Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-54518 (GCVE-0-2025-54518)
Vulnerability from cvelistv5 – Published: 2026-05-15 03:06 – Updated: 2026-05-16 03:56
VLAI?
EPSS
Summary
Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.
Severity ?
CWE
- CWE-1189 - Improper Isolation of Shared Resources on System-on-a-Chip (SoC)
Assigner
References
1 reference
Impacted products
15 products
Date Public ?
2026-05-15 03:05
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2026-05-15T03:09:03.940Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2026/05/12/15"
},
{
"url": "http://xenbits.xen.org/xsa/advisory-490.html"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-54518",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-15T00:00:00+00:00",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-16T03:56:02.809Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "affected",
"product": "AMD EPYC\u2122 7002 Series Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "os kernel"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 4000 Series Mobile Processors with Radeon\u2122 Graphics",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "RenoirPI-FP6_1.0.0.Ed"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 7020 Series Processors with Radeon\u2122 Graphics",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "MendocinoPI-FT6_1.0.0.7f"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 3000 Series Desktop Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "ComboAM4v2 1.2.0.10"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 Threadripper\u2122 PRO 3000 WX-Series Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "ChagallWSPI-sWRX8-1.0.0.D"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 7030 Series Mobile Processors with Radeon\u2122 Graphics",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "CezannePI-FP6_1.0.1.1d"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 Threadripper\u2122 PRO 3000 WX-Series Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "CastlePeakWSPI-sWRX8 1.0.0.I"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "CezannePI-FP6_1.0.1.1d"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "CezannePI-FP6_1.0.1.1d"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 4000 Series Desktop Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "ComboAM4v2 1.2.0.10"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 5000 Series Desktop Processors with Radeon\u2122 Graphics",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "ComboAM4v2 1.2.0.10"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 3000 Series Desktop Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "ComboAM4PI 1.0.0.10"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD EPYC\u2122 Embedded 7002 Series Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "OS kernel"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen Embedded V2000A Series Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "EmbeddedV2KAPI-FP6 1.0.0.A"
}
]
},
{
"defaultStatus": "affected",
"product": "AMD Ryzen\u2122 Embedded V2000 Series Processors",
"vendor": "AMD",
"versions": [
{
"status": "unaffected",
"version": "EmbeddedPI-FP6_1.0.0.D"
}
]
}
],
"datePublic": "2026-05-15T03:05:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.\u003cbr\u003e"
}
],
"value": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation."
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"exploitMaturity": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-1189",
"description": "CWE-1189 Improper Isolation of Shared Resources on System-on-a-Chip (SoC)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-15T03:06:57.446Z",
"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
"shortName": "AMD"
},
"references": [
{
"url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7052.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"x_generator": {
"engine": "AMD PSIRT Automation 1.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
"assignerShortName": "AMD",
"cveId": "CVE-2025-54518",
"datePublished": "2026-05-15T03:06:30.822Z",
"dateReserved": "2025-07-23T15:01:52.883Z",
"dateUpdated": "2026-05-16T03:56:02.809Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-54518",
"date": "2026-05-21",
"epss": "0.00014",
"percentile": "0.02891"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-54518\",\"sourceIdentifier\":\"psirt@amd.com\",\"published\":\"2026-05-15T05:16:33.013\",\"lastModified\":\"2026-05-15T14:10:17.083\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"psirt@amd.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":7.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"psirt@amd.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-1189\"}]}],\"references\":[{\"url\":\"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7052.html\",\"source\":\"psirt@amd.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2026/05/12/15\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://xenbits.xen.org/xsa/advisory-490.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.openwall.com/lists/oss-security/2026/05/12/15\"}, {\"url\": \"http://xenbits.xen.org/xsa/advisory-490.html\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2026-05-15T03:09:03.940Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-54518\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-15T11:11:06.413554Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-15T11:11:18.332Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 7.3, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N\", \"exploitMaturity\": \"NOT_DEFINED\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"HIGH\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"AMD\", \"product\": \"AMD EPYC\\u2122 7002 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"os kernel\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 4000 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"RenoirPI-FP6_1.0.0.Ed\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7020 Series Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"MendocinoPI-FT6_1.0.0.7f\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 3000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM4v2 1.2.0.10\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Threadripper\\u2122 PRO 3000 WX-Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ChagallWSPI-sWRX8-1.0.0.D\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7030 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"CezannePI-FP6_1.0.1.1d\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Threadripper\\u2122 PRO 3000 WX-Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"CastlePeakWSPI-sWRX8 1.0.0.I\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 5000 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"CezannePI-FP6_1.0.1.1d\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 5000 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"CezannePI-FP6_1.0.1.1d\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 4000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM4v2 1.2.0.10\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 5000 Series Desktop Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM4v2 1.2.0.10\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 3000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM4PI 1.0.0.10\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD EPYC\\u2122 Embedded 7002 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"OS kernel\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen Embedded V2000A Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"EmbeddedV2KAPI-FP6 1.0.0.A\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Embedded V2000 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"EmbeddedPI-FP6_1.0.0.D\"}], \"defaultStatus\": \"affected\"}], \"datePublic\": \"2026-05-15T03:05:00.000Z\", \"references\": [{\"url\": \"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7052.html\"}], \"x_generator\": {\"engine\": \"AMD PSIRT Automation 1.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-1189\", \"description\": \"CWE-1189 Improper Isolation of Shared Resources on System-on-a-Chip (SoC)\"}]}], \"providerMetadata\": {\"orgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"shortName\": \"AMD\", \"dateUpdated\": \"2026-05-15T03:06:57.446Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-54518\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-16T03:56:02.809Z\", \"dateReserved\": \"2025-07-23T15:01:52.883Z\", \"assignerOrgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"datePublished\": \"2026-05-15T03:06:30.822Z\", \"assignerShortName\": \"AMD\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
CERTFR-2026-AVI-0579
Vulnerability from certfr_avis - Published: 2026-05-13 - Updated: 2026-05-13
Une vulnérabilité a été découverte dans Xen. Elle permet à un attaquant de provoquer une élévation de privilèges.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| XEN | Xen | Xen versions 4.21.x sans le correctif de sécurité xsa490-4.21.patch | ||
| XEN | Xen | Xen versions 4.17.x sans le correctif de sécurité xsa490-4.17-1.patch ou xsa490-4.17-2.patch | ||
| XEN | Xen | Xen versions 4.18.x sans le correctif de sécurité xsa490-4.21.patch | ||
| XEN | Xen | Xen versions xen-unstable sans le correctif de sécurité xsa490.patch |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Xen versions 4.21.x sans le correctif de s\u00e9curit\u00e9 xsa490-4.21.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.17.x sans le correctif de s\u00e9curit\u00e9 xsa490-4.17-1.patch ou xsa490-4.17-2.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions 4.18.x sans le correctif de s\u00e9curit\u00e9 xsa490-4.21.patch",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
},
{
"description": "Xen versions xen-unstable sans le correctif de s\u00e9curit\u00e9 xsa490.patch ",
"product": {
"name": "Xen",
"vendor": {
"name": "XEN",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-54518",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54518"
}
],
"initial_release_date": "2026-05-13T00:00:00",
"last_revision_date": "2026-05-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0579",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-05-13T00:00:00.000000"
}
],
"risks": [
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Xen. Elle permet \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges.",
"title": "Vuln\u00e9rabilit\u00e9 dans Xen",
"vendor_advisories": [
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Xen xsa/advisory-490",
"url": "https://xenbits.xen.org/xsa/advisory-490.html"
}
]
}
CERTFR-2026-AVI-0585
Vulnerability from certfr_avis - Published: 2026-05-13 - Updated: 2026-05-13
De multiples vulnérabilités ont été découvertes dans Microsoft Windows. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Microsoft | N/A | Windows Server 2012 R2 versions antérieures à 6.3.9600.23181 | ||
| Microsoft | N/A | Windows 10 Version 22H2 pour systèmes x64 versions antérieures à 10.0.19045.7291 | ||
| Microsoft | N/A | Windows 10 Version 22H2 pour systèmes 32 bits versions antérieures à 10.0.19045.7291 | ||
| Microsoft | N/A | Windows Admin Center in Azure Portal versions antérieures à 2.6.7 | ||
| Microsoft | N/A | Windows 11 Version 24H2 pour systèmes x64 versions antérieures à 10.0.26100.8390 | ||
| Microsoft | N/A | Windows Admin Center versions antérieures à 2.6.5.16 | ||
| Microsoft | N/A | Windows 11 Version 23H2 pour systèmes ARM64 versions antérieures à 10.0.22631.7079 | ||
| Microsoft | N/A | Windows 10 Version 1607 pour systèmes x64 versions antérieures à 10.0.14393.9140 | ||
| Microsoft | N/A | Windows Server 2019 (Server Core installation) versions antérieures à 10.0.17763.8755 | ||
| Microsoft | N/A | Windows 10 Version 21H2 pour systèmes ARM64 versions antérieures à 10.0.19044.7291 | ||
| Microsoft | N/A | Windows 10 Version 22H2 pour systèmes ARM64 versions antérieures à 10.0.19045.7291 | ||
| Microsoft | N/A | Windows 10 Version 1607 pour systèmes 32 bits versions antérieures à 10.0.14393.9140 | ||
| Microsoft | N/A | Windows 10 Version 21H2 pour systèmes x64 versions antérieures à 10.0.19044.7291 | ||
| Microsoft | N/A | Windows 10 Version 21H2 pour systèmes 32 bits versions antérieures à 10.0.19044.7291 | ||
| Microsoft | N/A | Windows 11 Version 26H1 pour systèmes x64 versions antérieures à 10.0.28000.2113 | ||
| Microsoft | N/A | Windows Server 2016 versions antérieures à 10.0.14393.9140 | ||
| Microsoft | N/A | Windows Server 2019 versions antérieures à 10.0.17763.8755 | ||
| Microsoft | N/A | Windows 11 Version 25H2 pour systèmes ARM64 versions antérieures à 10.0.26200.8457 | ||
| Microsoft | N/A | Windows 11 Version 23H2 pour systèmes x64 versions antérieures à 10.0.22631.7079 | ||
| Microsoft | N/A | Windows 11 Version 26H1 pour systèmes ARM64 versions antérieures à 10.0.28000.2113 | ||
| Microsoft | N/A | Windows Server 2022 (Server Core installation) versions antérieures à 10.0.20348.5139 | ||
| Microsoft | N/A | Windows Server 2022, 23H2 Edition (Server Core installation) versions antérieures à 10.0.25398.2330 | ||
| Microsoft | N/A | Windows Server 2022 versions antérieures à 10.0.20348.5139 | ||
| Microsoft | N/A | Windows Server 2025 versions antérieures à 10.0.26100.32860 | ||
| Microsoft | N/A | Windows 10 Version 1809 pour systèmes x64 versions antérieures à 10.0.17763.8755 | ||
| Microsoft | N/A | Windows 11 Version 25H2 pour systèmes x64 versions antérieures à 10.0.26200.8457 | ||
| Microsoft | N/A | Windows 10 Version 1809 pour systèmes 32 bits versions antérieures à 10.0.17763.8755 | ||
| Microsoft | N/A | Windows 11 Version 24H2 pour systèmes ARM64 versions antérieures à 10.0.26100.8390 | ||
| Microsoft | N/A | Windows Server 2025 (Server Core installation) versions antérieures à 10.0.26100.32860 | ||
| Microsoft | N/A | Windows Server 2016 (Server Core installation) versions antérieures à 10.0.14393.9140 | ||
| Microsoft | N/A | Windows Server 2012 versions antérieures à 6.2.9200.26079 | ||
| Microsoft | N/A | Windows Server 2012 R2 (Server Core installation) versions antérieures à 6.3.9600.23181 | ||
| Microsoft | N/A | Windows Server 2012 (Server Core installation) versions antérieures à 6.2.9200.26079 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Windows Server 2012 R2 versions ant\u00e9rieures \u00e0 6.3.9600.23181",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19045.7291",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19045.7291",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Admin Center in Azure Portal versions ant\u00e9rieures \u00e0 2.6.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 24H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.26100.8390",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Admin Center versions ant\u00e9rieures \u00e0 2.6.5.16",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 23H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.22631.7079",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.14393.9140",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.17763.8755",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19044.7291",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 22H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.19045.7291",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1607 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.14393.9140",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.19044.7291",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 21H2 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.19044.7291",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 26H1 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.28000.2113",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 versions ant\u00e9rieures \u00e0 10.0.14393.9140",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2019 versions ant\u00e9rieures \u00e0 10.0.17763.8755",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 25H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.26200.8457",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 23H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.22631.7079",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 26H1 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.28000.2113",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.20348.5139",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022, 23H2 Edition (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.25398.2330",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2022 versions ant\u00e9rieures \u00e0 10.0.20348.5139",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2025 versions ant\u00e9rieures \u00e0 10.0.26100.32860",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.17763.8755",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 25H2 pour syst\u00e8mes x64 versions ant\u00e9rieures \u00e0 10.0.26200.8457",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 10 Version 1809 pour syst\u00e8mes 32 bits versions ant\u00e9rieures \u00e0 10.0.17763.8755",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows 11 Version 24H2 pour syst\u00e8mes ARM64 versions ant\u00e9rieures \u00e0 10.0.26100.8390",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2025 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.26100.32860",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2016 (Server Core installation) versions ant\u00e9rieures \u00e0 10.0.14393.9140",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 versions ant\u00e9rieures \u00e0 6.2.9200.26079",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 R2 (Server Core installation) versions ant\u00e9rieures \u00e0 6.3.9600.23181",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
},
{
"description": "Windows Server 2012 (Server Core installation) versions ant\u00e9rieures \u00e0 6.2.9200.26079",
"product": {
"name": "N/A",
"vendor": {
"name": "Microsoft",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2026-34342",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34342"
},
{
"name": "CVE-2026-32209",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32209"
},
{
"name": "CVE-2026-40397",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40397"
},
{
"name": "CVE-2026-35419",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35419"
},
{
"name": "CVE-2026-41089",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41089"
},
{
"name": "CVE-2026-40401",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40401"
},
{
"name": "CVE-2026-35438",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35438"
},
{
"name": "CVE-2026-40377",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40377"
},
{
"name": "CVE-2026-40380",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40380"
},
{
"name": "CVE-2026-40402",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40402"
},
{
"name": "CVE-2026-34345",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34345"
},
{
"name": "CVE-2026-33837",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33837"
},
{
"name": "CVE-2026-32175",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32175"
},
{
"name": "CVE-2026-40405",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40405"
},
{
"name": "CVE-2026-34338",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34338"
},
{
"name": "CVE-2026-34331",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34331"
},
{
"name": "CVE-2026-34343",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34343"
},
{
"name": "CVE-2026-40369",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40369"
},
{
"name": "CVE-2026-35420",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35420"
},
{
"name": "CVE-2026-34337",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34337"
},
{
"name": "CVE-2026-35433",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35433"
},
{
"name": "CVE-2026-32170",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32170"
},
{
"name": "CVE-2026-34341",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34341"
},
{
"name": "CVE-2026-34351",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34351"
},
{
"name": "CVE-2026-34340",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34340"
},
{
"name": "CVE-2026-34344",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34344"
},
{
"name": "CVE-2026-35424",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35424"
},
{
"name": "CVE-2026-34329",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34329"
},
{
"name": "CVE-2026-40382",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40382"
},
{
"name": "CVE-2026-40408",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40408"
},
{
"name": "CVE-2026-42896",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42896"
},
{
"name": "CVE-2026-35422",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35422"
},
{
"name": "CVE-2026-40415",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40415"
},
{
"name": "CVE-2026-35418",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35418"
},
{
"name": "CVE-2026-35423",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35423"
},
{
"name": "CVE-2026-42899",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42899"
},
{
"name": "CVE-2026-41097",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41097"
},
{
"name": "CVE-2026-35417",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35417"
},
{
"name": "CVE-2026-41086",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41086"
},
{
"name": "CVE-2026-34330",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34330"
},
{
"name": "CVE-2026-32177",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32177"
},
{
"name": "CVE-2026-40407",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40407"
},
{
"name": "CVE-2026-32161",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32161"
},
{
"name": "CVE-2026-34334",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34334"
},
{
"name": "CVE-2026-33834",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33834"
},
{
"name": "CVE-2026-34332",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34332"
},
{
"name": "CVE-2026-40413",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40413"
},
{
"name": "CVE-2026-41096",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41096"
},
{
"name": "CVE-2025-54518",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54518"
},
{
"name": "CVE-2026-34333",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34333"
},
{
"name": "CVE-2026-21530",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21530"
},
{
"name": "CVE-2026-33838",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33838"
},
{
"name": "CVE-2026-34347",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34347"
},
{
"name": "CVE-2026-34339",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34339"
},
{
"name": "CVE-2026-42825",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42825"
},
{
"name": "CVE-2026-40398",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40398"
},
{
"name": "CVE-2026-35415",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35415"
},
{
"name": "CVE-2026-33840",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33840"
},
{
"name": "CVE-2026-41088",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41088"
},
{
"name": "CVE-2026-40410",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40410"
},
{
"name": "CVE-2026-35421",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35421"
},
{
"name": "CVE-2026-40406",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40406"
},
{
"name": "CVE-2026-33841",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33841"
},
{
"name": "CVE-2026-33835",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33835"
},
{
"name": "CVE-2026-40403",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40403"
},
{
"name": "CVE-2026-40399",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40399"
},
{
"name": "CVE-2026-34350",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34350"
},
{
"name": "CVE-2026-40414",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40414"
},
{
"name": "CVE-2026-41095",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41095"
},
{
"name": "CVE-2026-33839",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33839"
},
{
"name": "CVE-2026-35416",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-35416"
},
{
"name": "CVE-2026-34336",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34336"
}
],
"initial_release_date": "2026-05-13T00:00:00",
"last_revision_date": "2026-05-13T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0585",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-05-13T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Microsoft Windows. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Windows",
"vendor_advisories": [
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40407",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40407"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35418",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35418"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34345",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34345"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-32209",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32209"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35422",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35422"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34330",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34330"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-32170",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32170"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34350",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34350"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40401",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40401"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35415",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35415"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40415",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40415"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40397",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40397"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34333",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34333"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40406",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40406"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34339",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34339"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34334",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34334"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-41088",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41088"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35419",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35419"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34332",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34332"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34351",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34351"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34329",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34329"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-42896",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42896"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2025-54518",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54518"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40398",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40398"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35438",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35438"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35421",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35421"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-33834",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33834"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35416",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35416"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-41086",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41086"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40382",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40382"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40410",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40410"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35433",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35433"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34338",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34338"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34342",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34342"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-32177",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32177"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35420",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35420"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-33838",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33838"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-41089",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41089"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-33840",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33840"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40408",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40408"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35423",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35423"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-32161",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32161"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34343",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34343"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40402",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40402"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34336",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34336"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35424",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35424"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40405",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40405"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-42899",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42899"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40377",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40377"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-33835",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33835"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40399",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40399"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34337",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34337"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40380",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40380"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-35417",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35417"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34340",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34340"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40414",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40414"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-33839",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33839"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-41095",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41095"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-41097",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41097"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34331",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34331"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-32175",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32175"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-33841",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33841"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40369",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40369"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40403",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40403"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-41096",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41096"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34347",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34347"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-40413",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40413"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-42825",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42825"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-33837",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33837"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34341",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34341"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-34344",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-34344"
},
{
"published_at": "2026-05-12",
"title": "Bulletin de s\u00e9curit\u00e9 Microsoft Windows CVE-2026-21530",
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21530"
}
]
}
FKIE_CVE-2025-54518
Vulnerability from fkie_nvd - Published: 2026-05-15 05:16 - Updated: 2026-05-15 14:10
Severity ?
Summary
Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation."
}
],
"id": "CVE-2025-54518",
"lastModified": "2026-05-15T14:10:17.083",
"metrics": {
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "psirt@amd.com",
"type": "Secondary"
}
]
},
"published": "2026-05-15T05:16:33.013",
"references": [
{
"source": "psirt@amd.com",
"url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7052.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2026/05/12/15"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://xenbits.xen.org/xsa/advisory-490.html"
}
],
"sourceIdentifier": "psirt@amd.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-1189"
}
],
"source": "psirt@amd.com",
"type": "Secondary"
}
]
}
GHSA-WRMR-CRJV-W33G
Vulnerability from github – Published: 2026-05-15 06:30 – Updated: 2026-05-15 06:30
VLAI?
Details
Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.
Severity ?
{
"affected": [],
"aliases": [
"CVE-2025-54518"
],
"database_specific": {
"cwe_ids": [
"CWE-1189"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-05-15T05:16:33Z",
"severity": "HIGH"
},
"details": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.",
"id": "GHSA-wrmr-crjv-w33g",
"modified": "2026-05-15T06:30:29Z",
"published": "2026-05-15T06:30:29Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-54518"
},
{
"type": "WEB",
"url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-7052.html"
},
{
"type": "WEB",
"url": "http://www.openwall.com/lists/oss-security/2026/05/12/15"
},
{
"type": "WEB",
"url": "http://xenbits.xen.org/xsa/advisory-490.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
NCSC-2026-0158
Vulnerability from csaf_ncscnl - Published: 2026-05-15 06:49 - Updated: 2026-05-15 06:49Summary
Kwetsbaarheid verholpen in AMD processors
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: AMD heeft een kwetsbaarheid verholpen in specifieke processor modellen door middel van een mitigatie die is opgenomen in de Windows update van mei 2026.
Interpretaties: De kwetsbaarheid betreft bepaalde AMD processors. Een lokale kwaadwillende kan de kwetsbaarheid misbruiken om willekeurige code uit te voeren op het systeem.
Oplossingen: De mitigatie is opgenomen in de Windows update van mei 2026 die beschikbaar is gesteld om de kwetsbaarheid te verhelpen voor windows-gebaseerde systemen. Overige OS-vendors brengen eigen updates uit. Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-1189: Improper Isolation of Shared Resources on System-on-a-Chip (SoC)
AMD Zen 2-based processors have a vulnerability in CPU operation cache isolation that may allow instruction corruption across privilege levels, mitigated by a Windows update released in May 2026.
CWE-1189 - Improper Isolation of Shared Resources on System-on-a-Chip (SoC)Affected products
Known affected
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
vers:unknown/*
AMD / Prozessor
|
vers:unknown/* | ||
|
vers:unknown/*
Debian / xen
|
vers:unknown/* | ||
|
vers:unknown/*
Dell / Dell PowerEdge
|
vers:unknown/* | ||
|
vers:unknown/*
Fedora / Fedora Linux
|
vers:unknown/* | ||
|
vers:unknown/*
Google / Cloud Platform
|
vers:unknown/* | ||
|
vers:unknown/*
Google / Google Cloud Platform
|
vers:unknown/* | ||
|
vers:unknown/*
Lenovo / Lenovo Computer
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Windows Admin Center
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Windows Server 2012
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Windows Server 2012 R2
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Windows Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Windows Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Windows Server 2022
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Microsoft Windows Server 2025
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 1607 for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 1607 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 1809 for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 1809 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 21H2 for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 21H2 for ARM64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 21H2 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 22H2 for 32-bit Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 22H2 for ARM64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 10 Version 22H2 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 23H2 for ARM64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 23H2 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 24H2 for ARM64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 24H2 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 25H2 for ARM64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 25H2 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 26H1 for ARM64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows 11 Version 26H1 for x64-based Systems
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2016
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2016 (Server Core installation)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2019
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2019 (Server Core installation)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2022
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2022 (Server Core installation)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2022, 23H2 Edition (Server Core installation)
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2025
|
vers:unknown/* | ||
|
vers:unknown/*
Microsoft / Windows Server 2025 (Server Core installation)
|
vers:unknown/* | ||
|
vers:unknown/*
Open Source / Xen
|
vers:unknown/* |
References
7 references
| URL | Category |
|---|---|
| https://bodhi.fedoraproject.org/updates/FEDORA-20… | external |
| https://bodhi.fedoraproject.org/updates/FEDORA-20… | external |
| https://msrc.microsoft.com/update-guide/ | external |
| https://support.lenovo.com/us/en/product_security… | external |
| https://www.amd.com/en/resources/product-security… | external |
| https://xenbits.xen.org/xsa/advisory-490.html | external |
| https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-… | self |
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "AMD heeft een kwetsbaarheid verholpen in specifieke processor modellen door middel van een mitigatie die is opgenomen in de Windows update van mei 2026.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheid betreft bepaalde AMD processors. Een lokale kwaadwillende kan de kwetsbaarheid misbruiken om willekeurige code uit te voeren op het systeem.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "De mitigatie is opgenomen in de Windows update van mei 2026 die beschikbaar is gesteld om de kwetsbaarheid te verhelpen voor windows-gebaseerde systemen. Overige OS-vendors brengen eigen updates uit. Zie bijgevoegde referenties voor meer informatie.\n\n",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Isolation of Shared Resources on System-on-a-Chip (SoC)",
"title": "CWE-1189"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-7b2b7837b6"
},
{
"category": "external",
"summary": "Reference",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-8b2957222f"
},
{
"category": "external",
"summary": "Reference",
"url": "https://msrc.microsoft.com/update-guide/"
},
{
"category": "external",
"summary": "Reference",
"url": "https://support.lenovo.com/us/en/product_security/LEN-216977"
},
{
"category": "external",
"summary": "Reference",
"url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7052.html"
},
{
"category": "external",
"summary": "Reference",
"url": "https://xenbits.xen.org/xsa/advisory-490.html"
}
],
"title": "Kwetsbaarheid verholpen in AMD processors",
"tracking": {
"current_release_date": "2026-05-15T06:49:15.153183Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2026-0158",
"initial_release_date": "2026-05-15T06:49:15.153183Z",
"revision_history": [
{
"date": "2026-05-15T06:49:15.153183Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Prozessor"
}
],
"category": "vendor",
"name": "AMD"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "xen"
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Dell PowerEdge"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Fedora Linux"
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "Cloud Platform"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "Google Cloud Platform"
}
],
"category": "vendor",
"name": "Google"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "Lenovo Computer"
}
],
"category": "vendor",
"name": "Lenovo"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "Microsoft Windows Admin Center"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "Microsoft Windows Server 2012"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-10"
}
}
],
"category": "product_name",
"name": "Microsoft Windows Server 2012 R2"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-11"
}
}
],
"category": "product_name",
"name": "Microsoft Windows Server 2016"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-12"
}
}
],
"category": "product_name",
"name": "Microsoft Windows Server 2019"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-13"
}
}
],
"category": "product_name",
"name": "Microsoft Windows Server 2022"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-14"
}
}
],
"category": "product_name",
"name": "Microsoft Windows Server 2025"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-15"
}
}
],
"category": "product_name",
"name": "Windows 10"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-16"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1607 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-17"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1607 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-18"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1809 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-19"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 1809 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-20"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 21H2 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-21"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 21H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-22"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 21H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-23"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 22H2 for 32-bit Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-24"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 22H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-25"
}
}
],
"category": "product_name",
"name": "Windows 10 Version 22H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-26"
}
}
],
"category": "product_name",
"name": "Windows 11"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-27"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 23H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-28"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 23H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-29"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 24H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-30"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 24H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-31"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 25H2 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-32"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 25H2 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-33"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 26H1 for ARM64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-34"
}
}
],
"category": "product_name",
"name": "Windows 11 Version 26H1 for x64-based Systems"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-35"
}
}
],
"category": "product_name",
"name": "Windows Server 2016"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-36"
}
}
],
"category": "product_name",
"name": "Windows Server 2016 (Server Core installation)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-37"
}
}
],
"category": "product_name",
"name": "Windows Server 2019"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-38"
}
}
],
"category": "product_name",
"name": "Windows Server 2019 (Server Core installation)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-39"
}
}
],
"category": "product_name",
"name": "Windows Server 2022"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-40"
}
}
],
"category": "product_name",
"name": "Windows Server 2022 (Server Core installation)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-41"
}
}
],
"category": "product_name",
"name": "Windows Server 2022, 23H2 Edition (Server Core installation)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-42"
}
}
],
"category": "product_name",
"name": "Windows Server 2025"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-43"
}
}
],
"category": "product_name",
"name": "Windows Server 2025 (Server Core installation)"
}
],
"category": "vendor",
"name": "Microsoft"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-44"
}
}
],
"category": "product_name",
"name": "Xen"
}
],
"category": "vendor",
"name": "Open Source"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54518",
"cwe": {
"id": "CWE-1189",
"name": "Improper Isolation of Shared Resources on System-on-a-Chip (SoC)"
},
"notes": [
{
"category": "other",
"text": "Improper Isolation of Shared Resources on System-on-a-Chip (SoC)",
"title": "CWE-1189"
},
{
"category": "description",
"text": "AMD Zen 2-based processors have a vulnerability in CPU operation cache isolation that may allow instruction corruption across privilege levels, mitigated by a Windows update released in May 2026.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36",
"CSAFPID-37",
"CSAFPID-38",
"CSAFPID-39",
"CSAFPID-40",
"CSAFPID-41",
"CSAFPID-42",
"CSAFPID-43",
"CSAFPID-44"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-54518 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-54518.json"
}
],
"title": "CVE-2025-54518"
}
]
}
OPENSUSE-SU-2026:10800-1
Vulnerability from csaf_opensuse - Published: 2026-05-16 00:00 - Updated: 2026-05-16 00:00Summary
xen-4.21.1_06-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: xen-4.21.1_06-1.1 on GA media
Description of the patch: These are all security issues fixed in the xen-4.21.1_06-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2026-10800
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.4 (High)
Affected products
Recommended
28 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:xen-4.21.1_06-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.21.1_06-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.21.1_06-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-4.21.1_06-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
7 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/o… | self |
| https://www.suse.com/security/cve/CVE-2025-54518/ | self |
| https://www.suse.com/security/cve/CVE-2025-54518 | external |
| https://bugzilla.suse.com/1264013 | external |
| https://bugzilla.suse.com/1264066 | external |
| https://bugzilla.suse.com/1264096 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "xen-4.21.1_06-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the xen-4.21.1_06-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2026-10800",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10800-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-54518 page",
"url": "https://www.suse.com/security/cve/CVE-2025-54518/"
}
],
"title": "xen-4.21.1_06-1.1 on GA media",
"tracking": {
"current_release_date": "2026-05-16T00:00:00Z",
"generator": {
"date": "2026-05-16T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2026:10800-1",
"initial_release_date": "2026-05-16T00:00:00Z",
"revision_history": [
{
"date": "2026-05-16T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "xen-4.21.1_06-1.1.aarch64",
"product": {
"name": "xen-4.21.1_06-1.1.aarch64",
"product_id": "xen-4.21.1_06-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.21.1_06-1.1.aarch64",
"product": {
"name": "xen-devel-4.21.1_06-1.1.aarch64",
"product_id": "xen-devel-4.21.1_06-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.21.1_06-1.1.aarch64",
"product": {
"name": "xen-doc-html-4.21.1_06-1.1.aarch64",
"product_id": "xen-doc-html-4.21.1_06-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.21.1_06-1.1.aarch64",
"product": {
"name": "xen-libs-4.21.1_06-1.1.aarch64",
"product_id": "xen-libs-4.21.1_06-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.21.1_06-1.1.aarch64",
"product": {
"name": "xen-tools-4.21.1_06-1.1.aarch64",
"product_id": "xen-tools-4.21.1_06-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.21.1_06-1.1.aarch64",
"product": {
"name": "xen-tools-domU-4.21.1_06-1.1.aarch64",
"product_id": "xen-tools-domU-4.21.1_06-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64",
"product_id": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.21.1_06-1.1.ppc64le",
"product": {
"name": "xen-4.21.1_06-1.1.ppc64le",
"product_id": "xen-4.21.1_06-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-devel-4.21.1_06-1.1.ppc64le",
"product": {
"name": "xen-devel-4.21.1_06-1.1.ppc64le",
"product_id": "xen-devel-4.21.1_06-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.21.1_06-1.1.ppc64le",
"product": {
"name": "xen-doc-html-4.21.1_06-1.1.ppc64le",
"product_id": "xen-doc-html-4.21.1_06-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-libs-4.21.1_06-1.1.ppc64le",
"product": {
"name": "xen-libs-4.21.1_06-1.1.ppc64le",
"product_id": "xen-libs-4.21.1_06-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-4.21.1_06-1.1.ppc64le",
"product": {
"name": "xen-tools-4.21.1_06-1.1.ppc64le",
"product_id": "xen-tools-4.21.1_06-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.21.1_06-1.1.ppc64le",
"product": {
"name": "xen-tools-domU-4.21.1_06-1.1.ppc64le",
"product_id": "xen-tools-domU-4.21.1_06-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le",
"product_id": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.21.1_06-1.1.s390x",
"product": {
"name": "xen-4.21.1_06-1.1.s390x",
"product_id": "xen-4.21.1_06-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-devel-4.21.1_06-1.1.s390x",
"product": {
"name": "xen-devel-4.21.1_06-1.1.s390x",
"product_id": "xen-devel-4.21.1_06-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.21.1_06-1.1.s390x",
"product": {
"name": "xen-doc-html-4.21.1_06-1.1.s390x",
"product_id": "xen-doc-html-4.21.1_06-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-libs-4.21.1_06-1.1.s390x",
"product": {
"name": "xen-libs-4.21.1_06-1.1.s390x",
"product_id": "xen-libs-4.21.1_06-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-4.21.1_06-1.1.s390x",
"product": {
"name": "xen-tools-4.21.1_06-1.1.s390x",
"product_id": "xen-tools-4.21.1_06-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.21.1_06-1.1.s390x",
"product": {
"name": "xen-tools-domU-4.21.1_06-1.1.s390x",
"product_id": "xen-tools-domU-4.21.1_06-1.1.s390x"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x",
"product_id": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "xen-4.21.1_06-1.1.x86_64",
"product": {
"name": "xen-4.21.1_06-1.1.x86_64",
"product_id": "xen-4.21.1_06-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-devel-4.21.1_06-1.1.x86_64",
"product": {
"name": "xen-devel-4.21.1_06-1.1.x86_64",
"product_id": "xen-devel-4.21.1_06-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-doc-html-4.21.1_06-1.1.x86_64",
"product": {
"name": "xen-doc-html-4.21.1_06-1.1.x86_64",
"product_id": "xen-doc-html-4.21.1_06-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-libs-4.21.1_06-1.1.x86_64",
"product": {
"name": "xen-libs-4.21.1_06-1.1.x86_64",
"product_id": "xen-libs-4.21.1_06-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-4.21.1_06-1.1.x86_64",
"product": {
"name": "xen-tools-4.21.1_06-1.1.x86_64",
"product_id": "xen-tools-4.21.1_06-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-domU-4.21.1_06-1.1.x86_64",
"product": {
"name": "xen-tools-domU-4.21.1_06-1.1.x86_64",
"product_id": "xen-tools-domU-4.21.1_06-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64",
"product": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64",
"product_id": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.21.1_06-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.21.1_06-1.1.aarch64"
},
"product_reference": "xen-4.21.1_06-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.21.1_06-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.21.1_06-1.1.ppc64le"
},
"product_reference": "xen-4.21.1_06-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.21.1_06-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.21.1_06-1.1.s390x"
},
"product_reference": "xen-4.21.1_06-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-4.21.1_06-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-4.21.1_06-1.1.x86_64"
},
"product_reference": "xen-4.21.1_06-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.21.1_06-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.aarch64"
},
"product_reference": "xen-devel-4.21.1_06-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.21.1_06-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.ppc64le"
},
"product_reference": "xen-devel-4.21.1_06-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.21.1_06-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.s390x"
},
"product_reference": "xen-devel-4.21.1_06-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-devel-4.21.1_06-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.x86_64"
},
"product_reference": "xen-devel-4.21.1_06-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.21.1_06-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.aarch64"
},
"product_reference": "xen-doc-html-4.21.1_06-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.21.1_06-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.ppc64le"
},
"product_reference": "xen-doc-html-4.21.1_06-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.21.1_06-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.s390x"
},
"product_reference": "xen-doc-html-4.21.1_06-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-doc-html-4.21.1_06-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.x86_64"
},
"product_reference": "xen-doc-html-4.21.1_06-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.21.1_06-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.aarch64"
},
"product_reference": "xen-libs-4.21.1_06-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.21.1_06-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.ppc64le"
},
"product_reference": "xen-libs-4.21.1_06-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.21.1_06-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.s390x"
},
"product_reference": "xen-libs-4.21.1_06-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-libs-4.21.1_06-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.x86_64"
},
"product_reference": "xen-libs-4.21.1_06-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.21.1_06-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.aarch64"
},
"product_reference": "xen-tools-4.21.1_06-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.21.1_06-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.ppc64le"
},
"product_reference": "xen-tools-4.21.1_06-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.21.1_06-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.s390x"
},
"product_reference": "xen-tools-4.21.1_06-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-4.21.1_06-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.x86_64"
},
"product_reference": "xen-tools-4.21.1_06-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.21.1_06-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.aarch64"
},
"product_reference": "xen-tools-domU-4.21.1_06-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.21.1_06-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.ppc64le"
},
"product_reference": "xen-tools-domU-4.21.1_06-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.21.1_06-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.s390x"
},
"product_reference": "xen-tools-domU-4.21.1_06-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-domU-4.21.1_06-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.x86_64"
},
"product_reference": "xen-tools-domU-4.21.1_06-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64"
},
"product_reference": "xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54518",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-54518"
}
],
"notes": [
{
"category": "general",
"text": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-54518",
"url": "https://www.suse.com/security/cve/CVE-2025-54518"
},
{
"category": "external",
"summary": "SUSE Bug 1264013 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264013"
},
{
"category": "external",
"summary": "SUSE Bug 1264066 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264066"
},
{
"category": "external",
"summary": "SUSE Bug 1264096 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-devel-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-doc-html-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-libs-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-domU-4.21.1_06-1.1.x86_64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.aarch64",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.ppc64le",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.s390x",
"openSUSE Tumbleweed:xen-tools-xendomains-wait-disk-4.21.1_06-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-16T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-54518"
}
]
}
SUSE-SU-2026:1899-1
Vulnerability from csaf_suse - Published: 2026-05-17 13:17 - Updated: 2026-05-17 13:17Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache (bsc#1264013).
- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).
- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).
- CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (aka Dirty Frag) (bsc#1264450).
- CVE-2026-46333: ptrace: Logic bug in the Linux kernel's __ptrace_may_access() function (bsc#1265308).
The following non security issues were fixed:
- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).
Patchnames: SUSE-2026-1899,SUSE-SLE-Micro-5.5-2026-1899
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
34 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/s… | self |
| https://www.suse.com/support/update/announcement/… | self |
| https://lists.suse.com/pipermail/sle-updates/2026… | self |
| https://bugzilla.suse.com/1264013 | self |
| https://bugzilla.suse.com/1264449 | self |
| https://bugzilla.suse.com/1264450 | self |
| https://bugzilla.suse.com/1265209 | self |
| https://bugzilla.suse.com/1265308 | self |
| https://www.suse.com/security/cve/CVE-2025-54518/ | self |
| https://www.suse.com/security/cve/CVE-2026-43284/ | self |
| https://www.suse.com/security/cve/CVE-2026-43500/ | self |
| https://www.suse.com/security/cve/CVE-2026-46300/ | self |
| https://www.suse.com/security/cve/CVE-2026-46333/ | self |
| https://www.suse.com/security/cve/CVE-2025-54518 | external |
| https://bugzilla.suse.com/1264013 | external |
| https://bugzilla.suse.com/1264066 | external |
| https://bugzilla.suse.com/1264096 | external |
| https://www.suse.com/security/cve/CVE-2026-43284 | external |
| https://bugzilla.suse.com/1264449 | external |
| https://bugzilla.suse.com/1264459 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-43500 | external |
| https://bugzilla.suse.com/1264450 | external |
| https://bugzilla.suse.com/1264458 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-46300 | external |
| https://bugzilla.suse.com/1265209 | external |
| https://bugzilla.suse.com/1265226 | external |
| https://bugzilla.suse.com/1265312 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-46333 | external |
| https://bugzilla.suse.com/1265308 | external |
| https://bugzilla.suse.com/1265384 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2\u0027s op cache (bsc#1264013).\n- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).\n- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).\n- CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (aka Dirty Frag) (bsc#1264450).\n- CVE-2026-46333: ptrace: Logic bug in the Linux kernel\u0027s __ptrace_may_access() function (bsc#1265308).\n\nThe following non security issues were fixed:\n\n- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1899,SUSE-SLE-Micro-5.5-2026-1899",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1899-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1899-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261899-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1899-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046517.html"
},
{
"category": "self",
"summary": "SUSE Bug 1264013",
"url": "https://bugzilla.suse.com/1264013"
},
{
"category": "self",
"summary": "SUSE Bug 1264449",
"url": "https://bugzilla.suse.com/1264449"
},
{
"category": "self",
"summary": "SUSE Bug 1264450",
"url": "https://bugzilla.suse.com/1264450"
},
{
"category": "self",
"summary": "SUSE Bug 1265209",
"url": "https://bugzilla.suse.com/1265209"
},
{
"category": "self",
"summary": "SUSE Bug 1265308",
"url": "https://bugzilla.suse.com/1265308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-54518 page",
"url": "https://www.suse.com/security/cve/CVE-2025-54518/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-43284 page",
"url": "https://www.suse.com/security/cve/CVE-2026-43284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-43500 page",
"url": "https://www.suse.com/security/cve/CVE-2026-43500/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46300 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46300/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46333 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46333/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-05-17T13:17:08Z",
"generator": {
"date": "2026-05-17T13:17:08Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1899-1",
"initial_release_date": "2026-05-17T13:17:08Z",
"revision_history": [
{
"date": "2026-05-17T13:17:08Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"product": {
"name": "kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"product_id": "kernel-devel-rt-5.14.21-150500.13.137.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-5.14.21-150500.13.137.1.noarch",
"product": {
"name": "kernel-source-rt-5.14.21-150500.13.137.1.noarch",
"product_id": "kernel-source-rt-5.14.21-150500.13.137.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "cluster-md-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "cluster-md-kmp-rt-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "dlm-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "dlm-kmp-rt-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "gfs2-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "gfs2-kmp-rt-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt-devel-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt-devel-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt-extra-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt-extra-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt-livepatch-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-devel-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-devel-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt-livepatch-devel-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt-optional-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt-optional-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-vdso-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt-vdso-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt-vdso-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt_debug-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt_debug-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-devel-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt_debug-devel-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt_debug-devel-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-rt_debug-vdso-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-rt_debug-vdso-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kernel-syms-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "kernel-syms-rt-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "kselftests-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "kselftests-kmp-rt-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "ocfs2-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "ocfs2-kmp-rt-5.14.21-150500.13.137.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product": {
"name": "reiserfs-kmp-rt-5.14.21-150500.13.137.1.x86_64",
"product_id": "reiserfs-kmp-rt-5.14.21-150500.13.137.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-rt-5.14.21-150500.13.137.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch"
},
"product_reference": "kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150500.13.137.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150500.13.137.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-5.14.21-150500.13.137.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
},
"product_reference": "kernel-source-rt-5.14.21-150500.13.137.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54518",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-54518"
}
],
"notes": [
{
"category": "general",
"text": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-54518",
"url": "https://www.suse.com/security/cve/CVE-2025-54518"
},
{
"category": "external",
"summary": "SUSE Bug 1264013 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264013"
},
{
"category": "external",
"summary": "SUSE Bug 1264066 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264066"
},
{
"category": "external",
"summary": "SUSE Bug 1264096 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:17:08Z",
"details": "important"
}
],
"title": "CVE-2025-54518"
},
{
"cve": "CVE-2026-43284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-43284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: esp: avoid in-place decrypt on shared skb frags\n\nMSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP\nmarks such skbs with SKBFL_SHARED_FRAG after skb_splice_from_iter(),\nso later paths that may modify packet data can first make a private\ncopy. The IPv4/IPv6 datagram append paths did not set this flag when\nsplicing pages into UDP skbs.\n\nThat leaves an ESP-in-UDP packet made from shared pipe pages looking\nlike an ordinary uncloned nonlinear skb. ESP input then takes the no-COW\nfast path for uncloned skbs without a frag_list and decrypts in place\nover data that is not owned privately by the skb.\n\nMark IPv4/IPv6 datagram splice frags with SKBFL_SHARED_FRAG, matching\nTCP. Also make ESP input fall back to skb_cow_data() when the flag is\npresent, so ESP does not decrypt externally backed frags in place.\nPrivate nonlinear skb frags still use the existing fast path.\n\nThis intentionally does not change ESP output. In esp_output_head(),\nthe path that appends the ESP trailer to existing skb tailroom without\ncalling skb_cow_data() is not reachable for nonlinear skbs:\nskb_tailroom() returns zero when skb-\u003edata_len is nonzero, while ESP\ntailen is positive. Thus ESP output will either use the separate\ndestination-frag path or fall back to skb_cow_data().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-43284",
"url": "https://www.suse.com/security/cve/CVE-2026-43284"
},
{
"category": "external",
"summary": "SUSE Bug 1264449 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1264449"
},
{
"category": "external",
"summary": "SUSE Bug 1264459 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1264459"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:17:08Z",
"details": "important"
}
],
"title": "CVE-2026-43284"
},
{
"cve": "CVE-2026-43500",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-43500"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Also unshare DATA/RESPONSE packets when paged frags are present\n\nThe DATA-packet handler in rxrpc_input_call_event() and the RESPONSE\nhandler in rxrpc_verify_response() copy the skb to a linear one before\ncalling into the security ops only when skb_cloned() is true. An skb\nthat is not cloned but still carries externally-owned paged fragments\n(e.g. SKBFL_SHARED_FRAG set by splice() into a UDP socket via\n__ip_append_data, or a chained skb_has_frag_list()) falls through to\nthe in-place decryption path, which binds the frag pages directly into\nthe AEAD/skcipher SGL via skb_to_sgvec().\n\nExtend the gate to also unshare when skb_has_frag_list() or\nskb_has_shared_frag() is true. This catches the splice-loopback vector\nand other externally-shared frag sources while preserving the\nzero-copy fast path for skbs whose frags are kernel-private (e.g. NIC\npage_pool RX, GRO). The OOM/trace handling already in place is reused.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-43500",
"url": "https://www.suse.com/security/cve/CVE-2026-43500"
},
{
"category": "external",
"summary": "SUSE Bug 1264450 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1264450"
},
{
"category": "external",
"summary": "SUSE Bug 1264458 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1264458"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:17:08Z",
"details": "important"
}
],
"title": "CVE-2026-43500"
},
{
"cve": "CVE-2026-46300",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46300"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46300",
"url": "https://www.suse.com/security/cve/CVE-2026-46300"
},
{
"category": "external",
"summary": "SUSE Bug 1265209 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265209"
},
{
"category": "external",
"summary": "SUSE Bug 1265226 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265226"
},
{
"category": "external",
"summary": "SUSE Bug 1265312 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265312"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:17:08Z",
"details": "important"
}
],
"title": "CVE-2026-46300"
},
{
"cve": "CVE-2026-46333",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46333"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nptrace: slightly saner \u0027get_dumpable()\u0027 logic\n\nThe \u0027dumpability\u0027 of a task is fundamentally about the memory image of\nthe task - the concept comes from whether it can core dump or not - and\nmakes no sense when you don\u0027t have an associated mm.\n\nAnd almost all users do in fact use it only for the case where the task\nhas a mm pointer.\n\nBut we have one odd special case: ptrace_may_access() uses \u0027dumpable\u0027 to\ncheck various other things entirely independently of the MM (typically\nexplicitly using flags like PTRACE_MODE_READ_FSCREDS). Including for\nthreads that no longer have a VM (and maybe never did, like most kernel\nthreads).\n\nIt\u0027s not what this flag was designed for, but it is what it is.\n\nThe ptrace code does check that the uid/gid matches, so you do have to\nbe uid-0 to see kernel thread details, but this means that the\ntraditional \"drop capabilities\" model doesn\u0027t make any difference for\nthis all.\n\nMake it all make a *bit* more sense by saying that if you don\u0027t have a\nMM pointer, we\u0027ll use a cached \"last dumpability\" flag if the thread\never had a MM (it will be zero for kernel threads since it is never\nset), and require a proper CAP_SYS_PTRACE capability to override.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46333",
"url": "https://www.suse.com/security/cve/CVE-2026-46333"
},
{
"category": "external",
"summary": "SUSE Bug 1265308 for CVE-2026-46333",
"url": "https://bugzilla.suse.com/1265308"
},
{
"category": "external",
"summary": "SUSE Bug 1265384 for CVE-2026-46333",
"url": "https://bugzilla.suse.com/1265384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-devel-rt-5.14.21-150500.13.137.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-rt-5.14.21-150500.13.137.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-source-rt-5.14.21-150500.13.137.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:17:08Z",
"details": "important"
}
],
"title": "CVE-2026-46333"
}
]
}
SUSE-SU-2026:1900-1
Vulnerability from csaf_suse - Published: 2026-05-17 13:22 - Updated: 2026-05-17 13:22Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache (bsc#1264013).
- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).
- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).
- CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (aka Dirty Frag) (bsc#1264450)
- CVE-2026-46333: ptrace: Logic bug in the Linux kernel's __ptrace_may_access() function (bsc#1265308).
The following non security issues were fixed:
- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).
Patchnames: SUSE-2026-1900,SUSE-SLE-Micro-5.3-2026-1900,SUSE-SLE-Micro-5.4-2026-1900
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.4 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
34 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/s… | self |
| https://www.suse.com/support/update/announcement/… | self |
| https://lists.suse.com/pipermail/sle-updates/2026… | self |
| https://bugzilla.suse.com/1264013 | self |
| https://bugzilla.suse.com/1264449 | self |
| https://bugzilla.suse.com/1264450 | self |
| https://bugzilla.suse.com/1265209 | self |
| https://bugzilla.suse.com/1265308 | self |
| https://www.suse.com/security/cve/CVE-2025-54518/ | self |
| https://www.suse.com/security/cve/CVE-2026-43284/ | self |
| https://www.suse.com/security/cve/CVE-2026-43500/ | self |
| https://www.suse.com/security/cve/CVE-2026-46300/ | self |
| https://www.suse.com/security/cve/CVE-2026-46333/ | self |
| https://www.suse.com/security/cve/CVE-2025-54518 | external |
| https://bugzilla.suse.com/1264013 | external |
| https://bugzilla.suse.com/1264066 | external |
| https://bugzilla.suse.com/1264096 | external |
| https://www.suse.com/security/cve/CVE-2026-43284 | external |
| https://bugzilla.suse.com/1264449 | external |
| https://bugzilla.suse.com/1264459 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-43500 | external |
| https://bugzilla.suse.com/1264450 | external |
| https://bugzilla.suse.com/1264458 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-46300 | external |
| https://bugzilla.suse.com/1265209 | external |
| https://bugzilla.suse.com/1265226 | external |
| https://bugzilla.suse.com/1265312 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-46333 | external |
| https://bugzilla.suse.com/1265308 | external |
| https://bugzilla.suse.com/1265384 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2\u0027s op cache (bsc#1264013).\n- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).\n- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).\n- CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (aka Dirty Frag) (bsc#1264450)\n- CVE-2026-46333: ptrace: Logic bug in the Linux kernel\u0027s __ptrace_may_access() function (bsc#1265308).\n\nThe following non security issues were fixed:\n\n- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1900,SUSE-SLE-Micro-5.3-2026-1900,SUSE-SLE-Micro-5.4-2026-1900",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1900-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1900-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261900-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1900-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046516.html"
},
{
"category": "self",
"summary": "SUSE Bug 1264013",
"url": "https://bugzilla.suse.com/1264013"
},
{
"category": "self",
"summary": "SUSE Bug 1264449",
"url": "https://bugzilla.suse.com/1264449"
},
{
"category": "self",
"summary": "SUSE Bug 1264450",
"url": "https://bugzilla.suse.com/1264450"
},
{
"category": "self",
"summary": "SUSE Bug 1265209",
"url": "https://bugzilla.suse.com/1265209"
},
{
"category": "self",
"summary": "SUSE Bug 1265308",
"url": "https://bugzilla.suse.com/1265308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-54518 page",
"url": "https://www.suse.com/security/cve/CVE-2025-54518/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-43284 page",
"url": "https://www.suse.com/security/cve/CVE-2026-43284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-43500 page",
"url": "https://www.suse.com/security/cve/CVE-2026-43500/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46300 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46300/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46333 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46333/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-05-17T13:22:30Z",
"generator": {
"date": "2026-05-17T13:22:30Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1900-1",
"initial_release_date": "2026-05-17T13:22:30Z",
"revision_history": [
{
"date": "2026-05-17T13:22:30Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-rt-5.14.21-150400.15.164.1.noarch",
"product": {
"name": "kernel-devel-rt-5.14.21-150400.15.164.1.noarch",
"product_id": "kernel-devel-rt-5.14.21-150400.15.164.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"product": {
"name": "kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"product_id": "kernel-source-rt-5.14.21-150400.15.164.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "cluster-md-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "cluster-md-kmp-rt-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "dlm-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "dlm-kmp-rt-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "gfs2-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "gfs2-kmp-rt-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt-devel-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt-devel-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-extra-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt-extra-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt-extra-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt-livepatch-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-devel-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-devel-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt-livepatch-devel-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-optional-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt-optional-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt-optional-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt_debug-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt_debug-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt_debug-devel-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-rt_debug-devel-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-rt_debug-devel-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kernel-syms-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "kernel-syms-rt-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "kselftests-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "kselftests-kmp-rt-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "ocfs2-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "ocfs2-kmp-rt-5.14.21-150400.15.164.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product": {
"name": "reiserfs-kmp-rt-5.14.21-150400.15.164.1.x86_64",
"product_id": "reiserfs-kmp-rt-5.14.21-150400.15.164.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.3",
"product": {
"name": "SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.4",
"product": {
"name": "SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150400.15.164.1.x86_64 as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150400.15.164.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-5.14.21-150400.15.164.1.noarch as component of SUSE Linux Enterprise Micro 5.3",
"product_id": "SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
},
"product_reference": "kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-5.14.21-150400.15.164.1.x86_64 as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64"
},
"product_reference": "kernel-rt-5.14.21-150400.15.164.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-rt-5.14.21-150400.15.164.1.noarch as component of SUSE Linux Enterprise Micro 5.4",
"product_id": "SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
},
"product_reference": "kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54518",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-54518"
}
],
"notes": [
{
"category": "general",
"text": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-54518",
"url": "https://www.suse.com/security/cve/CVE-2025-54518"
},
{
"category": "external",
"summary": "SUSE Bug 1264013 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264013"
},
{
"category": "external",
"summary": "SUSE Bug 1264066 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264066"
},
{
"category": "external",
"summary": "SUSE Bug 1264096 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:22:30Z",
"details": "important"
}
],
"title": "CVE-2025-54518"
},
{
"cve": "CVE-2026-43284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-43284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: esp: avoid in-place decrypt on shared skb frags\n\nMSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP\nmarks such skbs with SKBFL_SHARED_FRAG after skb_splice_from_iter(),\nso later paths that may modify packet data can first make a private\ncopy. The IPv4/IPv6 datagram append paths did not set this flag when\nsplicing pages into UDP skbs.\n\nThat leaves an ESP-in-UDP packet made from shared pipe pages looking\nlike an ordinary uncloned nonlinear skb. ESP input then takes the no-COW\nfast path for uncloned skbs without a frag_list and decrypts in place\nover data that is not owned privately by the skb.\n\nMark IPv4/IPv6 datagram splice frags with SKBFL_SHARED_FRAG, matching\nTCP. Also make ESP input fall back to skb_cow_data() when the flag is\npresent, so ESP does not decrypt externally backed frags in place.\nPrivate nonlinear skb frags still use the existing fast path.\n\nThis intentionally does not change ESP output. In esp_output_head(),\nthe path that appends the ESP trailer to existing skb tailroom without\ncalling skb_cow_data() is not reachable for nonlinear skbs:\nskb_tailroom() returns zero when skb-\u003edata_len is nonzero, while ESP\ntailen is positive. Thus ESP output will either use the separate\ndestination-frag path or fall back to skb_cow_data().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-43284",
"url": "https://www.suse.com/security/cve/CVE-2026-43284"
},
{
"category": "external",
"summary": "SUSE Bug 1264449 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1264449"
},
{
"category": "external",
"summary": "SUSE Bug 1264459 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1264459"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:22:30Z",
"details": "important"
}
],
"title": "CVE-2026-43284"
},
{
"cve": "CVE-2026-43500",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-43500"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Also unshare DATA/RESPONSE packets when paged frags are present\n\nThe DATA-packet handler in rxrpc_input_call_event() and the RESPONSE\nhandler in rxrpc_verify_response() copy the skb to a linear one before\ncalling into the security ops only when skb_cloned() is true. An skb\nthat is not cloned but still carries externally-owned paged fragments\n(e.g. SKBFL_SHARED_FRAG set by splice() into a UDP socket via\n__ip_append_data, or a chained skb_has_frag_list()) falls through to\nthe in-place decryption path, which binds the frag pages directly into\nthe AEAD/skcipher SGL via skb_to_sgvec().\n\nExtend the gate to also unshare when skb_has_frag_list() or\nskb_has_shared_frag() is true. This catches the splice-loopback vector\nand other externally-shared frag sources while preserving the\nzero-copy fast path for skbs whose frags are kernel-private (e.g. NIC\npage_pool RX, GRO). The OOM/trace handling already in place is reused.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-43500",
"url": "https://www.suse.com/security/cve/CVE-2026-43500"
},
{
"category": "external",
"summary": "SUSE Bug 1264450 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1264450"
},
{
"category": "external",
"summary": "SUSE Bug 1264458 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1264458"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:22:30Z",
"details": "important"
}
],
"title": "CVE-2026-43500"
},
{
"cve": "CVE-2026-46300",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46300"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46300",
"url": "https://www.suse.com/security/cve/CVE-2026-46300"
},
{
"category": "external",
"summary": "SUSE Bug 1265209 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265209"
},
{
"category": "external",
"summary": "SUSE Bug 1265226 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265226"
},
{
"category": "external",
"summary": "SUSE Bug 1265312 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265312"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:22:30Z",
"details": "important"
}
],
"title": "CVE-2026-46300"
},
{
"cve": "CVE-2026-46333",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46333"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nptrace: slightly saner \u0027get_dumpable()\u0027 logic\n\nThe \u0027dumpability\u0027 of a task is fundamentally about the memory image of\nthe task - the concept comes from whether it can core dump or not - and\nmakes no sense when you don\u0027t have an associated mm.\n\nAnd almost all users do in fact use it only for the case where the task\nhas a mm pointer.\n\nBut we have one odd special case: ptrace_may_access() uses \u0027dumpable\u0027 to\ncheck various other things entirely independently of the MM (typically\nexplicitly using flags like PTRACE_MODE_READ_FSCREDS). Including for\nthreads that no longer have a VM (and maybe never did, like most kernel\nthreads).\n\nIt\u0027s not what this flag was designed for, but it is what it is.\n\nThe ptrace code does check that the uid/gid matches, so you do have to\nbe uid-0 to see kernel thread details, but this means that the\ntraditional \"drop capabilities\" model doesn\u0027t make any difference for\nthis all.\n\nMake it all make a *bit* more sense by saying that if you don\u0027t have a\nMM pointer, we\u0027ll use a cached \"last dumpability\" flag if the thread\never had a MM (it will be zero for kernel threads since it is never\nset), and require a proper CAP_SYS_PTRACE capability to override.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46333",
"url": "https://www.suse.com/security/cve/CVE-2026-46333"
},
{
"category": "external",
"summary": "SUSE Bug 1265308 for CVE-2026-46333",
"url": "https://bugzilla.suse.com/1265308"
},
{
"category": "external",
"summary": "SUSE Bug 1265384 for CVE-2026-46333",
"url": "https://bugzilla.suse.com/1265384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.3:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.3:kernel-source-rt-5.14.21-150400.15.164.1.noarch",
"SUSE Linux Enterprise Micro 5.4:kernel-rt-5.14.21-150400.15.164.1.x86_64",
"SUSE Linux Enterprise Micro 5.4:kernel-source-rt-5.14.21-150400.15.164.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T13:22:30Z",
"details": "important"
}
],
"title": "CVE-2026-46333"
}
]
}
SUSE-SU-2026:1904-1
Vulnerability from csaf_suse - Published: 2026-05-17 15:22 - Updated: 2026-05-17 15:22Summary
Recommended update for initial livepatch
Severity
Important
Notes
Title of the patch: Recommended update for initial livepatch
Description of the patch: This update provides the initial livepatch for this kernel update.
This update does not contain any fixes and will be updated with livepatches later.
Patchnames: SUSE-2026-1904,SUSE-SLE-Live-Patching-12-SP5-2026-1904,SUSE-SLE-SERVER-12-SP5-LTSS-2026-1904,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1904
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
References
4 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Recommended update for initial livepatch",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update provides the initial livepatch for this kernel update.\nThis update does not contain any fixes and will be updated with livepatches later.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1904,SUSE-SLE-Live-Patching-12-SP5-2026-1904,SUSE-SLE-SERVER-12-SP5-LTSS-2026-1904,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1904",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1904-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1904-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261904-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1904-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046514.html"
}
],
"title": "Recommended update for initial livepatch",
"tracking": {
"current_release_date": "2026-05-17T15:22:33Z",
"generator": {
"date": "2026-05-17T15:22:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1904-1",
"initial_release_date": "2026-05-17T15:22:33Z",
"revision_history": [
{
"date": "2026-05-17T15:22:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.307.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.307.1.aarch64",
"product_id": "cluster-md-kmp-default-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.307.1.aarch64",
"product": {
"name": "dlm-kmp-default-4.12.14-122.307.1.aarch64",
"product_id": "dlm-kmp-default-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.307.1.aarch64",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.307.1.aarch64",
"product_id": "gfs2-kmp-default-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-default-4.12.14-122.307.1.aarch64",
"product_id": "kernel-default-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-default-base-4.12.14-122.307.1.aarch64",
"product_id": "kernel-default-base-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-default-devel-4.12.14-122.307.1.aarch64",
"product_id": "kernel-default-devel-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-default-extra-4.12.14-122.307.1.aarch64",
"product_id": "kernel-default-extra-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.307.1.aarch64",
"product_id": "kernel-default-kgraft-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-obs-build-4.12.14-122.307.1.aarch64",
"product_id": "kernel-obs-build-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-obs-qa-4.12.14-122.307.1.aarch64",
"product_id": "kernel-obs-qa-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-syms-4.12.14-122.307.1.aarch64",
"product_id": "kernel-syms-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-vanilla-4.12.14-122.307.1.aarch64",
"product_id": "kernel-vanilla-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.307.1.aarch64",
"product_id": "kernel-vanilla-base-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.307.1.aarch64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.307.1.aarch64",
"product_id": "kernel-vanilla-devel-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.307.1.aarch64",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.307.1.aarch64",
"product_id": "kselftests-kmp-default-4.12.14-122.307.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.307.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.307.1.aarch64",
"product_id": "ocfs2-kmp-default-4.12.14-122.307.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-4.12.14-122.307.1.noarch",
"product": {
"name": "kernel-devel-4.12.14-122.307.1.noarch",
"product_id": "kernel-devel-4.12.14-122.307.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-4.12.14-122.307.1.noarch",
"product": {
"name": "kernel-docs-4.12.14-122.307.1.noarch",
"product_id": "kernel-docs-4.12.14-122.307.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-4.12.14-122.307.1.noarch",
"product": {
"name": "kernel-docs-html-4.12.14-122.307.1.noarch",
"product_id": "kernel-docs-html-4.12.14-122.307.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-4.12.14-122.307.1.noarch",
"product": {
"name": "kernel-macros-4.12.14-122.307.1.noarch",
"product_id": "kernel-macros-4.12.14-122.307.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-4.12.14-122.307.1.noarch",
"product": {
"name": "kernel-source-4.12.14-122.307.1.noarch",
"product_id": "kernel-source-4.12.14-122.307.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-4.12.14-122.307.1.noarch",
"product": {
"name": "kernel-source-vanilla-4.12.14-122.307.1.noarch",
"product_id": "kernel-source-vanilla-4.12.14-122.307.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.307.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.307.1.ppc64le",
"product_id": "cluster-md-kmp-default-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.307.1.ppc64le",
"product": {
"name": "dlm-kmp-default-4.12.14-122.307.1.ppc64le",
"product_id": "dlm-kmp-default-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.307.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.307.1.ppc64le",
"product_id": "gfs2-kmp-default-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-default-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-default-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-default-base-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-default-base-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-default-devel-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-default-devel-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-default-extra-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-default-extra-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-default-kgraft-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-default-kgraft-devel-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-obs-build-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-obs-build-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-obs-qa-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-obs-qa-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-syms-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-syms-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-vanilla-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-vanilla-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-vanilla-base-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.307.1.ppc64le",
"product_id": "kernel-vanilla-devel-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.ppc64le",
"product": {
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.ppc64le",
"product_id": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.307.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.307.1.ppc64le",
"product_id": "kselftests-kmp-default-4.12.14-122.307.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.307.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.307.1.ppc64le",
"product_id": "ocfs2-kmp-default-4.12.14-122.307.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.307.1.s390x",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.307.1.s390x",
"product_id": "cluster-md-kmp-default-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.307.1.s390x",
"product": {
"name": "dlm-kmp-default-4.12.14-122.307.1.s390x",
"product_id": "dlm-kmp-default-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.307.1.s390x",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.307.1.s390x",
"product_id": "gfs2-kmp-default-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-default-4.12.14-122.307.1.s390x",
"product_id": "kernel-default-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-default-base-4.12.14-122.307.1.s390x",
"product_id": "kernel-default-base-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-default-devel-4.12.14-122.307.1.s390x",
"product_id": "kernel-default-devel-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-default-extra-4.12.14-122.307.1.s390x",
"product_id": "kernel-default-extra-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.307.1.s390x",
"product_id": "kernel-default-kgraft-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.s390x",
"product_id": "kernel-default-kgraft-devel-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-man-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-default-man-4.12.14-122.307.1.s390x",
"product_id": "kernel-default-man-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-obs-build-4.12.14-122.307.1.s390x",
"product_id": "kernel-obs-build-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-obs-qa-4.12.14-122.307.1.s390x",
"product_id": "kernel-obs-qa-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-syms-4.12.14-122.307.1.s390x",
"product_id": "kernel-syms-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-vanilla-4.12.14-122.307.1.s390x",
"product_id": "kernel-vanilla-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.307.1.s390x",
"product_id": "kernel-vanilla-base-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.307.1.s390x",
"product_id": "kernel-vanilla-devel-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-zfcpdump-4.12.14-122.307.1.s390x",
"product_id": "kernel-zfcpdump-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-man-4.12.14-122.307.1.s390x",
"product": {
"name": "kernel-zfcpdump-man-4.12.14-122.307.1.s390x",
"product_id": "kernel-zfcpdump-man-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.s390x",
"product": {
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.s390x",
"product_id": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.307.1.s390x",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.307.1.s390x",
"product_id": "kselftests-kmp-default-4.12.14-122.307.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.307.1.s390x",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.307.1.s390x",
"product_id": "ocfs2-kmp-default-4.12.14-122.307.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-4.12.14-122.307.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-4.12.14-122.307.1.x86_64",
"product_id": "cluster-md-kmp-default-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-4.12.14-122.307.1.x86_64",
"product": {
"name": "dlm-kmp-default-4.12.14-122.307.1.x86_64",
"product_id": "dlm-kmp-default-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-4.12.14-122.307.1.x86_64",
"product": {
"name": "gfs2-kmp-default-4.12.14-122.307.1.x86_64",
"product_id": "gfs2-kmp-default-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-default-4.12.14-122.307.1.x86_64",
"product_id": "kernel-default-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-default-base-4.12.14-122.307.1.x86_64",
"product_id": "kernel-default-base-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-default-devel-4.12.14-122.307.1.x86_64",
"product_id": "kernel-default-devel-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-default-extra-4.12.14-122.307.1.x86_64",
"product_id": "kernel-default-extra-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-default-kgraft-4.12.14-122.307.1.x86_64",
"product_id": "kernel-default-kgraft-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.x86_64",
"product_id": "kernel-default-kgraft-devel-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-kvmsmall-4.12.14-122.307.1.x86_64",
"product_id": "kernel-kvmsmall-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-base-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-kvmsmall-base-4.12.14-122.307.1.x86_64",
"product_id": "kernel-kvmsmall-base-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-4.12.14-122.307.1.x86_64",
"product_id": "kernel-kvmsmall-devel-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-obs-build-4.12.14-122.307.1.x86_64",
"product_id": "kernel-obs-build-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-obs-qa-4.12.14-122.307.1.x86_64",
"product_id": "kernel-obs-qa-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-syms-4.12.14-122.307.1.x86_64",
"product_id": "kernel-syms-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-vanilla-4.12.14-122.307.1.x86_64",
"product_id": "kernel-vanilla-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-base-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-vanilla-base-4.12.14-122.307.1.x86_64",
"product_id": "kernel-vanilla-base-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-vanilla-devel-4.12.14-122.307.1.x86_64",
"product": {
"name": "kernel-vanilla-devel-4.12.14-122.307.1.x86_64",
"product_id": "kernel-vanilla-devel-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.x86_64",
"product": {
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.x86_64",
"product_id": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-4.12.14-122.307.1.x86_64",
"product": {
"name": "kselftests-kmp-default-4.12.14-122.307.1.x86_64",
"product_id": "kselftests-kmp-default-4.12.14-122.307.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-4.12.14-122.307.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-4.12.14-122.307.1.x86_64",
"product_id": "ocfs2-kmp-default-4.12.14-122.307.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-4.12.14-122.307.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.307.1.ppc64le"
},
"product_reference": "kernel-default-kgraft-4.12.14-122.307.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-4.12.14-122.307.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.307.1.s390x"
},
"product_reference": "kernel-default-kgraft-4.12.14-122.307.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-4.12.14-122.307.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-4.12.14-122.307.1.x86_64"
},
"product_reference": "kernel-default-kgraft-4.12.14-122.307.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.307.1.ppc64le"
},
"product_reference": "kernel-default-kgraft-devel-4.12.14-122.307.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.307.1.s390x"
},
"product_reference": "kernel-default-kgraft-devel-4.12.14-122.307.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-kgraft-devel-4.12.14-122.307.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kernel-default-kgraft-devel-4.12.14-122.307.1.x86_64"
},
"product_reference": "kernel-default-kgraft-devel-4.12.14-122.307.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_307-default-1-8.5.1.ppc64le"
},
"product_reference": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_307-default-1-8.5.1.s390x"
},
"product_reference": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_307-default-1-8.5.1.x86_64"
},
"product_reference": "kgraft-patch-4_12_14-122_307-default-1-8.5.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
}
]
}
}
SUSE-SU-2026:1907-1
Vulnerability from csaf_suse - Published: 2026-05-17 17:12 - Updated: 2026-05-17 17:12Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 15 SP5 kernel was updated to fix the following issue:
Security issues fixed:
- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).
- CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (bsc#1264450).
- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache (bsc#1264013).
- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).
- CVE-2026-46333: Fixed logic bug in the Linux kernel's __ptrace_may_access() function (bsc#1265308).
Other issues fixed:
- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).
Patchnames: SUSE-2026-1907,SUSE-SLE-Micro-5.5-2026-1907,SUSE-SLE-Module-Live-Patching-15-SP5-2026-1907,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1907,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1907,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1907,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1907
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.4 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.8 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
34 references
| URL | Category |
|---|---|
| https://www.suse.com/support/security/rating/ | external |
| https://ftp.suse.com/pub/projects/security/csaf/s… | self |
| https://www.suse.com/support/update/announcement/… | self |
| https://lists.suse.com/pipermail/sle-updates/2026… | self |
| https://bugzilla.suse.com/1264013 | self |
| https://bugzilla.suse.com/1264449 | self |
| https://bugzilla.suse.com/1264450 | self |
| https://bugzilla.suse.com/1265209 | self |
| https://bugzilla.suse.com/1265308 | self |
| https://www.suse.com/security/cve/CVE-2025-54518/ | self |
| https://www.suse.com/security/cve/CVE-2026-43284/ | self |
| https://www.suse.com/security/cve/CVE-2026-43500/ | self |
| https://www.suse.com/security/cve/CVE-2026-46300/ | self |
| https://www.suse.com/security/cve/CVE-2026-46333/ | self |
| https://www.suse.com/security/cve/CVE-2025-54518 | external |
| https://bugzilla.suse.com/1264013 | external |
| https://bugzilla.suse.com/1264066 | external |
| https://bugzilla.suse.com/1264096 | external |
| https://www.suse.com/security/cve/CVE-2026-43284 | external |
| https://bugzilla.suse.com/1264449 | external |
| https://bugzilla.suse.com/1264459 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-43500 | external |
| https://bugzilla.suse.com/1264450 | external |
| https://bugzilla.suse.com/1264458 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-46300 | external |
| https://bugzilla.suse.com/1265209 | external |
| https://bugzilla.suse.com/1265226 | external |
| https://bugzilla.suse.com/1265312 | external |
| https://bugzilla.suse.com/1265383 | external |
| https://www.suse.com/security/cve/CVE-2026-46333 | external |
| https://bugzilla.suse.com/1265308 | external |
| https://bugzilla.suse.com/1265384 | external |
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP5 kernel was updated to fix the following issue:\n\nSecurity issues fixed:\n \n- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).\n- CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present (bsc#1264450).\n- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2\u0027s op cache (bsc#1264013).\n- CVE-2026-46300: net: skbuff: propagate shared-frag marker through pskb_copy() (bsc#1265209).\n- CVE-2026-46333: Fixed logic bug in the Linux kernel\u0027s __ptrace_may_access() function (bsc#1265308).\n\nOther issues fixed:\n\n- io-wq: check that the predecessor is hashed in io_wq_remove_pending() (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-1907,SUSE-SLE-Micro-5.5-2026-1907,SUSE-SLE-Module-Live-Patching-15-SP5-2026-1907,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1907,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1907,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1907,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1907",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1907-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:1907-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261907-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:1907-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046513.html"
},
{
"category": "self",
"summary": "SUSE Bug 1264013",
"url": "https://bugzilla.suse.com/1264013"
},
{
"category": "self",
"summary": "SUSE Bug 1264449",
"url": "https://bugzilla.suse.com/1264449"
},
{
"category": "self",
"summary": "SUSE Bug 1264450",
"url": "https://bugzilla.suse.com/1264450"
},
{
"category": "self",
"summary": "SUSE Bug 1265209",
"url": "https://bugzilla.suse.com/1265209"
},
{
"category": "self",
"summary": "SUSE Bug 1265308",
"url": "https://bugzilla.suse.com/1265308"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-54518 page",
"url": "https://www.suse.com/security/cve/CVE-2025-54518/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-43284 page",
"url": "https://www.suse.com/security/cve/CVE-2026-43284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-43500 page",
"url": "https://www.suse.com/security/cve/CVE-2026-43500/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46300 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46300/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46333 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46333/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-05-17T17:12:43Z",
"generator": {
"date": "2026-05-17T17:12:43Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:1907-1",
"initial_release_date": "2026-05-17T17:12:43Z",
"revision_history": [
{
"date": "2026-05-17T17:12:43Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "cluster-md-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product_id": "cluster-md-kmp-64kb-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dlm-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product_id": "dlm-kmp-64kb-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product_id": "dlm-kmp-default-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-allwinner-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-allwinner-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-allwinner-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-altera-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-altera-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-altera-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amazon-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-amazon-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-amazon-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amd-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-amd-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-amd-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-amlogic-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-amlogic-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-amlogic-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apm-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-apm-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-apm-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-apple-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-apple-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-apple-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-arm-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-arm-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-arm-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-broadcom-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-broadcom-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-broadcom-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-cavium-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-cavium-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-cavium-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-exynos-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-exynos-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-exynos-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-freescale-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-freescale-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-freescale-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-hisilicon-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-hisilicon-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-hisilicon-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-lg-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-lg-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-lg-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-marvell-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-marvell-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-marvell-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-mediatek-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-mediatek-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-mediatek-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-nvidia-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-nvidia-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-nvidia-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-qcom-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-qcom-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-qcom-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-renesas-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-renesas-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-renesas-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-rockchip-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-rockchip-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-rockchip-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-socionext-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-socionext-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-socionext-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-sprd-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-sprd-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-sprd-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "dtb-xilinx-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "dtb-xilinx-5.14.21-150500.55.163.1.aarch64",
"product_id": "dtb-xilinx-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "gfs2-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product_id": "gfs2-kmp-64kb-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-64kb-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-64kb-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-64kb-devel-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-64kb-devel-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-extra-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-64kb-extra-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-64kb-extra-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-optional-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-64kb-optional-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-64kb-optional-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-default-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-default-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"product_id": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-default-devel-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-default-extra-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-default-optional-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-obs-build-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-obs-qa-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kernel-syms-5.14.21-150500.55.163.1.aarch64",
"product_id": "kernel-syms-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kselftests-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product_id": "kselftests-kmp-64kb-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "ocfs2-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product_id": "ocfs2-kmp-64kb-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "reiserfs-kmp-64kb-5.14.21-150500.55.163.1.aarch64",
"product_id": "reiserfs-kmp-64kb-5.14.21-150500.55.163.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.aarch64",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.163.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-5.14.21-150500.55.163.1.noarch",
"product": {
"name": "kernel-devel-5.14.21-150500.55.163.1.noarch",
"product_id": "kernel-devel-5.14.21-150500.55.163.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-5.14.21-150500.55.163.1.noarch",
"product": {
"name": "kernel-docs-5.14.21-150500.55.163.1.noarch",
"product_id": "kernel-docs-5.14.21-150500.55.163.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-docs-html-5.14.21-150500.55.163.1.noarch",
"product": {
"name": "kernel-docs-html-5.14.21-150500.55.163.1.noarch",
"product_id": "kernel-docs-html-5.14.21-150500.55.163.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-5.14.21-150500.55.163.1.noarch",
"product": {
"name": "kernel-macros-5.14.21-150500.55.163.1.noarch",
"product_id": "kernel-macros-5.14.21-150500.55.163.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-5.14.21-150500.55.163.1.noarch",
"product": {
"name": "kernel-source-5.14.21-150500.55.163.1.noarch",
"product_id": "kernel-source-5.14.21-150500.55.163.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-vanilla-5.14.21-150500.55.163.1.noarch",
"product": {
"name": "kernel-source-vanilla-5.14.21-150500.55.163.1.noarch",
"product_id": "kernel-source-vanilla-5.14.21-150500.55.163.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product_id": "dlm-kmp-default-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-default-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-default-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.ppc64le",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.ppc64le",
"product_id": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.ppc64le",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.ppc64le",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-default-devel-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-default-extra-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-default-optional-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-obs-build-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-obs-qa-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kernel-syms-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kernel-syms-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.163.1.ppc64le"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.ppc64le",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.163.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.s390x",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.s390x",
"product_id": "dlm-kmp-default-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.s390x",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-default-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-default-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-default-devel-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-default-extra-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-default-optional-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-obs-build-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-obs-qa-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-syms-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-syms-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kernel-zfcpdump-5.14.21-150500.55.163.1.s390x",
"product_id": "kernel-zfcpdump-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.s390x",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.s390x",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.163.1.s390x"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.s390x",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.s390x",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.163.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "cluster-md-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product_id": "cluster-md-kmp-default-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "dlm-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product_id": "dlm-kmp-default-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "gfs2-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product_id": "gfs2-kmp-default-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-default-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-default-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"product": {
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"product_id": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"product": {
"name": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"product_id": "kernel-default-base-rebuild-5.14.21-150500.55.163.1.150500.6.75.7.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-default-devel-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-default-devel-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-default-extra-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-default-extra-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-default-livepatch-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-default-livepatch-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-default-livepatch-devel-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-optional-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-default-optional-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-default-optional-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-vdso-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-default-vdso-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-default-vdso-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-kvmsmall-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-kvmsmall-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-kvmsmall-devel-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-kvmsmall-vdso-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-kvmsmall-vdso-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-kvmsmall-vdso-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_55_163-default-1-150500.11.5.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-build-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-obs-build-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-obs-build-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-obs-qa-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-obs-qa-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kernel-syms-5.14.21-150500.55.163.1.x86_64",
"product_id": "kernel-syms-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "kselftests-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product_id": "kselftests-kmp-default-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "ocfs2-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product_id": "ocfs2-kmp-default-5.14.21-150500.55.163.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product": {
"name": "reiserfs-kmp-default-5.14.21-150500.55.163.1.x86_64",
"product_id": "reiserfs-kmp-default-5.14.21-150500.55.163.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Micro 5.5",
"product": {
"name": "SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-micro:5.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.163.1.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64"
},
"product_reference": "kernel-default-5.14.21-150500.55.163.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.163.1.ppc64le as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le"
},
"product_reference": "kernel-default-5.14.21-150500.55.163.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.163.1.s390x as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x"
},
"product_reference": "kernel-default-5.14.21-150500.55.163.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-5.14.21-150500.55.163.1.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64"
},
"product_reference": "kernel-default-5.14.21-150500.55.163.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64 as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64"
},
"product_reference": "kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-5.14.21-150500.55.163.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch"
},
"product_reference": "kernel-macros-5.14.21-150500.55.163.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-5.14.21-150500.55.163.1.noarch as component of SUSE Linux Enterprise Micro 5.5",
"product_id": "SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
},
"product_reference": "kernel-source-5.14.21-150500.55.163.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Micro 5.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54518",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-54518"
}
],
"notes": [
{
"category": "general",
"text": "Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructions executed at a different privilege level, potentially resulting in privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-54518",
"url": "https://www.suse.com/security/cve/CVE-2025-54518"
},
{
"category": "external",
"summary": "SUSE Bug 1264013 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264013"
},
{
"category": "external",
"summary": "SUSE Bug 1264066 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264066"
},
{
"category": "external",
"summary": "SUSE Bug 1264096 for CVE-2025-54518",
"url": "https://bugzilla.suse.com/1264096"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T17:12:43Z",
"details": "important"
}
],
"title": "CVE-2025-54518"
},
{
"cve": "CVE-2026-43284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-43284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: esp: avoid in-place decrypt on shared skb frags\n\nMSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP\nmarks such skbs with SKBFL_SHARED_FRAG after skb_splice_from_iter(),\nso later paths that may modify packet data can first make a private\ncopy. The IPv4/IPv6 datagram append paths did not set this flag when\nsplicing pages into UDP skbs.\n\nThat leaves an ESP-in-UDP packet made from shared pipe pages looking\nlike an ordinary uncloned nonlinear skb. ESP input then takes the no-COW\nfast path for uncloned skbs without a frag_list and decrypts in place\nover data that is not owned privately by the skb.\n\nMark IPv4/IPv6 datagram splice frags with SKBFL_SHARED_FRAG, matching\nTCP. Also make ESP input fall back to skb_cow_data() when the flag is\npresent, so ESP does not decrypt externally backed frags in place.\nPrivate nonlinear skb frags still use the existing fast path.\n\nThis intentionally does not change ESP output. In esp_output_head(),\nthe path that appends the ESP trailer to existing skb tailroom without\ncalling skb_cow_data() is not reachable for nonlinear skbs:\nskb_tailroom() returns zero when skb-\u003edata_len is nonzero, while ESP\ntailen is positive. Thus ESP output will either use the separate\ndestination-frag path or fall back to skb_cow_data().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-43284",
"url": "https://www.suse.com/security/cve/CVE-2026-43284"
},
{
"category": "external",
"summary": "SUSE Bug 1264449 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1264449"
},
{
"category": "external",
"summary": "SUSE Bug 1264459 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1264459"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-43284",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T17:12:43Z",
"details": "important"
}
],
"title": "CVE-2026-43284"
},
{
"cve": "CVE-2026-43500",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-43500"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrxrpc: Also unshare DATA/RESPONSE packets when paged frags are present\n\nThe DATA-packet handler in rxrpc_input_call_event() and the RESPONSE\nhandler in rxrpc_verify_response() copy the skb to a linear one before\ncalling into the security ops only when skb_cloned() is true. An skb\nthat is not cloned but still carries externally-owned paged fragments\n(e.g. SKBFL_SHARED_FRAG set by splice() into a UDP socket via\n__ip_append_data, or a chained skb_has_frag_list()) falls through to\nthe in-place decryption path, which binds the frag pages directly into\nthe AEAD/skcipher SGL via skb_to_sgvec().\n\nExtend the gate to also unshare when skb_has_frag_list() or\nskb_has_shared_frag() is true. This catches the splice-loopback vector\nand other externally-shared frag sources while preserving the\nzero-copy fast path for skbs whose frags are kernel-private (e.g. NIC\npage_pool RX, GRO). The OOM/trace handling already in place is reused.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-43500",
"url": "https://www.suse.com/security/cve/CVE-2026-43500"
},
{
"category": "external",
"summary": "SUSE Bug 1264450 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1264450"
},
{
"category": "external",
"summary": "SUSE Bug 1264458 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1264458"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-43500",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T17:12:43Z",
"details": "important"
}
],
"title": "CVE-2026-43500"
},
{
"cve": "CVE-2026-46300",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46300"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46300",
"url": "https://www.suse.com/security/cve/CVE-2026-46300"
},
{
"category": "external",
"summary": "SUSE Bug 1265209 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265209"
},
{
"category": "external",
"summary": "SUSE Bug 1265226 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265226"
},
{
"category": "external",
"summary": "SUSE Bug 1265312 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265312"
},
{
"category": "external",
"summary": "SUSE Bug 1265383 for CVE-2026-46300",
"url": "https://bugzilla.suse.com/1265383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T17:12:43Z",
"details": "important"
}
],
"title": "CVE-2026-46300"
},
{
"cve": "CVE-2026-46333",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46333"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nptrace: slightly saner \u0027get_dumpable()\u0027 logic\n\nThe \u0027dumpability\u0027 of a task is fundamentally about the memory image of\nthe task - the concept comes from whether it can core dump or not - and\nmakes no sense when you don\u0027t have an associated mm.\n\nAnd almost all users do in fact use it only for the case where the task\nhas a mm pointer.\n\nBut we have one odd special case: ptrace_may_access() uses \u0027dumpable\u0027 to\ncheck various other things entirely independently of the MM (typically\nexplicitly using flags like PTRACE_MODE_READ_FSCREDS). Including for\nthreads that no longer have a VM (and maybe never did, like most kernel\nthreads).\n\nIt\u0027s not what this flag was designed for, but it is what it is.\n\nThe ptrace code does check that the uid/gid matches, so you do have to\nbe uid-0 to see kernel thread details, but this means that the\ntraditional \"drop capabilities\" model doesn\u0027t make any difference for\nthis all.\n\nMake it all make a *bit* more sense by saying that if you don\u0027t have a\nMM pointer, we\u0027ll use a cached \"last dumpability\" flag if the thread\never had a MM (it will be zero for kernel threads since it is never\nset), and require a proper CAP_SYS_PTRACE capability to override.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46333",
"url": "https://www.suse.com/security/cve/CVE-2026-46333"
},
{
"category": "external",
"summary": "SUSE Bug 1265308 for CVE-2026-46333",
"url": "https://bugzilla.suse.com/1265308"
},
{
"category": "external",
"summary": "SUSE Bug 1265384 for CVE-2026-46333",
"url": "https://bugzilla.suse.com/1265384"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.ppc64le",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.s390x",
"SUSE Linux Enterprise Micro 5.5:kernel-default-5.14.21-150500.55.163.1.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.aarch64",
"SUSE Linux Enterprise Micro 5.5:kernel-default-base-5.14.21-150500.55.163.1.150500.6.75.7.x86_64",
"SUSE Linux Enterprise Micro 5.5:kernel-macros-5.14.21-150500.55.163.1.noarch",
"SUSE Linux Enterprise Micro 5.5:kernel-source-5.14.21-150500.55.163.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-17T17:12:43Z",
"details": "important"
}
],
"title": "CVE-2026-46333"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…