndestroyed, ip6gre_exit_rtnl_net() walks the stale entry, producing a\nslab-use-after-free reported by KASAN, followed by a kernel BUG at\nnet/core/dev.c (LIST_POISON1) in unregister_netdevice_many_notify().\n\nReachable from an unprivileged user namespace (unshare --user\n--map-root-user --net).\n\nip6gre_changelink() earlier in the same file already uses the cached\nt-\u003enet; only ip6erspan_changelink() has the wrong shape.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46120",
          "url": "https://www.suse.com/security/cve/CVE-2026-46120"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267640 for CVE-2026-46120",
          "url": "https://bugzilla.suse.com/1267640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267893 for CVE-2026-46120",
          "url": "https://bugzilla.suse.com/1267893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-46120"
    },
    {
      "cve": "CVE-2026-46123",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46123"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: virtio_bt: clamp rx length before skb_put\n\nvirtbt_rx_work() calls skb_put(skb, len) where len comes directly\nfrom virtqueue_get_buf() with no validation against the buffer we\nposted to the device. The RX skb is allocated in virtbt_add_inbuf()\nand exposed to virtio as exactly 1000 bytes via sg_init_one().\n\nChecking len against skb_tailroom(skb) is not sufficient because\nalloc_skb() can leave more tailroom than the 1000 bytes actually\nhanded to the device. A malicious or buggy backend can therefore\nreport used.len between 1001 and skb_tailroom(skb), causing skb_put()\nto include uninitialized kernel heap bytes that were never written by\nthe device.\n\nThe same path also accepts len == 0, in which case skb_put(skb, 0)\nleaves the skb empty but virtbt_rx_handle() still reads the pkt_type\nbyte from skb-\u003edata, consuming uninitialized memory.\n\nDefine VIRTBT_RX_BUF_SIZE once and reuse it in alloc_skb() and\nsg_init_one(), and gate virtbt_rx_work() on that same constant so\nthe bound checked matches the buffer actually exposed to the device.\nReject used.len == 0 in the same gate so an empty completion can\nno longer reach virtbt_rx_handle().\n\nUse bt_dev_err_ratelimited() because the length value comes from an\nuntrusted backend that can otherwise flood the kernel log.\n\nSame class of bug as commit c04db81cd028 (\"net/9p: Fix buffer\noverflow in USB transport layer\"), which hardened the USB 9p\ntransport against unchecked device-reported length.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46123",
          "url": "https://www.suse.com/security/cve/CVE-2026-46123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267621 for CVE-2026-46123",
          "url": "https://bugzilla.suse.com/1267621"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267622 for CVE-2026-46123",
          "url": "https://bugzilla.suse.com/1267622"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-46123"
    },
    {
      "cve": "CVE-2026-46150",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46150"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfanotify: fix false positive on permission events\n\nfsnotify_get_mark_safe() may return false for a mark on an unrelated group,\nwhich results in bypassing the permission check.\n\nFix by skipping over detached marks that are not in the current group.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46150",
          "url": "https://www.suse.com/security/cve/CVE-2026-46150"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267387 for CVE-2026-46150",
          "url": "https://bugzilla.suse.com/1267387"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267388 for CVE-2026-46150",
          "url": "https://bugzilla.suse.com/1267388"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-46150"
    },
    {
      "cve": "CVE-2026-46160",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46160"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix missing last_unlink_trans update when removing a directory\n\nWhen removing a directory we are not updating its last_unlink_trans field,\nwhich can result in incorrect fsync behaviour in case some one fsyncs the\ndirectory after it was removed because it\u0027s holding a file descriptor on\nit.\n\nExample scenario:\n\n   mkdir /mnt/dir1\n   mkdir /mnt/dir1/dir2\n   mkdir /mnt/dir3\n\n   sync -f /mnt\n\n   # Do some change to the directory and fsync it.\n   chmod 700 /mnt/dir1\n   xfs_io -c fsync /mnt/dir1\n\n   # Move dir2 out of dir1 so that dir1 becomes empty.\n   mv /mnt/dir1/dir2 /mnt/dir3/\n\n   open fd on /mnt/dir1\n   call rmdir(2) on path \"/mnt/dir1\"\n   fsync fd\n\n   \u003ctrigger power failure\u003e\n\nWhen attempting to mount the filesystem, the log replay will fail with\nan -EIO error and dmesg/syslog has the following:\n\n   [445771.626482] BTRFS info (device dm-0): first mount of filesystem 0368bbea-6c5e-44b5-b409-09abe496e650\n   [445771.626486] BTRFS info (device dm-0): using crc32c checksum algorithm\n   [445771.627912] BTRFS info (device dm-0): start tree-log replay\n   [445771.628335] page: refcount:2 mapcount:0 mapping:0000000061443ddc index:0x1d00 pfn:0x7072a5\n   [445771.629453] memcg:ffff89f400351b00\n   [445771.629892] aops:btree_aops [btrfs] ino:1\n   [445771.630737] flags: 0x17fffc00000402a(uptodate|lru|private|writeback|node=0|zone=2|lastcpupid=0x1ffff)\n   [445771.632359] raw: 017fffc00000402a fffff47284d950c8 fffff472907b7c08 ffff89f458e412b8\n   [445771.633713] raw: 0000000000001d00 ffff89f6c51d1a90 00000002ffffffff ffff89f400351b00\n   [445771.635029] page dumped because: eb page dump\n   [445771.635825] BTRFS critical (device dm-0): corrupt leaf: root=5 block=30408704 slot=10 ino=258, invalid nlink: has 2 expect no more than 1 for dir\n   [445771.638088] BTRFS info (device dm-0): leaf 30408704 gen 10 total ptrs 17 free space 14878 owner 5\n   [445771.638091] BTRFS info (device dm-0): refs 4 lock_owner 0 current 3581087\n   [445771.638094] \titem 0 key (256 INODE_ITEM 0) itemoff 16123 itemsize 160\n   [445771.638097] \t\tinode generation 3 transid 9 size 16 nbytes 16384\n   [445771.638098] \t\tblock group 0 mode 40755 links 1 uid 0 gid 0\n   [445771.638100] \t\trdev 0 sequence 2 flags 0x0\n   [445771.638102] \t\tatime 1775744884.0\n   [445771.660056] \t\tctime 1775744885.645502983\n   [445771.660058] \t\tmtime 1775744885.645502983\n   [445771.660060] \t\totime 1775744884.0\n   [445771.660062] \titem 1 key (256 INODE_REF 256) itemoff 16111 itemsize 12\n   [445771.660064] \t\tindex 0 name_len 2\n   [445771.660066] \titem 2 key (256 DIR_ITEM 1843588421) itemoff 16077 itemsize 34\n   [445771.660068] \t\tlocation key (259 1 0) type 2\n   [445771.660070] \t\ttransid 9 data_len 0 name_len 4\n   [445771.660075] \titem 3 key (256 DIR_ITEM 2363071922) itemoff 16043 itemsize 34\n   [445771.660076] \t\tlocation key (257 1 0) type 2\n   [445771.660077] \t\ttransid 9 data_len 0 name_len 4\n   [445771.660078] \titem 4 key (256 DIR_INDEX 2) itemoff 16009 itemsize 34\n   [445771.660079] \t\tlocation key (257 1 0) type 2\n   [445771.660080] \t\ttransid 9 data_len 0 name_len 4\n   [445771.660081] \titem 5 key (256 DIR_INDEX 3) itemoff 15975 itemsize 34\n   [445771.660082] \t\tlocation key (259 1 0) type 2\n   [445771.660083] \t\ttransid 9 data_len 0 name_len 4\n   [445771.660084] \titem 6 key (257 INODE_ITEM 0) itemoff 15815 itemsize 160\n   [445771.660086] \t\tinode generation 9 transid 9 size 8 nbytes 0\n   [445771.660087] \t\tblock group 0 mode 40777 links 1 uid 0 gid 0\n   [445771.660088] \t\trdev 0 sequence 2 flags 0x0\n   [445771.660089] \t\tatime 1775744885.641174097\n   [445771.660090] \t\tctime 1775744885.645502983\n   [445771.660091] \t\tmtime 1775744885.645502983\n   [445771.660105] \t\totime 1775744885.641174097\n   [445771.660106] \titem 7 key (257 INODE_REF 256) itemoff 15801 itemsize 14\n   [445771.660107] \t\tindex 2 name_len 4\n   [445771.660108] \titem 8 key (257 DIR_ITEM 2676584006) itemoff 15767 itemsize 34\n   [445771.660109] \t\tlocation key (2\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46160",
          "url": "https://www.suse.com/security/cve/CVE-2026-46160"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267624 for CVE-2026-46160",
          "url": "https://bugzilla.suse.com/1267624"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46160"
    },
    {
      "cve": "CVE-2026-46172",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46172"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: xfrm6: release dst on error in xfrm6_rcv_encap()\n\nxfrm6_rcv_encap() performs an IPv6 route lookup when the skb does not\nalready have a dst attached. ip6_route_input_lookup() returns a\nreferenced dst entry even when the lookup resolves to an error route.\n\nIf dst-\u003eerror is set, xfrm6_rcv_encap() drops the skb without attaching\nthe dst to the skb and without releasing the reference returned by the\nlookup. Repeated packets hitting this path therefore leak dst entries.\n\nRelease the dst before jumping to the drop path.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46172",
          "url": "https://www.suse.com/security/cve/CVE-2026-46172"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1266903 for CVE-2026-46172",
          "url": "https://bugzilla.suse.com/1266903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46172"
    },
    {
      "cve": "CVE-2026-46197",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46197"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: validate SVM ioctl nattr against buffer size\n\nValidate nattr field against the buffer size, preventing\nout-of-bounds buffer access via user-controlled attribute count.\n\n(cherry picked from commit 5eca8bfdfa456c3304ca77523718fe24254c172f)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46197",
          "url": "https://www.suse.com/security/cve/CVE-2026-46197"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267381 for CVE-2026-46197",
          "url": "https://bugzilla.suse.com/1267381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267382 for CVE-2026-46197",
          "url": "https://bugzilla.suse.com/1267382"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-46197"
    },
    {
      "cve": "CVE-2026-46227",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46227"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL\n\nThe SCTP_SENDALL path in sctp_sendmsg() iterates ep-\u003easocs with\nlist_for_each_entry_safe(), which caches the next entry in @tmp before\nthe loop body runs.  The body calls sctp_sendmsg_to_asoc(), which may\ndrop the socket lock inside sctp_wait_for_sndbuf().\n\nWhile the lock is dropped, another thread can SCTP_SOCKOPT_PEELOFF the\nassociation cached in @tmp, migrating it to a new endpoint via\nsctp_sock_migrate() (list_del_init() + list_add_tail() to\nnewep-\u003easocs), and optionally close the new socket which frees the\nassociation via kfree_rcu().  The cached @tmp can also be freed by a\nnetwork ABORT for that association, processed in softirq while the\nlock is dropped.\n\nsctp_wait_for_sndbuf() revalidates @asoc (the current entry) on re-lock\nvia the \"sk != asoc-\u003ebase.sk\" and \"asoc-\u003ebase.dead\" checks, but nothing\nrevalidates @tmp.  After a successful return, the iterator advances to\nthe stale @tmp, yielding either a use-after-free (if the peeled socket\nwas closed) or a list-walk onto the new endpoint\u0027s list head (type\nconfusion of \u0026newep-\u003easocs as a struct sctp_association *).\n\nBoth are reachable from CapEff=0; the type-confusion path gives\ncontrolled indirect call via the outqueue.sched-\u003einit_sid pointer.\n\nFix by re-deriving @tmp from @asoc after sctp_sendmsg_to_asoc()\nreturns.  @asoc is known to still be on ep-\u003easocs at that point: the\nonly callers that list_del an association from ep-\u003easocs are\nsctp_association_free() (which sets asoc-\u003ebase.dead) and\nsctp_assoc_migrate() (which changes asoc-\u003ebase.sk), and\nsctp_wait_for_sndbuf() checks both under the lock before any\nsuccessful return; a tripped check propagates as err \u003c 0 and the loop\nbails before the re-derive.\n\nThe SCTP_ABORT path in sctp_sendmsg_check_sflags() returns 0 and the\nloop hits \u0027continue\u0027 before sctp_sendmsg_to_asoc() is ever called, so\nthe @tmp cached by list_for_each_entry_safe() still covers the\nlock-held free that ba59fb027307 (\"sctp: walk the list of asoc\nsafely\") was added for.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46227",
          "url": "https://www.suse.com/security/cve/CVE-2026-46227"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267697 for CVE-2026-46227",
          "url": "https://bugzilla.suse.com/1267697"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267698 for CVE-2026-46227",
          "url": "https://bugzilla.suse.com/1267698"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-46227"
    },
    {
      "cve": "CVE-2026-46244",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46244"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_inner: Fix IPv6 inner_thoff desync\n\nIn nft_inner_parse_l2l3(), when processing inner IPv6 packets,\nipv6_find_hdr() correctly computes the transport header offset\ntraversing all extension headers, but the result is immediately\noverwritten with nhoff + sizeof(_ip6h) (40 bytes), which only\naccounts for the IPv6 base header. This creates a desync between\ninner_thoff (wrong - points to extension header start) and l4proto\n(correct - e.g., IPPROTO_TCP), enabling transport header forgery\nand potential firewall bypass. This issue affects stable versions\nfrom Linux 6.2.\n\nFor comparison, the normal (non-inner) IPv6 path correctly\npreserves ipv6_find_hdr()\u0027s result. Removing the incorrect overwrite\nensures that ipv6_find_hdr()\u0027s calculated transport header offset is\npreserved, thereby fixing the desynchronization.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46244",
          "url": "https://www.suse.com/security/cve/CVE-2026-46244"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267654 for CVE-2026-46244",
          "url": "https://bugzilla.suse.com/1267654"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46244"
    },
    {
      "cve": "CVE-2026-46259",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46259"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nprocfs: fix missing RCU protection when reading real_parent in do_task_stat()\n\nWhen reading /proc/[pid]/stat, do_task_stat() accesses task-\u003ereal_parent\nwithout proper RCU protection, which leads to:\n\n  cpu 0                               cpu 1\n  -----                               -----\n  do_task_stat\n    var = task-\u003ereal_parent\n                                      release_task\n                                        call_rcu(delayed_put_task_struct)\n    task_tgid_nr_ns(var)\n      rcu_read_lock   \u003c--- Too late to protect task-\u003ereal_parent!\n      task_pid_ptr    \u003c--- UAF!\n      rcu_read_unlock\n\nThis patch uses task_ppid_nr_ns() instead of task_tgid_nr_ns() to add\nproper RCU protection for accessing task-\u003ereal_parent.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46259",
          "url": "https://www.suse.com/security/cve/CVE-2026-46259"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267685 for CVE-2026-46259",
          "url": "https://bugzilla.suse.com/1267685"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46259"
    },
    {
      "cve": "CVE-2026-46273",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-46273"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nibmveth: Disable GSO for packets with small MSS\n\nSome physical adapters on Power systems do not support segmentation\noffload when the MSS is less than 224 bytes. Attempting to send such\npackets causes the adapter to freeze, stopping all traffic until\nmanually reset.\n\nImplement ndo_features_check to disable GSO for packets with small MSS\nvalues. The network stack will perform software segmentation instead.\n\nThe 224-byte minimum matches ibmvnic\ncommit \u003cf10b09ef687f\u003e (\"ibmvnic: Enforce stronger sanity checks\non GSO packets\")\nwhich uses the same physical adapters in SEA configurations.\n\nThe issue occurs specifically when the hardware attempts to perform\nsegmentation (gso_segs \u003e 1) with a small MSS. Single-segment GSO packets\n(gso_segs == 1) do not trigger the problematic LSO code path and are\ntransmitted normally without segmentation.\n\nAdd an ndo_features_check callback to disable GSO when MSS \u003c 224 bytes.\nAlso call vlan_features_check() to ensure proper handling of VLAN packets,\nparticularly QinQ (802.1ad) configurations where the hardware parser may\nnot support certain offload features.\n\nValidated using iptables to force small MSS values. Without the fix,\nthe adapter freezes. With the fix, packets are segmented in software\nand transmission succeeds. Comprehensive regression testing completedd\n(MSS tests, performance, stability).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
          "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
          "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
          "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
          "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-46273",
          "url": "https://www.suse.com/security/cve/CVE-2026-46273"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1267651 for CVE-2026-46273",
          "url": "https://bugzilla.suse.com/1267651"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.aarch64",
            "SUSE Linux Micro 6.0:kernel-default-base-6.4.0-48.1.21.25.x86_64",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.s390x",
            "SUSE Linux Micro 6.0:kernel-default-livepatch-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-devel-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-kvmsmall-6.4.0-48.1.x86_64",
            "SUSE Linux Micro 6.0:kernel-macros-6.4.0-48.1.noarch",
            "SUSE Linux Micro 6.0:kernel-source-6.4.0-48.1.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-06-30T23:09:03Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2026-46273"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Loading…

Detection rules are retrieved from Rulezet.

Loading…

Loading…