Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-33186 (GCVE-0-2026-33186)
Vulnerability from cvelistv5 – Published: 2026-03-20 22:23 – Updated: 2026-06-30 02:41
VLAI
EPSS
Title
gRPC-Go has an authorization bypass via missing leading slash in :path
Summary
gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, "deny" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback "allow" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific "deny" rules for canonical paths but allows other requests by default (a fallback "allow" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.
Severity
9.1 (Critical)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
Assigner
References
161 references
Impacted products
151 products
| Vendor | Product | Version | |
|---|---|---|---|
| grpc | grpc-go |
Affected:
< 1.79.3
|
|
| Red Hat | Red Hat OpenShift Container Platform 4.18 |
cpe:/a:redhat:openshift:4.18::el8 cpe:/a:redhat:openshift:4.18::el9 |
|
| Red Hat | Red Hat Satellite 6.16 for RHEL 8 |
cpe:/a:redhat:satellite:6.16::el8 cpe:/a:redhat:satellite_capsule:6.16::el8 cpe:/a:redhat:satellite_maintenance:6.16::el8 cpe:/a:redhat:satellite_utils:6.16::el8 |
|
| Red Hat | Cryostat 4 on RHEL 9 |
cpe:/a:redhat:cryostat:4::el9 |
|
| Red Hat | Red Hat OpenStack Platform 17.1 |
cpe:/a:redhat:openstack:17.1 cpe:/a:redhat:openstack:17.1::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.16 |
cpe:/a:redhat:openshift:4.16::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.19 |
cpe:/a:redhat:openshift:4.19::el9 |
|
| Red Hat | Red Hat Satellite 6.16 for RHEL 9 |
cpe:/a:redhat:satellite:6.16::el9 cpe:/a:redhat:satellite_capsule:6.16::el9 cpe:/a:redhat:satellite_maintenance:6.16::el9 cpe:/a:redhat:satellite_utils:6.16::el9 |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v. 10.0) |
cpe:/o:redhat:enterprise_linux_eus:10.0 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 10) |
cpe:/o:redhat:enterprise_linux:10.2 |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 8) |
cpe:/a:redhat:enterprise_linux:8::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.4) |
cpe:/a:redhat:rhel_eus:9.4::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::appstream |
|
| Red Hat | Red Hat Enterprise Linux AppStream (v. 9) |
cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat CodeReady Linux Builder EUS (v.9.6) |
cpe:/a:redhat:rhel_eus:9.6::crb |
|
| Red Hat | Red Hat Enterprise Linux CodeReady Linux Builder (v. 9) |
cpe:/a:redhat:enterprise_linux:9::crb |
|
| Red Hat | DevWorkspace Operator 0.4 |
cpe:/a:redhat:devworkspace:0.40::el9 |
|
| Red Hat | Multicluster Global Hub 1.3.4 |
cpe:/a:redhat:multicluster_globalhub:1.3::el9 |
|
| Red Hat | Multicluster Global Hub 1.4.5 |
cpe:/a:redhat:multicluster_globalhub:1.4::el9 |
|
| Red Hat | Multicluster Global Hub 1.5.4 |
cpe:/a:redhat:multicluster_globalhub:1.5::el9 |
|
| Red Hat | Multicluster Global Hub 1.6.2 |
cpe:/a:redhat:multicluster_globalhub:1.6::el9 |
|
| Red Hat | Network Observability (NETOBSERV) 1.11.2 |
cpe:/a:redhat:network_observ_optr:1.11::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.4 |
cpe:/a:redhat:openshift_api_data_protection:1.4::el9 |
|
| Red Hat | OpenShift API for Data Protection 1.5 |
cpe:/a:redhat:openshift_api_data_protection:1.5::el9 |
|
| Red Hat | OpenShift Compliance Operator 1 |
cpe:/a:redhat:openshift_compliance_operator:1::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.13 |
cpe:/a:redhat:acm:2.13::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.14 |
cpe:/a:redhat:acm:2.14::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.15 |
cpe:/a:redhat:acm:2.15::el9 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2.16 |
cpe:/a:redhat:acm:2.16::el9 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.10 |
cpe:/a:redhat:advanced_cluster_security:4.10::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.8 |
cpe:/a:redhat:advanced_cluster_security:4.8::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.9 |
cpe:/a:redhat:advanced_cluster_security:4.9::el8 |
|
| Red Hat | Red Hat Container Native Virtualization 4.18 |
cpe:/a:redhat:container_native_virtualization:4.18::el9 |
|
| Red Hat | Red Hat Container Native Virtualization 4.19 |
cpe:/a:redhat:container_native_virtualization:4.19::el9 |
|
| Red Hat | Red Hat Container Native Virtualization 4.20 |
cpe:/a:redhat:container_native_virtualization:4.20::el9 |
|
| Red Hat | Red Hat Container Native Virtualization 4.21 |
cpe:/a:redhat:container_native_virtualization:4.21::el9 |
|
| Red Hat | Red Hat Developer Hub 1.8 |
cpe:/a:redhat:rhdh:1.8::el9 |
|
| Red Hat | Red Hat Developer Hub 1.9 |
cpe:/a:redhat:rhdh:1.9::el9 |
|
| Red Hat | Red Hat Lightspeed (formerly Insights) for Runtimes 1 |
cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9 |
|
| Red Hat | Red Hat OpenShift AI 2.25 |
cpe:/a:redhat:openshift_ai:2.25::el9 |
|
| Red Hat | Red Hat OpenShift AI 3.3 |
cpe:/a:redhat:openshift_ai:3.3::el9 |
|
| Red Hat | Red Hat OpenShift Builds 1.6.5 |
cpe:/a:redhat:openshift_builds:1.6::el9 |
|
| Red Hat | Red Hat OpenShift Builds 1.7.3 |
cpe:/a:redhat:openshift_builds:1.7::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.12 |
cpe:/a:redhat:openshift:4.12::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.13 |
cpe:/a:redhat:openshift:4.13::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.14 |
cpe:/a:redhat:openshift:4.14::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.15 |
cpe:/a:redhat:openshift:4.15::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.17 |
cpe:/a:redhat:openshift:4.17::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.20 |
cpe:/a:redhat:openshift:4.20::el9 |
|
| Red Hat | Red Hat OpenShift Container Platform 4.21 |
cpe:/a:redhat:openshift:4.21::el9 |
|
| Red Hat | Red Hat OpenShift Dev Spaces 3.27 |
cpe:/a:redhat:openshift_devspaces:3.27::el9 |
|
| Red Hat | Red Hat OpenShift GitOps 1.18 |
cpe:/a:redhat:openshift_gitops:1.18::el8 |
|
| Red Hat | Red Hat OpenShift GitOps 1.19 |
cpe:/a:redhat:openshift_gitops:1.19::el8 |
|
| Red Hat | Red Hat OpenShift Pipelines 1.21 |
cpe:/a:redhat:openshift_pipelines:1.21::el9 |
|
| Red Hat | Red Hat OpenShift Pipelines 1.2 |
cpe:/a:redhat:openshift_pipelines:1.20::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 2.6 |
cpe:/a:redhat:service_mesh:2.6::el8 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.0 |
cpe:/a:redhat:service_mesh:3.0::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.1 |
cpe:/a:redhat:service_mesh:3.1::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.2 |
cpe:/a:redhat:service_mesh:3.2::el9 |
|
| Red Hat | Red Hat OpenShift Service Mesh 3.3 |
cpe:/a:redhat:service_mesh:3.3::el9 |
|
| Red Hat | Red Hat OpenShift distributed tracing 3.9.3 |
cpe:/a:redhat:openshift_distributed_tracing:3.9::el9 |
|
| Red Hat | Red Hat Openshift Data Foundation 4.16 |
cpe:/a:redhat:openshift_data_foundation:4.16::el9 |
|
| Red Hat | Red Hat Openshift Data Foundation 4.18 |
cpe:/a:redhat:openshift_data_foundation:4.18::el9 |
|
| Red Hat | Red Hat Openshift Data Foundation 4.19 |
cpe:/a:redhat:openshift_data_foundation:4.19::el9 |
|
| Red Hat | Red Hat Openshift Data Foundation 4.2 |
cpe:/a:redhat:openshift_data_foundation:4.20::el9 |
|
| Red Hat | Red Hat Quay 3.12 |
cpe:/a:redhat:quay:3.12::el8 |
|
| Red Hat | Red Hat Quay 3.14 |
cpe:/a:redhat:quay:3.14::el8 |
|
| Red Hat | Red Hat Quay 3.15 |
cpe:/a:redhat:quay:3.15::el8 |
|
| Red Hat | Red Hat Quay 3.16 |
cpe:/a:redhat:quay:3.16::el9 |
|
| Red Hat | Red Hat Quay 3.17 |
cpe:/a:redhat:quay:3.17::el9 |
|
| Red Hat | Red Hat Quay 3.1 |
cpe:/a:redhat:quay:3.10::el8 |
|
| Red Hat | Red Hat Quay 3.9 |
cpe:/a:redhat:quay:3.9::el8 |
|
| Red Hat | Red Hat Trusted Artifact Signer 1.3 |
cpe:/a:redhat:trusted_artifact_signer:1.3::el9 |
|
| Red Hat | Red Hat Web Terminal 1.13 |
cpe:/a:redhat:webterminal:1.13::el9 |
|
| Red Hat | Red Hat Web Terminal 1.14 |
cpe:/a:redhat:webterminal:1.14::el9 |
|
| Red Hat | Red Hat Web Terminal 1.15 |
cpe:/a:redhat:webterminal:1.15::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.10 |
cpe:/a:redhat:multicluster_engine:2.10::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.11 |
cpe:/a:redhat:multicluster_engine:2.11::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.6 |
cpe:/a:redhat:multicluster_engine:2.6::el8 |
|
| Red Hat | multicluster engine for Kubernetes 2.8 |
cpe:/a:redhat:multicluster_engine:2.8::el9 |
|
| Red Hat | multicluster engine for Kubernetes 2.9 |
cpe:/a:redhat:multicluster_engine:2.9::el9 |
|
| Red Hat | Assisted Installer for Red Hat OpenShift Container Platform 2 |
cpe:/a:redhat:assisted_installer:2 |
|
| Red Hat | cert-manager Operator for Red Hat OpenShift |
cpe:/a:redhat:cert_manager:1 |
|
| Red Hat | Cryostat 4 |
cpe:/a:redhat:cryostat:4 |
|
| Red Hat | Deployment Validation Operator |
cpe:/a:redhat:deployment_validator_operator |
|
| Red Hat | Dynamic Accelerator Slicer Operator for Red Hat OpenShift |
cpe:/a:redhat:dynamic_accelerator_slicer:1 |
|
| Red Hat | ExternalDNS Operator |
cpe:/a:redhat:ext_dns_optr:1 |
|
| Red Hat | File Integrity Operator |
cpe:/a:redhat:openshift_file_integrity_operator:1 |
|
| Red Hat | Gatekeeper 3 |
cpe:/a:redhat:gatekeeper:3 |
|
| Red Hat | Job Set Tech Preview |
cpe:/a:redhat:job_set:0 |
|
| Red Hat | Kernel Module Management Operator for Red Hat Openshift |
cpe:/a:redhat:kernel_module_management:2 |
|
| Red Hat | Kube Descheduler Operator |
cpe:/a:redhat:kube_descheduler_operator:4 |
|
| Red Hat | Leader Worker Set |
cpe:/a:redhat:leader_worker_set:1 |
|
| Red Hat | Logging Subsystem for Red Hat OpenShift |
cpe:/a:redhat:logging:5 |
|
| Red Hat | Logical Volume Manager Storage |
cpe:/a:redhat:lvms:4 |
|
| Red Hat | Migration Toolkit for Applications 8 |
cpe:/a:redhat:migration_toolkit_applications:8 |
|
| Red Hat | Migration Toolkit for Containers |
cpe:/a:redhat:rhmt:1 |
|
| Red Hat | Migration Toolkit for Virtualization |
cpe:/a:redhat:migration_toolkit_virtualization:2 |
|
| Red Hat | Multicluster Engine for Kubernetes |
cpe:/a:redhat:multicluster_engine |
|
| Red Hat | Multicluster Global Hub |
cpe:/a:redhat:multicluster_globalhub |
|
| Red Hat | OpenShift API for Data Protection |
cpe:/a:redhat:openshift_api_data_protection:1 |
|
| Red Hat | OpenShift Developer Tools and Services |
cpe:/a:redhat:ocp_tools |
|
| Red Hat | OpenShift Lightspeed |
cpe:/a:redhat:openshift_lightspeed |
|
| Red Hat | OpenShift Pipelines |
cpe:/a:redhat:openshift_pipelines:1 |
|
| Red Hat | OpenShift Run Once Duration Override Operator |
cpe:/a:redhat:run_once_duration_override_operator:1 |
|
| Red Hat | OpenShift Secondary Scheduler Operator |
cpe:/a:redhat:openshift_secondary_scheduler:1 |
|
| Red Hat | OpenShift Serverless |
cpe:/a:redhat:serverless:1 |
|
| Red Hat | OpenShift Service Mesh 2 |
cpe:/a:redhat:service_mesh:2 |
|
| Red Hat | Red Hat Advanced Cluster Management for Kubernetes 2 |
cpe:/a:redhat:acm:2 |
|
| Red Hat | Red Hat AI Inference Server |
cpe:/a:redhat:ai_inference_server:3 |
|
| Red Hat | Red Hat Ansible Automation Platform 2 |
cpe:/a:redhat:ansible_automation_platform:2 |
|
| Red Hat | Red Hat Build of Podman Desktop |
cpe:/a:redhat:podman_desktop:1 |
|
| Red Hat | Red Hat Build of Podman Desktop - Tech Preview |
cpe:/a:redhat:podman_desktop:0 |
|
| Red Hat | Red Hat Certification Program for Red Hat Enterprise Linux 9 |
cpe:/a:redhat:certifications:9 |
|
| Red Hat | Red Hat Connectivity Link 1 |
cpe:/a:redhat:connectivity_link:1 |
|
| Red Hat | Red Hat Edge Manager 1 |
cpe:/a:redhat:edge_manager:1 |
|
| Red Hat | Red Hat Enterprise Linux 10 |
cpe:/o:redhat:enterprise_linux:10 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 8 |
cpe:/o:redhat:enterprise_linux:8 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
|
| Red Hat | Red Hat Enterprise Linux AI (RHEL AI) 3 |
cpe:/a:redhat:enterprise_linux_ai:3 |
|
| Red Hat | Red Hat OpenShift AI (RHOAI) |
cpe:/a:redhat:openshift_ai |
|
| Red Hat | Red Hat OpenShift Cluster Manager CLI |
cpe:/a:redhat:openshift_cluster_manager_cli:1 |
|
| Red Hat | Red Hat OpenShift Container Platform 4 |
cpe:/a:redhat:openshift:4 |
|
| Red Hat | Red Hat Openshift Data Foundation 4 |
cpe:/a:redhat:openshift_data_foundation:4 |
|
| Red Hat | Red Hat OpenShift GitOps |
cpe:/a:redhat:openshift_gitops:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat OpenStack Platform 16.2 |
cpe:/a:redhat:openstack:16.2 |
|
| Red Hat | Red Hat Quay 3 |
cpe:/a:redhat:quay:3 |
|
| Red Hat | Red Hat Satellite 6 |
cpe:/a:redhat:satellite:6 |
|
| Red Hat | Red Hat Trusted Artifact Signer |
cpe:/a:redhat:trusted_artifact_signer:1 |
|
| Red Hat | Security Profiles Operator |
cpe:/a:redhat:openshift_security_profiles_operator:1 |
|
| Red Hat | Self Node Remediation Operator |
cpe:/a:redhat:workload_availability_snr:0 |
|
| Red Hat | Storage-Based Remediation |
cpe:/a:redhat:workload_availability_sbr:0 |
|
| Red Hat | Zero Trust Workload Identity Manager - Tech Preview |
cpe:/a:redhat:zero_trust_workload_identity_manager:0 |
|
| Red Hat | Builds for Red Hat OpenShift |
cpe:/a:redhat:openshift_builds:1 |
|
| Red Hat | Confidential Compute Attestation |
cpe:/a:redhat:confidential_compute_attestation:1 |
|
| Red Hat | Custom Metric Autoscaler operator for Red Hat Openshift |
cpe:/a:redhat:openshift_custom_metrics_autoscaler:2 |
|
| Red Hat | External Secrets Operator for Red Hat OpenShift |
cpe:/a:redhat:external_secrets_operator:1 |
|
| Red Hat | Machine Deletion Remediation Operator |
cpe:/a:redhat:workload_availability_mdr:0 |
|
| Red Hat | OpenShift Service Mesh 3 |
cpe:/a:redhat:service_mesh:3 |
|
| Red Hat | Power monitoring for Red Hat OpenShift |
cpe:/a:redhat:openshift_power_monitoring |
|
| Red Hat | Red Hat 3scale API Management Platform 2 |
cpe:/a:redhat:red_hat_3scale_amp:2 |
|
| Red Hat | Red Hat Build of Kueue |
cpe:/a:redhat:kueue_operator:1 |
|
| Red Hat | Red Hat OpenShift Dev Workspaces Operator |
cpe:/a:redhat:devworkspace |
|
| Red Hat | Red Hat OpenShift for Windows Containers |
cpe:/a:redhat:windows_machine_config |
|
| Red Hat | Red Hat OpenStack Platform 18.0 |
cpe:/a:redhat:openstack:18.0 |
|
| Red Hat | Red Hat Service Interconnect 1 |
cpe:/a:redhat:service_interconnect:1 |
|
| Red Hat | Red Hat Trusted Profile Analyzer |
cpe:/a:redhat:trusted_profile_analyzer:2 |
|
| Red Hat | Service Telemetry Framework 1.5 |
cpe:/a:redhat:stf:1.5 |
|
| Red Hat | Zero Trust Workload Identity Manager |
cpe:/a:redhat:zero_trust_workload_identity_manager:1 |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-33186",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-24T18:08:38.989284Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-24T18:09:13.422Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:openshift:4.18::el8",
"cpe:/a:redhat:openshift:4.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.16::el8",
"cpe:/a:redhat:satellite_capsule:6.16::el8",
"cpe:/a:redhat:satellite_maintenance:6.16::el8",
"cpe:/a:redhat:satellite_utils:6.16::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.16 for RHEL 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4::el9"
],
"defaultStatus": "affected",
"product": "Cryostat 4 on RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:17.1",
"cpe:/a:redhat:openstack:17.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 17.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6.16::el9",
"cpe:/a:redhat:satellite_capsule:6.16::el9",
"cpe:/a:redhat:satellite_maintenance:6.16::el9",
"cpe:/a:redhat:satellite_utils:6.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6.16 for RHEL 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux_eus:10.0"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10.2"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 10)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 8)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.4::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AppStream (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhel_eus:9.6::crb"
],
"defaultStatus": "affected",
"product": "Red Hat CodeReady Linux Builder EUS (v.9.6)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:devworkspace:0.40::el9"
],
"defaultStatus": "affected",
"product": "DevWorkspace Operator 0.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.3::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.3.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.4::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.4.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.5::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.5.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub:1.6::el9"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub 1.6.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:network_observ_optr:1.11::el9"
],
"defaultStatus": "affected",
"product": "Network Observability (NETOBSERV) 1.11.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.4::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1.5::el9"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_compliance_operator:1::el9"
],
"defaultStatus": "affected",
"product": "OpenShift Compliance Operator 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.8::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Container Native Virtualization 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Container Native Virtualization 4.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Container Native Virtualization 4.20",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4.21::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Container Native Virtualization 4.21",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.8::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Lightspeed (formerly Insights) for Runtimes 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai:2.25::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI 2.25",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1.6::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Builds 1.6.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1.7::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Builds 1.7.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.12::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.17::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.20",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4.21::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4.21",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_devspaces:3.27::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Dev Spaces 3.27",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1.18::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps 1.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1.19::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps 1.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1.21::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Pipelines 1.21",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Pipelines 1.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2.6::el8"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.0::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.1::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.2::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Service Mesh 3.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift distributed tracing 3.9.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.18::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4.18",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.19::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4.19",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4.20::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.12::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.12",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.14::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.15::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.16::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.16",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.17::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.17",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.10::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1.3::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer 1.3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.13::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.13",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.14::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.14",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:webterminal:1.15::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Web Terminal 1.15",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.10::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.11::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.11",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.6::el8"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.8::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine:2.9::el9"
],
"defaultStatus": "affected",
"product": "multicluster engine for Kubernetes 2.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:assisted_installer:2"
],
"defaultStatus": "affected",
"product": "Assisted Installer for Red Hat OpenShift Container Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cert_manager:1"
],
"defaultStatus": "affected",
"product": "cert-manager Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:cryostat:4"
],
"defaultStatus": "affected",
"product": "Cryostat 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:deployment_validator_operator"
],
"defaultStatus": "affected",
"product": "Deployment Validation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:dynamic_accelerator_slicer:1"
],
"defaultStatus": "affected",
"product": "Dynamic Accelerator Slicer Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ext_dns_optr:1"
],
"defaultStatus": "affected",
"product": "ExternalDNS Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_file_integrity_operator:1"
],
"defaultStatus": "affected",
"product": "File Integrity Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:gatekeeper:3"
],
"defaultStatus": "affected",
"product": "Gatekeeper 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:job_set:0"
],
"defaultStatus": "affected",
"product": "Job Set Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:kernel_module_management:2"
],
"defaultStatus": "affected",
"product": "Kernel Module Management Operator for Red Hat Openshift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:kube_descheduler_operator:4"
],
"defaultStatus": "affected",
"product": "Kube Descheduler Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:leader_worker_set:1"
],
"defaultStatus": "affected",
"product": "Leader Worker Set",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:logging:5"
],
"defaultStatus": "affected",
"product": "Logging Subsystem for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:lvms:4"
],
"defaultStatus": "affected",
"product": "Logical Volume Manager Storage",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhmt:1"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_virtualization:2"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Virtualization",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_engine"
],
"defaultStatus": "affected",
"product": "Multicluster Engine for Kubernetes",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:multicluster_globalhub"
],
"defaultStatus": "affected",
"product": "Multicluster Global Hub",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_api_data_protection:1"
],
"defaultStatus": "affected",
"product": "OpenShift API for Data Protection",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ocp_tools"
],
"defaultStatus": "affected",
"product": "OpenShift Developer Tools and Services",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_lightspeed"
],
"defaultStatus": "affected",
"product": "OpenShift Lightspeed",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_pipelines:1"
],
"defaultStatus": "affected",
"product": "OpenShift Pipelines",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:run_once_duration_override_operator:1"
],
"defaultStatus": "affected",
"product": "OpenShift Run Once Duration Override Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_secondary_scheduler:1"
],
"defaultStatus": "affected",
"product": "OpenShift Secondary Scheduler Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:serverless:1"
],
"defaultStatus": "affected",
"product": "OpenShift Serverless",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:2"
],
"defaultStatus": "affected",
"product": "OpenShift Service Mesh 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:acm:2"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Management for Kubernetes 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ai_inference_server:3"
],
"defaultStatus": "affected",
"product": "Red Hat AI Inference Server",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_automation_platform:2"
],
"defaultStatus": "affected",
"product": "Red Hat Ansible Automation Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:podman_desktop:1"
],
"defaultStatus": "affected",
"product": "Red Hat Build of Podman Desktop",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:podman_desktop:0"
],
"defaultStatus": "affected",
"product": "Red Hat Build of Podman Desktop - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:certifications:9"
],
"defaultStatus": "affected",
"product": "Red Hat Certification Program for Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:connectivity_link:1"
],
"defaultStatus": "affected",
"product": "Red Hat Connectivity Link 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:edge_manager:1"
],
"defaultStatus": "affected",
"product": "Red Hat Edge Manager 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:10"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 10",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:enterprise_linux_ai:3"
],
"defaultStatus": "affected",
"product": "Red Hat Enterprise Linux AI (RHEL AI) 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_ai"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift AI (RHOAI)",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_cluster_manager_cli:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Cluster Manager CLI",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Container Platform 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:16.2"
],
"defaultStatus": "affected",
"product": "Red Hat OpenStack Platform 16.2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:quay:3"
],
"defaultStatus": "affected",
"product": "Red Hat Quay 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_artifact_signer:1"
],
"defaultStatus": "affected",
"product": "Red Hat Trusted Artifact Signer",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_security_profiles_operator:1"
],
"defaultStatus": "affected",
"product": "Security Profiles Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_snr:0"
],
"defaultStatus": "affected",
"product": "Self Node Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_sbr:0"
],
"defaultStatus": "affected",
"product": "Storage-Based Remediation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:0"
],
"defaultStatus": "affected",
"product": "Zero Trust Workload Identity Manager - Tech Preview",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_builds:1"
],
"defaultStatus": "unaffected",
"product": "Builds for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:confidential_compute_attestation:1"
],
"defaultStatus": "unaffected",
"product": "Confidential Compute Attestation",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2"
],
"defaultStatus": "unaffected",
"product": "Custom Metric Autoscaler operator for Red Hat Openshift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:external_secrets_operator:1"
],
"defaultStatus": "unaffected",
"product": "External Secrets Operator for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:workload_availability_mdr:0"
],
"defaultStatus": "unaffected",
"product": "Machine Deletion Remediation Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_mesh:3"
],
"defaultStatus": "unaffected",
"product": "OpenShift Service Mesh 3",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_power_monitoring"
],
"defaultStatus": "unaffected",
"product": "Power monitoring for Red Hat OpenShift",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:red_hat_3scale_amp:2"
],
"defaultStatus": "unaffected",
"product": "Red Hat 3scale API Management Platform 2",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:kueue_operator:1"
],
"defaultStatus": "unaffected",
"product": "Red Hat Build of Kueue",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:devworkspace"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenShift Dev Workspaces Operator",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:windows_machine_config"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenShift for Windows Containers",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openstack:18.0"
],
"defaultStatus": "unaffected",
"product": "Red Hat OpenStack Platform 18.0",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:service_interconnect:1"
],
"defaultStatus": "unaffected",
"product": "Red Hat Service Interconnect 1",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:trusted_profile_analyzer:2"
],
"defaultStatus": "unaffected",
"product": "Red Hat Trusted Profile Analyzer",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:stf:1.5"
],
"defaultStatus": "unaffected",
"product": "Service Telemetry Framework 1.5",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:zero_trust_workload_identity_manager:1"
],
"defaultStatus": "unaffected",
"product": "Zero Trust Workload Identity Manager",
"vendor": "Red Hat"
}
],
"datePublic": "2026-03-20T22:23:32.147Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-551",
"description": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-30T02:41:24.114Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"name": "RHBZ#2449833",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-33186.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26997"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17789"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:28047"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20436"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:18068"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20322"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26999"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19719"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27856"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22937"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19135"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22450"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10107"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19721"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19720"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27712"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10705"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10706"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23228"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19353"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22714"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19207"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9872"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22423"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22347"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21769"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23345"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6428"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:29854"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8433"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22645"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25127"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13548"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8151"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11408"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11803"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13829"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11070"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:13791"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27893"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27901"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27957"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27892"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6174"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22485"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24977"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10698"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19712"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10155"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10158"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21696"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21697"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12283"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21691"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21692"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25009"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:15092"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23234"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23235"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:14775"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25045"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20088"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20089"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10105"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17598"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17599"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21657"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25182"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21658"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27001"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17448"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25183"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12119"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12118"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8449"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23246"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20041"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20042"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27004"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23247"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25201"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10093"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10094"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21703"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:27063"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17468"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24535"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21704"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25195"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25194"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6564"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24759"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17474"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21709"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24506"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20034"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20035"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:25187"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7245"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:23241"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17475"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21710"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22800"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10175"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20946"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:20943"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26519"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24484"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21932"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21931"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8483"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9440"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8484"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9448"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8490"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9453"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8491"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8493"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9388"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:9385"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26416"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26420"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26413"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:26412"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12277"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11856"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:21017"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24853"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19375"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22465"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11916"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:11996"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10131"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10125"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10130"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10126"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10172"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:10153"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:8338"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22959"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22961"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:24536"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19099"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12116"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:12337"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19108"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17459"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:17123"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:22689"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:18585"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:19109"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:26997: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:27076: Red Hat Satellite 6.16 for RHEL 8, Red Hat Satellite 6.16 for RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:17789: Cryostat 4 on RHEL 9"
},
{
"lang": "en",
"value": "RHSA-2026:28047: Red Hat OpenStack Platform 17.1"
},
{
"lang": "en",
"value": "RHSA-2026:20436: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:18068: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:20322: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:26999: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:19719: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:27856: Red Hat Enterprise Linux AppStream EUS (v. 10.0)"
},
{
"lang": "en",
"value": "RHSA-2026:22937: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:19135: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:22450: Red Hat Enterprise Linux AppStream (v. 10)"
},
{
"lang": "en",
"value": "RHSA-2026:10107: Red Hat Enterprise Linux AppStream (v. 8)"
},
{
"lang": "en",
"value": "RHSA-2026:19721: Red Hat Enterprise Linux AppStream EUS (v.9.4)"
},
{
"lang": "en",
"value": "RHSA-2026:19720: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:27712: Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:10705: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)"
},
{
"lang": "en",
"value": "RHSA-2026:10706: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:23228: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19353: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:22714: Red Hat Enterprise Linux AppStream (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:19207: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)"
},
{
"lang": "en",
"value": "RHSA-2026:9872: DevWorkspace Operator 0.4"
},
{
"lang": "en",
"value": "RHSA-2026:22423: Multicluster Global Hub 1.3.4"
},
{
"lang": "en",
"value": "RHSA-2026:22347: Multicluster Global Hub 1.4.5"
},
{
"lang": "en",
"value": "RHSA-2026:21769: Multicluster Global Hub 1.5.4"
},
{
"lang": "en",
"value": "RHSA-2026:23345: Multicluster Global Hub 1.6.2"
},
{
"lang": "en",
"value": "RHSA-2026:6428: Network Observability (NETOBSERV) 1.11.2"
},
{
"lang": "en",
"value": "RHSA-2026:29854: OpenShift API for Data Protection 1.4"
},
{
"lang": "en",
"value": "RHSA-2026:26568: OpenShift API for Data Protection 1.5"
},
{
"lang": "en",
"value": "RHSA-2026:8433: OpenShift Compliance Operator 1"
},
{
"lang": "en",
"value": "RHSA-2026:22645: Red Hat Advanced Cluster Management for Kubernetes 2.13"
},
{
"lang": "en",
"value": "RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14"
},
{
"lang": "en",
"value": "RHSA-2026:13548: Red Hat Advanced Cluster Management for Kubernetes 2.15"
},
{
"lang": "en",
"value": "RHSA-2026:8151: Red Hat Advanced Cluster Management for Kubernetes 2.15"
},
{
"lang": "en",
"value": "RHSA-2026:11408: Red Hat Advanced Cluster Management for Kubernetes 2.15"
},
{
"lang": "en",
"value": "RHSA-2026:11803: Red Hat Advanced Cluster Management for Kubernetes 2.16"
},
{
"lang": "en",
"value": "RHSA-2026:13829: Red Hat Advanced Cluster Security for Kubernetes 4.10"
},
{
"lang": "en",
"value": "RHSA-2026:7110: Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"lang": "en",
"value": "RHSA-2026:11070: Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"lang": "en",
"value": "RHSA-2026:7128: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:13791: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:27893: Red Hat Container Native Virtualization 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:27901: Red Hat Container Native Virtualization 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:27957: Red Hat Container Native Virtualization 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:27892: Red Hat Container Native Virtualization 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:6174: Red Hat Developer Hub 1.8"
},
{
"lang": "en",
"value": "RHSA-2026:6802: Red Hat Developer Hub 1.9"
},
{
"lang": "en",
"value": "RHSA-2026:22485: Red Hat Lightspeed (formerly Insights) for Runtimes 1"
},
{
"lang": "en",
"value": "RHSA-2026:24977: Red Hat OpenShift AI 2.25"
},
{
"lang": "en",
"value": "RHSA-2026:10698: Red Hat OpenShift AI 2.25"
},
{
"lang": "en",
"value": "RHSA-2026:19712: Red Hat OpenShift AI 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:10155: Red Hat OpenShift Builds 1.6.5"
},
{
"lang": "en",
"value": "RHSA-2026:10158: Red Hat OpenShift Builds 1.7.3"
},
{
"lang": "en",
"value": "RHSA-2026:21696: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:21697: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:12283: Red Hat OpenShift Container Platform 4.12"
},
{
"lang": "en",
"value": "RHSA-2026:21691: Red Hat OpenShift Container Platform 4.13"
},
{
"lang": "en",
"value": "RHSA-2026:21692: Red Hat OpenShift Container Platform 4.13"
},
{
"lang": "en",
"value": "RHSA-2026:25009: Red Hat OpenShift Container Platform 4.14"
},
{
"lang": "en",
"value": "RHSA-2026:15092: Red Hat OpenShift Container Platform 4.14"
},
{
"lang": "en",
"value": "RHSA-2026:23234: Red Hat OpenShift Container Platform 4.15"
},
{
"lang": "en",
"value": "RHSA-2026:23235: Red Hat OpenShift Container Platform 4.15"
},
{
"lang": "en",
"value": "RHSA-2026:14775: Red Hat OpenShift Container Platform 4.15"
},
{
"lang": "en",
"value": "RHSA-2026:25045: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:20088: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:20089: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:10105: Red Hat OpenShift Container Platform 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:17598: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:17599: Red Hat OpenShift Container Platform 4.17"
},
{
"lang": "en",
"value": "RHSA-2026:21657: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:25182: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:21658: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:27001: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:17448: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:25183: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:12119: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:12118: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:8449: Red Hat OpenShift Container Platform 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:23246: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:20041: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:20042: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:27004: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:23247: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:25201: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:10093: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:10094: Red Hat OpenShift Container Platform 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:21703: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:27063: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:17468: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:24535: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:21704: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:25195: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:25194: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:6564: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:24759: Red Hat OpenShift Container Platform 4.20"
},
{
"lang": "en",
"value": "RHSA-2026:17474: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:21709: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:24506: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:20034: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:20035: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:25187: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:7245: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:23241: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:17475: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:21710: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:22800: Red Hat OpenShift Container Platform 4.21"
},
{
"lang": "en",
"value": "RHSA-2026:10175: Red Hat OpenShift Dev Spaces 3.27"
},
{
"lang": "en",
"value": "RHSA-2026:20946: Red Hat OpenShift GitOps 1.18"
},
{
"lang": "en",
"value": "RHSA-2026:20943: Red Hat OpenShift GitOps 1.19"
},
{
"lang": "en",
"value": "RHSA-2026:26519: Red Hat OpenShift Pipelines 1.21"
},
{
"lang": "en",
"value": "RHSA-2026:24484: Red Hat OpenShift Pipelines 1.21"
},
{
"lang": "en",
"value": "RHSA-2026:21932: Red Hat OpenShift Pipelines 1.2"
},
{
"lang": "en",
"value": "RHSA-2026:21931: Red Hat OpenShift Pipelines 1.2"
},
{
"lang": "en",
"value": "RHSA-2026:8483: Red Hat OpenShift Service Mesh 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:9440: Red Hat OpenShift Service Mesh 3.0"
},
{
"lang": "en",
"value": "RHSA-2026:8484: Red Hat OpenShift Service Mesh 3.0"
},
{
"lang": "en",
"value": "RHSA-2026:9448: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:8490: Red Hat OpenShift Service Mesh 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:9453: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:8491: Red Hat OpenShift Service Mesh 3.2"
},
{
"lang": "en",
"value": "RHSA-2026:8493: Red Hat OpenShift Service Mesh 3.3"
},
{
"lang": "en",
"value": "RHSA-2026:9388: Red Hat OpenShift distributed tracing 3.9.3"
},
{
"lang": "en",
"value": "RHSA-2026:9385: Red Hat OpenShift distributed tracing 3.9.3"
},
{
"lang": "en",
"value": "RHSA-2026:26416: Red Hat Openshift Data Foundation 4.16"
},
{
"lang": "en",
"value": "RHSA-2026:26420: Red Hat Openshift Data Foundation 4.18"
},
{
"lang": "en",
"value": "RHSA-2026:26413: Red Hat Openshift Data Foundation 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:12279: Red Hat Openshift Data Foundation 4.19"
},
{
"lang": "en",
"value": "RHSA-2026:26412: Red Hat Openshift Data Foundation 4.2"
},
{
"lang": "en",
"value": "RHSA-2026:12277: Red Hat Openshift Data Foundation 4.2"
},
{
"lang": "en",
"value": "RHSA-2026:11856: Red Hat Quay 3.12"
},
{
"lang": "en",
"value": "RHSA-2026:21017: Red Hat Quay 3.14"
},
{
"lang": "en",
"value": "RHSA-2026:24853: Red Hat Quay 3.15"
},
{
"lang": "en",
"value": "RHSA-2026:19375: Red Hat Quay 3.16"
},
{
"lang": "en",
"value": "RHSA-2026:22465: Red Hat Quay 3.17"
},
{
"lang": "en",
"value": "RHSA-2026:11916: Red Hat Quay 3.1"
},
{
"lang": "en",
"value": "RHSA-2026:11996: Red Hat Quay 3.9"
},
{
"lang": "en",
"value": "RHSA-2026:10131: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:10125: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:10130: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:10126: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:10172: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:10153: Red Hat Trusted Artifact Signer 1.3"
},
{
"lang": "en",
"value": "RHSA-2026:8338: Red Hat Web Terminal 1.13"
},
{
"lang": "en",
"value": "RHSA-2026:22959: Red Hat Web Terminal 1.14"
},
{
"lang": "en",
"value": "RHSA-2026:22961: Red Hat Web Terminal 1.15"
},
{
"lang": "en",
"value": "RHSA-2026:24536: multicluster engine for Kubernetes 2.10"
},
{
"lang": "en",
"value": "RHSA-2026:19099: multicluster engine for Kubernetes 2.10"
},
{
"lang": "en",
"value": "RHSA-2026:12116: multicluster engine for Kubernetes 2.10"
},
{
"lang": "en",
"value": "RHSA-2026:12337: multicluster engine for Kubernetes 2.11"
},
{
"lang": "en",
"value": "RHSA-2026:19108: multicluster engine for Kubernetes 2.11"
},
{
"lang": "en",
"value": "RHSA-2026:17459: multicluster engine for Kubernetes 2.6"
},
{
"lang": "en",
"value": "RHSA-2026:17123: multicluster engine for Kubernetes 2.8"
},
{
"lang": "en",
"value": "RHSA-2026:22689: multicluster engine for Kubernetes 2.8"
},
{
"lang": "en",
"value": "RHSA-2026:18585: multicluster engine for Kubernetes 2.9"
},
{
"lang": "en",
"value": "RHSA-2026:19109: multicluster engine for Kubernetes 2.9"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-03-20T23:02:27.802Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-03-20T22:23:32.147Z",
"value": "Made public."
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"workarounds": [
{
"lang": "en",
"value": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"product": "grpc-go",
"vendor": "grpc",
"versions": [
{
"status": "affected",
"version": "\u003c 1.79.3"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-285",
"description": "CWE-285: Improper Authorization",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-20T22:23:32.147Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"source": {
"advisory": "GHSA-p77j-4mvh-x3m3",
"discovery": "UNKNOWN"
},
"title": "gRPC-Go has an authorization bypass via missing leading slash in :path"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-33186",
"datePublished": "2026-03-20T22:23:32.147Z",
"dateReserved": "2026-03-17T22:16:36.720Z",
"dateUpdated": "2026-06-30T02:41:24.114Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-33186",
"date": "2026-06-29",
"epss": "0.00522",
"percentile": "0.40354"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-33186\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-03-20T23:16:45.180\",\"lastModified\":\"2026-06-30T03:18:36.673\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \\\"deny\\\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \\\"allow\\\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \\\"deny\\\" rules for canonical paths but allows other requests by default (a fallback \\\"allow\\\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.\"},{\"lang\":\"es\",\"value\":\"gRPC-Go es la implementaci\u00f3n en lenguaje Go de gRPC. Las versiones anteriores a la 1.79.3 tienen un bypass de autorizaci\u00f3n resultante de una validaci\u00f3n de entrada incorrecta del pseudo-encabezado HTTP/2 \u0027:path\u0027. El servidor gRPC-Go era demasiado indulgente en su l\u00f3gica de enrutamiento, aceptando solicitudes donde el \u0027:path\u0027 omit\u00eda la barra inicial obligatoria (por ejemplo, \u0027Service/Method\u0027 en lugar de \u0027/Service/Method\u0027). Si bien el servidor enrut\u00f3 con \u00e9xito estas solicitudes al gestor correcto, los interceptores de autorizaci\u00f3n (incluido el paquete oficial \u0027grpc/authz\u0027) evaluaron la cadena de ruta cruda y no can\u00f3nica. En consecuencia, las reglas de \u0027denegaci\u00f3n\u0027 definidas usando rutas can\u00f3nicas (que comienzan con \u0027/\u0027) no lograron coincidir con la solicitud entrante, permitiendo que bypassara la pol\u00edtica si una regla de \u0027permiso\u0027 de respaldo estaba presente. Esto afecta a los servidores gRPC-Go que utilizan interceptores de autorizaci\u00f3n basados en rutas, como la implementaci\u00f3n oficial de RBAC en \u0027google.golang.org/grpc/authz\u0027 o interceptores personalizados que dependen de \u0027info.FullMethod\u0027 o \u0027grpc.Method(ctx)\u0027; Y que tienen una pol\u00edtica de seguridad que contiene reglas de \u0027denegaci\u00f3n\u0027 espec\u00edficas para rutas can\u00f3nicas pero permite otras solicitudes por defecto (una regla de \u0027permiso\u0027 de respaldo). La vulnerabilidad es explotable por un atacante que puede enviar tramas HTTP/2 crudas con encabezados \u0027:path\u0027 malformados directamente al servidor gRPC. La correcci\u00f3n en la versi\u00f3n 1.79.3 asegura que cualquier solicitud con un \u0027:path\u0027 que no comience con una barra inicial sea inmediatamente rechazada con un error \u0027codes.Unimplemented\u0027, impidiendo que llegue a los interceptores de autorizaci\u00f3n o gestores con una cadena de ruta no can\u00f3nica. Si bien la actualizaci\u00f3n es la ruta m\u00e1s segura y recomendada, los usuarios pueden mitigar la vulnerabilidad utilizando uno de los siguientes m\u00e9todos: Usar un interceptor de validaci\u00f3n (mitigaci\u00f3n recomendada); normalizaci\u00f3n a nivel de infraestructura; y/o endurecimiento de pol\u00edticas.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"grpc\",\"product\":\"grpc-go\",\"versions\":[{\"version\":\"\u003c 1.79.3\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.18::el8\",\"cpe:/a:redhat:openshift:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.16 for RHEL 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.16::el8\",\"cpe:/a:redhat:satellite_capsule:6.16::el8\",\"cpe:/a:redhat:satellite_maintenance:6.16::el8\",\"cpe:/a:redhat:satellite_utils:6.16::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4 on RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 17.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:17.1\",\"cpe:/a:redhat:openstack:17.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6.16 for RHEL 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6.16::el9\",\"cpe:/a:redhat:satellite_capsule:6.16::el9\",\"cpe:/a:redhat:satellite_maintenance:6.16::el9\",\"cpe:/a:redhat:satellite_utils:6.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v. 10.0)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux_eus:10.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 10)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 8)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:8::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.4)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.4::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AppStream (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::appstream\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat CodeReady Linux Builder EUS (v.9.6)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhel_eus:9.6::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux:9::crb\"]},{\"vendor\":\"Red Hat\",\"product\":\"DevWorkspace Operator 0.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:devworkspace:0.40::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.3.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.4.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.5.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub 1.6.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub:1.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Network Observability (NETOBSERV) 1.11.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:network_observ_optr:1.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.4::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection 1.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1.5::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Compliance Operator 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_compliance_operator:1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.8::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Container Native Virtualization 4.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Container Native Virtualization 4.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Container Native Virtualization 4.20\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Container Native Virtualization 4.21\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4.21::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Lightspeed (formerly Insights) for Runtimes 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI 2.25\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai:2.25::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Builds 1.6.5\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1.6::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Builds 1.7.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1.7::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.12::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.20\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4.21\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4.21::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Spaces 3.27\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_devspaces:3.27::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps 1.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1.18::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps 1.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1.19::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Pipelines 1.21\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1.21::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Pipelines 1.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.0\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.0::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.1::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.2::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Service Mesh 3.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift distributed tracing 3.9.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_distributed_tracing:3.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4.18\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4.18::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4.19\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4.19::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4.20::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.12\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.12::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.14::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.15::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.16\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.16::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.17\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.17::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.10::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer 1.3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1.3::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.13\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.13::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.14\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.14::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Web Terminal 1.15\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:webterminal:1.15::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.10::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.11\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.11::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.6::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"multicluster engine for Kubernetes 2.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine:2.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Assisted Installer for Red Hat OpenShift Container Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:assisted_installer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"cert-manager Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cert_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Cryostat 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:cryostat:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Deployment Validation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:deployment_validator_operator\"]},{\"vendor\":\"Red Hat\",\"product\":\"Dynamic Accelerator Slicer Operator for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:dynamic_accelerator_slicer:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"ExternalDNS Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ext_dns_optr:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"File Integrity Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_file_integrity_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Gatekeeper 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:gatekeeper:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Job Set Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:job_set:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Kernel Module Management Operator for Red Hat Openshift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:kernel_module_management:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Kube Descheduler Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:kube_descheduler_operator:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Leader Worker Set\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:leader_worker_set:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logging Subsystem for Red Hat OpenShift\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:logging:5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Logical Volume Manager Storage\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:lvms:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Containers\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhmt:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Virtualization\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_virtualization:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Engine for Kubernetes\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_engine\"]},{\"vendor\":\"Red Hat\",\"product\":\"Multicluster Global Hub\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:multicluster_globalhub\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift API for Data Protection\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_api_data_protection:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Developer Tools and Services\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ocp_tools\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Lightspeed\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_lightspeed\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Pipelines\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_pipelines:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Run Once Duration Override Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:run_once_duration_override_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Secondary Scheduler Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_secondary_scheduler:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Serverless\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:serverless:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Management for Kubernetes 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:acm:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat AI Inference Server\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ai_inference_server:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Ansible Automation Platform 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_automation_platform:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Build of Podman Desktop\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:podman_desktop:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Build of Podman Desktop - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:podman_desktop:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Certification Program for Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:certifications:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Connectivity Link 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:connectivity_link:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Edge Manager 1\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:edge_manager:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 10\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:10\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 7\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:7\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux 9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/o:redhat:enterprise_linux:9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Enterprise Linux AI (RHEL AI) 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:enterprise_linux_ai:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift AI (RHOAI)\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_ai\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Cluster Manager CLI\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_cluster_manager_cli:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Container Platform 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 16.2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openstack:16.2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Quay 3\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:quay:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Artifact Signer\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:trusted_artifact_signer:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Security Profiles Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_security_profiles_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Self Node Remediation Operator\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_snr:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Storage-Based Remediation\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_sbr:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager - Tech Preview\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Builds for Red Hat OpenShift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_builds:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Confidential Compute Attestation\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:confidential_compute_attestation:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Custom Metric Autoscaler operator for Red Hat Openshift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_custom_metrics_autoscaler:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"External Secrets Operator for Red Hat OpenShift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:external_secrets_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Machine Deletion Remediation Operator\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:workload_availability_mdr:0\"]},{\"vendor\":\"Red Hat\",\"product\":\"OpenShift Service Mesh 3\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_mesh:3\"]},{\"vendor\":\"Red Hat\",\"product\":\"Power monitoring for Red Hat OpenShift\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openshift_power_monitoring\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat 3scale API Management Platform 2\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:red_hat_3scale_amp:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Build of Kueue\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:kueue_operator:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Dev Workspaces Operator\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:devworkspace\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift for Windows Containers\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:windows_machine_config\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenStack Platform 18.0\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:openstack:18.0\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Service Interconnect 1\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:service_interconnect:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Trusted Profile Analyzer\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:trusted_profile_analyzer:2\"]},{\"vendor\":\"Red Hat\",\"product\":\"Service Telemetry Framework 1.5\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:stf:1.5\"]},{\"vendor\":\"Red Hat\",\"product\":\"Zero Trust Workload Identity Manager\",\"defaultStatus\":\"unaffected\",\"cpes\":[\"cpe:/a:redhat:zero_trust_workload_identity_manager:1\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":9.1,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":5.2},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\",\"baseScore\":9.1,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":5.2}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-03-24T18:08:38.989284Z\",\"id\":\"CVE-2026-33186\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-285\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-551\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:grpc:grpc:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"1.79.3\",\"matchCriteriaId\":\"D5AB3ED0-D11B-461E-B2B1-627D5CCEA236\"}]}]}],\"references\":[{\"url\":\"https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10093\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10094\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10105\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10107\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10125\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10126\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10130\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10131\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10153\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10155\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10158\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10172\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10175\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10698\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10705\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:10706\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11070\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11408\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11803\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11856\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11916\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:11996\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12116\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12118\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12119\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12277\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12279\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12283\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:12337\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13548\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13791\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:13829\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:14775\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:15092\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17123\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17448\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17459\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17468\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17474\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17475\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17598\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17599\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:17789\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:18068\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:18585\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19099\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19108\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19109\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19135\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19207\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19353\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19375\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19712\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19719\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19720\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:19721\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20034\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20035\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20041\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20042\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20088\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20089\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20322\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20436\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20943\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:20946\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21017\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21657\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21658\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21691\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21692\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21696\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21697\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21703\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21704\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21709\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21710\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21769\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21931\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:21932\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22347\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22423\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22450\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22465\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22485\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22645\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22689\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22714\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22800\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22937\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22959\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:22961\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23228\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23234\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23235\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23241\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23246\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23247\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:23345\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24484\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24506\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24535\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24536\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24759\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24853\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:24977\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25009\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25045\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25127\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25182\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25183\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25187\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25194\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25195\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:25201\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26412\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26413\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26416\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26420\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26519\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26568\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26997\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:26999\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27001\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27004\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27063\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27076\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27712\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27856\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27892\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27893\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27901\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:27957\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:28047\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:29854\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6174\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6428\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6564\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6802\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7110\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7128\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7245\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8151\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8338\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8433\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8449\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8483\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8484\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8490\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8491\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:8493\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9385\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9388\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9440\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9448\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9453\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:9872\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-33186\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2449833\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-33186.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-33186\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-03-24T18:08:38.989284Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-03-24T18:09:03.096Z\"}}], \"cna\": {\"title\": \"gRPC-Go has an authorization bypass via missing leading slash in :path\", \"source\": {\"advisory\": \"GHSA-p77j-4mvh-x3m3\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 9.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"grpc\", \"product\": \"grpc-go\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 1.79.3\"}]}], \"references\": [{\"url\": \"https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3\", \"name\": \"https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \\\"deny\\\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \\\"allow\\\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \\\"deny\\\" rules for canonical paths but allows other requests by default (a fallback \\\"allow\\\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-285\", \"description\": \"CWE-285: Improper Authorization\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-03-20T22:23:32.147Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-33186\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-24T18:09:13.422Z\", \"dateReserved\": \"2026-03-17T22:16:36.720Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-03-20T22:23:32.147Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2026:22133-1
Vulnerability from csaf_suse - Published: 2026-06-12 08:44 - Updated: 2026-06-12 08:44Summary
Security update for google-guest-agent
Severity
Important
Notes
Title of the patch: Security update for google-guest-agent
Description of the patch: This update for google-guest-agent fixes the following issues:
Update to version 20260430.00:
* Update dependencies and go version to 1.26.2 (#607)
(bsc#1265762, CVE-2026-33814)
* Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)
(bsc#1260264, CVE-2026-33186)
* Backport oslogin changes for sles16 to legacy agent (#603)
* Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)
* Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)
* Actually finally fix the RPM spec (#601)
* Correct guest telemetry build target (#600)
* Add packaging for new telemetry extension (#599)
* Implement new scheduled job for routes monitor (#598)
* Add packaging changes for locally bundled extensions feature support (#593)
* Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)
* Disable certificates when security keys are enabled (#588)
* Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)
* Source the contents of /var/google-users.d config files. (#586)
* Force remove core plugin configuration for windows (#587)
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
(bsc#1239334, CVE-2025-22869, bsc#1253889, CVE-2025-58181)
* Don't delete the authorized_keys file when an empty key list
is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20260424.00
* Bring topic-stable up to latest point. (#606)
* Bring stable branch up to 822ad49fd52b4d29869604af836a33cb22a667ba (#592)
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20260423.01
* Update THIRD_PARTY_LICENSES to be package specific location. (#608)
- from version 20260423.00
* Update dependencies and go version to 1.26.2 (#607)
* Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)
* Backport oslogin changes for sles16 to legacy agent (#603)
* Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)
* Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)
* Actually finally fix the RPM spec (#601)
* Correct guest telemetry build target (#600)
* Add packaging for new telemetry extension (#599)
* Implement new scheduled job for routes monitor (#598)
* Add packaging changes for locally bundled extensions feature support (#593)
* Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)
* Disable certificates when security keys are enabled (#588)
* Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)
* Source the contents of /var/google-users.d config files. (#586)
* Force remove core plugin configuration for windows (#587)
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
* Don't delete the authorized_keys file when an empty key
list is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20260422.01
* Bring topic-stable up to latest point. (#606)
* Bring stable branch up to 822ad49fd52b4d29869604af836a33cb22a667ba (#592)
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20260422.00
* Update dependencies and go version to 1.26.2 (#607)
* Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)
* Backport oslogin changes for sles16 to legacy agent (#603)
* Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)
* Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)
* Actually finally fix the RPM spec (#601)
* Correct guest telemetry build target (#600)
* Add packaging for new telemetry extension (#599)
* Implement new scheduled job for routes monitor (#598)
* Add packaging changes for locally bundled extensions feature support (#593)
* Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)
* Disable certificates when security keys are enabled (#588)
* Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)
* Source the contents of /var/google-users.d config files. (#586)
* Force remove core plugin configuration for windows (#587)
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
* Don't delete the authorized_keys file when an empty key
list is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20260421.00
* Bring topic-stable up to latest point. (#606)
* Bring stable branch up to 822ad49fd52b4d29869604af836a33cb22a667ba (#592)
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20260414.00
* Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)
- Bump Go API version to 1.26
- CVE-2026-34986: Fixed crafted JWE input with a missing encrypted
key can lead to a denial of service (bsc#1262926)
- Update to version 20260402.00: (bsc#1257010)
* Backport oslogin changes for sles16 to legacy agent (#603)
* Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)
* Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)
* Actually finally fix the RPM spec (#601)
* Correct guest telemetry build target (#600)
* Add packaging for new telemetry extension (#599)
* Implement new scheduled job for routes monitor (#598)
* Add packaging changes for locally bundled extensions feature support (#593)
* Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)
* Disable certificates when security keys are enabled (#588)
* Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)
- Update to version 20260108.00
* Source the contents of /var/google-users.d config files. (#586)
- Update to version 20251223.00
* Force remove core plugin configuration for windows (#587)
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
* Don't delete the authorized_keys file when an empty key list
is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251218.01
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251218.00
* Force remove core plugin configuration for windows (#587)
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
* Don't delete the authorized_keys file when an empty key list
is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251216.00
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251215.00
* Force remove core plugin configuration for windows (#587)
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
* Don't delete the authorized_keys file when an empty key list
is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251210.00
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251209.00
* Force remove core plugin configuration for windows (#587)
- Update to version 20251208.00
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
* Don't delete the authorized_keys file when an empty key list is passed
to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251206.00
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251205.00
* network: force address manager to always consolidate the OS state (#585)
* Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)
* Don't delete the authorized_keys file when an empty key list
is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- Update to version 20251120.01
* fix start mode for windows on stable release (#584)
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251120.00
* Don't delete the authorized_keys file when an empty key list
is passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251117.00
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251115.00
* Don't delete the authorized_keys file when an empty key list is
passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251108.00
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251107.01
* Don't delete the authorized_keys file when an empty key list is
passed to updateAuthorizedKeysFile (#582)
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251031.00
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251030.02
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251030.01
* Update agent_uninstall.ps1 (#558) (#580)
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251030.00
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251011.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20251009.01
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251009.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- Update to version 20251007.00
* Add Tyler, Saswat, Hank to OWNERS (#577)
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251006.01
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20251006.00
* Honor core plugin setting on windows package update (#576)
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20251005.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20250930.01
* Honor core plugin setting on windows package update (#576)
- from version 20250929.01
* Restart agent if core plugin is disabled (#575)
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250929.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20250926.00
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250924.02
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20250924.01
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250924.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- Update to version 20250923.01
* Add extra debug logging around toggling OS Login (#572)
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250923.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20250921.00
* Add extra debug logging around toggling OS Login (#572)
- from version 20250920.01
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250920.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20250918.01
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250917.01
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20250917.00
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250916.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20250915.00
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- Disable missing daemon google_guest_agent_manager referenced by google-startup-scripts.service
- Update to version 20250908.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20250907.00
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250905.01
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20250905.00
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250902.00
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- Build and install new gce_workload_cert_refresh binary
- Fix installation source of google_metadata_script_runner_adapt script
- Install new systemd service file
* gce-workload-cert-refresh.service
- Update to version 20250901.00
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250831.03
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20250831.02
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250831.01
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent
and disable core plugin (#557)
- from version 20250831.00
* Update go version to 1.25 (#565)
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250830.02
* Update go version for stable branch to 1.25 (#571)
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent
and disable core plugin (#557)
- from version 20250830.01
* Update go version to 1.25 (#565)
- from version 20250830.00
* Add compat adapt script to windows in agent sysprep (#569)
* Fix adapt to use more portable shebang line (#567)
* Remove routes script from packaging (#566)
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250828.00
* Add adapt script in stable branch as per #569 (#570)
* Backport fix from #567 to stable branch (#568)
- from version 20250826.00
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and
disable core plugin (#557)
- from version 20250821.01
* Remove routes script from packaging (#566)
- Update Go API version to 1.25
- Update to version 20250718.00
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- Update to version 20250709.02
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20250709.01
* Update adapt script to run on startup/shutdown both (#561)
* Update agent_uninstall.ps1 (#558)
* Stop core plugin before removing agent package (#554)
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
- from version 20250709.00
* Revert compat behavior and call known binary directly (#560)
* Revert compat behavior and call known binary directly (#559)
* Build rollforward package to re-enable original agent and disable core plugin (#557)
- from version 20250702.00
* Update adapt script to run on startup/shutdown both (#561)
- from version 20250701.01
* Update agent_uninstall.ps1 (#558)
- from version 20250701.00
* Stop core plugin before removing agent package (#554)
- from version 20250628.00
* Startup scripts should start after agent manager instead (#553)
* Update presets and install dependencies on systemd units (#552)
* Ensure agent service is disabled (#551)
- from version 20250626.00
* Disable legacy agent to enable core plugin (#550)
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
* startup script: wrap compatibility decision into its own scripts (#538)
* Reapply "oslogin: Correctly handle newlines at the end of modified files (#520)" (#523) (#540)
- from version 20250625.00
* prepare stable release.
- Install google_metadata_script_runner_adapt script (bsc#1245759)
- Update to version 20250624.00
* Final fix for RHEL packaging for routes setup (#549)
* Fix RHEL packaging for routes scripts (#548)
* Packaging changes to include routes script installation (#542)
* Update CLI name in packaging (#543)
* systemd should manage only the main process (#544)
* startup script: wrap compatibility decision into its own scripts (#538)
* Reapply "oslogin: Correctly handle newlines at the end of modified
files (#520)" (#523) (#540)
- from version 20250611.01
* prepare stable release.
- from version 20250611.00
* startup script: wrap compatibility decision into its own scripts (#538)
* Reapply "oslogin: Correctly handle newlines at the end of modified
files (#520)" (#523) (#540)
- from version 20250609.00
* prepare stable release.
- from version 20250605.00
* startup script: wrap compatibility decision into its own scripts (#538)
* Reapply "oslogin: Correctly handle newlines at the end of modified
files (#520)" (#523) (#540)
* Make sure agent added connections are activated by NM (#534)
* wrap NSS cache refresh in a goroutine (#533)
* Wicked: Only reload interfaces for which configurations are
written or changed. (#524)
* Add AuthorizedKeysCompat to windows packaging (#530)
* Remove error messages from gce_workload_cert_refresh and metadata
script runner (#527)
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of
modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Update to version 20250604.00
* Preparing stable build.
- from version 20250602.00
* Make sure agent added connections are activated by NM (#534)
* wrap NSS cache refresh in a goroutine (#533)
* Wicked: Only reload interfaces for which configurations are written or changed. (#524)
* Add AuthorizedKeysCompat to windows packaging (#530)
* Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- from version 20250521.00
* Preparing stable build.
- from version 20250515.00
* Make sure agent added connections are activated by NM (#534)
* wrap NSS cache refresh in a goroutine (#533)
* Wicked: Only reload interfaces for which configurations are written or changed. (#524)
* Add AuthorizedKeysCompat to windows packaging (#530)
* Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Update to version 20250508.00
* Preparing stable build.
- from version 20250506.01 (bsc#1243254, bsc#1243505)
Patchnames: SUSE-SLE-Micro-6.1-577
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
34 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-guest-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-guest-agent fixes the following issues:\n\nUpdate to version 20260430.00:\n\n * Update dependencies and go version to 1.26.2 (#607)\n (bsc#1265762, CVE-2026-33814)\n * Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)\n (bsc#1260264, CVE-2026-33186)\n * Backport oslogin changes for sles16 to legacy agent (#603)\n * Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)\n * Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)\n * Actually finally fix the RPM spec (#601)\n * Correct guest telemetry build target (#600)\n * Add packaging for new telemetry extension (#599)\n * Implement new scheduled job for routes monitor (#598)\n * Add packaging changes for locally bundled extensions feature support (#593)\n * Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)\n * Disable certificates when security keys are enabled (#588)\n * Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)\n * Source the contents of /var/google-users.d config files. (#586)\n * Force remove core plugin configuration for windows (#587)\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n (bsc#1239334, CVE-2025-22869, bsc#1253889, CVE-2025-58181)\n * Don\u0027t delete the authorized_keys file when an empty key list\n is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20260424.00\n * Bring topic-stable up to latest point. (#606)\n * Bring stable branch up to 822ad49fd52b4d29869604af836a33cb22a667ba (#592)\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20260423.01\n * Update THIRD_PARTY_LICENSES to be package specific location. (#608)\n- from version 20260423.00\n * Update dependencies and go version to 1.26.2 (#607)\n * Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)\n * Backport oslogin changes for sles16 to legacy agent (#603)\n * Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)\n * Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)\n * Actually finally fix the RPM spec (#601)\n * Correct guest telemetry build target (#600)\n * Add packaging for new telemetry extension (#599)\n * Implement new scheduled job for routes monitor (#598)\n * Add packaging changes for locally bundled extensions feature support (#593)\n * Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)\n * Disable certificates when security keys are enabled (#588)\n * Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)\n * Source the contents of /var/google-users.d config files. (#586)\n * Force remove core plugin configuration for windows (#587)\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n * Don\u0027t delete the authorized_keys file when an empty key\n list is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20260422.01\n * Bring topic-stable up to latest point. (#606)\n * Bring stable branch up to 822ad49fd52b4d29869604af836a33cb22a667ba (#592)\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20260422.00\n * Update dependencies and go version to 1.26.2 (#607)\n * Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)\n * Backport oslogin changes for sles16 to legacy agent (#603)\n * Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)\n * Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)\n * Actually finally fix the RPM spec (#601)\n * Correct guest telemetry build target (#600)\n * Add packaging for new telemetry extension (#599)\n * Implement new scheduled job for routes monitor (#598)\n * Add packaging changes for locally bundled extensions feature support (#593)\n * Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)\n * Disable certificates when security keys are enabled (#588)\n * Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)\n * Source the contents of /var/google-users.d config files. (#586)\n * Force remove core plugin configuration for windows (#587)\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n * Don\u0027t delete the authorized_keys file when an empty key\n list is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20260421.00\n * Bring topic-stable up to latest point. (#606)\n * Bring stable branch up to 822ad49fd52b4d29869604af836a33cb22a667ba (#592)\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20260414.00\n * Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 (#604)\n- Bump Go API version to 1.26\n\n- CVE-2026-34986: Fixed crafted JWE input with a missing encrypted\n key can lead to a denial of service (bsc#1262926)\n\n- Update to version 20260402.00: (bsc#1257010)\n\n * Backport oslogin changes for sles16 to legacy agent (#603)\n * Bump go.opentelemetry.io/otel/sdk from 1.37.0 to 1.40.0 (#596)\n * Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (#602)\n * Actually finally fix the RPM spec (#601)\n * Correct guest telemetry build target (#600)\n * Add packaging for new telemetry extension (#599)\n * Implement new scheduled job for routes monitor (#598)\n * Add packaging changes for locally bundled extensions feature support (#593)\n * Ensure the uninstall script handles GCE metadata endpoint unavailability. (#591)\n * Disable certificates when security keys are enabled (#588)\n * Move sourcing of per-user configs to the end of sshd_config, fixing 2FA logins. (#590)\n\n- Update to version 20260108.00\n * Source the contents of /var/google-users.d config files. (#586)\n\n- Update to version 20251223.00\n * Force remove core plugin configuration for windows (#587)\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n * Don\u0027t delete the authorized_keys file when an empty key list\n is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251218.01\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251218.00\n * Force remove core plugin configuration for windows (#587)\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n * Don\u0027t delete the authorized_keys file when an empty key list\n is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251216.00\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251215.00\n * Force remove core plugin configuration for windows (#587)\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n * Don\u0027t delete the authorized_keys file when an empty key list\n is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251210.00\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251209.00\n * Force remove core plugin configuration for windows (#587)\n\n- Update to version 20251208.00\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n * Don\u0027t delete the authorized_keys file when an empty key list is passed\n to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251206.00\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251205.00\n * network: force address manager to always consolidate the OS state (#585)\n * Bump golang.org/x/crypto from 0.41.0 to 0.45.0 (#583)\n * Don\u0027t delete the authorized_keys file when an empty key list\n is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n\n- Update to version 20251120.01\n * fix start mode for windows on stable release (#584)\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251120.00\n * Don\u0027t delete the authorized_keys file when an empty key list\n is passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251117.00\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251115.00\n * Don\u0027t delete the authorized_keys file when an empty key list is\n passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251108.00\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251107.01\n * Don\u0027t delete the authorized_keys file when an empty key list is\n passed to updateAuthorizedKeysFile (#582)\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251031.00\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251030.02\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251030.01\n * Update agent_uninstall.ps1 (#558) (#580)\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251030.00\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251011.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20251009.01\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251009.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n\n- Update to version 20251007.00\n * Add Tyler, Saswat, Hank to OWNERS (#577)\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251006.01\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20251006.00\n * Honor core plugin setting on windows package update (#576)\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20251005.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20250930.01\n * Honor core plugin setting on windows package update (#576)\n- from version 20250929.01\n * Restart agent if core plugin is disabled (#575)\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250929.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20250926.00\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250924.02\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20250924.01\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250924.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n\n- Update to version 20250923.01\n * Add extra debug logging around toggling OS Login (#572)\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250923.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20250921.00\n * Add extra debug logging around toggling OS Login (#572)\n- from version 20250920.01\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250920.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20250918.01\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250917.01\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20250917.00\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250916.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20250915.00\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- Disable missing daemon google_guest_agent_manager referenced by google-startup-scripts.service\n\n- Update to version 20250908.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20250907.00\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250905.01\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20250905.00\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250902.00\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- Build and install new gce_workload_cert_refresh binary\n- Fix installation source of google_metadata_script_runner_adapt script\n- Install new systemd service file\n * gce-workload-cert-refresh.service\n\n- Update to version 20250901.00\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250831.03\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20250831.02\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250831.01\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent\n and disable core plugin (#557)\n- from version 20250831.00\n * Update go version to 1.25 (#565)\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250830.02\n * Update go version for stable branch to 1.25 (#571)\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent\n and disable core plugin (#557)\n- from version 20250830.01\n * Update go version to 1.25 (#565)\n- from version 20250830.00\n * Add compat adapt script to windows in agent sysprep (#569)\n * Fix adapt to use more portable shebang line (#567)\n * Remove routes script from packaging (#566)\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250828.00\n * Add adapt script in stable branch as per #569 (#570)\n * Backport fix from #567 to stable branch (#568)\n- from version 20250826.00\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and\n disable core plugin (#557)\n- from version 20250821.01\n * Remove routes script from packaging (#566)\n- Update Go API version to 1.25\n\n- Update to version 20250718.00\n\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n\n- Update to version 20250709.02\n\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n\n- from version 20250709.01\n\n * Update adapt script to run on startup/shutdown both (#561)\n * Update agent_uninstall.ps1 (#558)\n * Stop core plugin before removing agent package (#554)\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n- from version 20250709.00\n * Revert compat behavior and call known binary directly (#560)\n * Revert compat behavior and call known binary directly (#559)\n * Build rollforward package to re-enable original agent and disable core plugin (#557)\n- from version 20250702.00\n * Update adapt script to run on startup/shutdown both (#561)\n- from version 20250701.01\n * Update agent_uninstall.ps1 (#558)\n- from version 20250701.00\n * Stop core plugin before removing agent package (#554)\n- from version 20250628.00\n * Startup scripts should start after agent manager instead (#553)\n * Update presets and install dependencies on systemd units (#552)\n * Ensure agent service is disabled (#551)\n- from version 20250626.00\n * Disable legacy agent to enable core plugin (#550)\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n * startup script: wrap compatibility decision into its own scripts (#538)\n * Reapply \"oslogin: Correctly handle newlines at the end of modified files (#520)\" (#523) (#540)\n- from version 20250625.00\n * prepare stable release.\n- Install google_metadata_script_runner_adapt script (bsc#1245759)\n\n- Update to version 20250624.00\n * Final fix for RHEL packaging for routes setup (#549)\n * Fix RHEL packaging for routes scripts (#548)\n * Packaging changes to include routes script installation (#542)\n * Update CLI name in packaging (#543)\n * systemd should manage only the main process (#544)\n * startup script: wrap compatibility decision into its own scripts (#538)\n * Reapply \"oslogin: Correctly handle newlines at the end of modified\n files (#520)\" (#523) (#540)\n- from version 20250611.01\n * prepare stable release.\n- from version 20250611.00\n * startup script: wrap compatibility decision into its own scripts (#538)\n * Reapply \"oslogin: Correctly handle newlines at the end of modified\n files (#520)\" (#523) (#540)\n- from version 20250609.00\n * prepare stable release.\n- from version 20250605.00\n * startup script: wrap compatibility decision into its own scripts (#538)\n * Reapply \"oslogin: Correctly handle newlines at the end of modified\n files (#520)\" (#523) (#540)\n * Make sure agent added connections are activated by NM (#534)\n * wrap NSS cache refresh in a goroutine (#533)\n * Wicked: Only reload interfaces for which configurations are\n written or changed. (#524)\n * Add AuthorizedKeysCompat to windows packaging (#530)\n * Remove error messages from gce_workload_cert_refresh and metadata\n script runner (#527)\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of\n modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n\n- Update to version 20250604.00\n * Preparing stable build.\n- from version 20250602.00\n * Make sure agent added connections are activated by NM (#534)\n * wrap NSS cache refresh in a goroutine (#533)\n * Wicked: Only reload interfaces for which configurations are written or changed. (#524)\n * Add AuthorizedKeysCompat to windows packaging (#530)\n * Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n- from version 20250521.00\n * Preparing stable build.\n- from version 20250515.00\n * Make sure agent added connections are activated by NM (#534)\n * wrap NSS cache refresh in a goroutine (#533)\n * Wicked: Only reload interfaces for which configurations are written or changed. (#524)\n * Add AuthorizedKeysCompat to windows packaging (#530)\n * Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n\n- Update to version 20250508.00\n * Preparing stable build.\n\n- from version 20250506.01 (bsc#1243254, bsc#1243505)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-577",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22133-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:22133-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622133-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:22133-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026810.html"
},
{
"category": "self",
"summary": "SUSE Bug 1210938",
"url": "https://bugzilla.suse.com/1210938"
},
{
"category": "self",
"summary": "SUSE Bug 1239334",
"url": "https://bugzilla.suse.com/1239334"
},
{
"category": "self",
"summary": "SUSE Bug 1239944",
"url": "https://bugzilla.suse.com/1239944"
},
{
"category": "self",
"summary": "SUSE Bug 1243254",
"url": "https://bugzilla.suse.com/1243254"
},
{
"category": "self",
"summary": "SUSE Bug 1243505",
"url": "https://bugzilla.suse.com/1243505"
},
{
"category": "self",
"summary": "SUSE Bug 1245759",
"url": "https://bugzilla.suse.com/1245759"
},
{
"category": "self",
"summary": "SUSE Bug 1253889",
"url": "https://bugzilla.suse.com/1253889"
},
{
"category": "self",
"summary": "SUSE Bug 1257010",
"url": "https://bugzilla.suse.com/1257010"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE Bug 1262926",
"url": "https://bugzilla.suse.com/1262926"
},
{
"category": "self",
"summary": "SUSE Bug 1265762",
"url": "https://bugzilla.suse.com/1265762"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
}
],
"title": "Security update for google-guest-agent",
"tracking": {
"current_release_date": "2026-06-12T08:44:33Z",
"generator": {
"date": "2026-06-12T08:44:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:22133-1",
"initial_release_date": "2026-06-12T08:44:33Z",
"revision_history": [
{
"date": "2026-06-12T08:44:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"product": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"product_id": "google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"product": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"product_id": "google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"product": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"product_id": "google-guest-agent-20260430.00-slfo.1.1_1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64",
"product": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64",
"product_id": "google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64"
},
"product_reference": "google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le"
},
"product_reference": "google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x"
},
"product_reference": "google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
},
"product_reference": "google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-12T08:44:33Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-12T08:44:33Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-12T08:44:33Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-12T08:44:33Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-12T08:44:33Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20260430.00-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-12T08:44:33Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
}
]
}
SUSE-SU-2026:22141-1
Vulnerability from csaf_suse - Published: 2026-06-11 09:43 - Updated: 2026-06-11 09:43Summary
Security update for elemental-system-agent
Severity
Important
Notes
Title of the patch: Security update for elemental-system-agent
Description of the patch: This update for elemental-system-agent fixes the following issue
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-
header (bsc#1260277).
Changes for elemental-system-agent:
- Update to version 0.3.16:
* setup for immutable releases (#274)
* align system-agent image publishing for signed releases (#270)
* Bumo github.com/docker/cli to v29.2.0 and go.opentelemetry.io/otel to v1.43.0
* run go mod tidy in /test folder
* Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (bsc#1260277 CVE-2026-33186)
* Bump github.com/docker/cli in /test
* export CATTLE_NODE_NAME if SYSTEM_UPGRADE_NODE_NAME is set
* use correct prefix for system-agent binary (#273)
* checksum validation (#271)
* Add `validate` subcommand for configuration validation (#250)
* Update CODEOWNERS
* Pin GH Actions to commit sha
* chore: bump sles to 15.7
* Extend remote plan e2e tests
* Fix agent restart issue and introduce constants
* chore: bump go to v1.25
* Setup e2e test infrastructure
* chores(deps): Bump k8s dependencies
* Define linter rules
* Fix CI failures
* Introduce an extended Makefile
* Switch workflows to use name makefile
* Replace dapper with multi stage builds
* Remove dapper scripts
* Add multiple improvements for ignore files
* fix: remove umask command from the system-agent unit-file
* fix-system-agent-umask
* [1.34] bumped dependencies for 1.34 support (#242)
* Bump K8s patch level to 1.33.5 and Go patch level to 1.24.6
* fix: properly handle traps after unsuccessful SUC job execution
* fix: do not unconditionally reset failure-counts
* fix: remove resetFailureCountOnStartup, always reset failure counts on first start
* un-rc wrangler and lasso
* drop windows 2019 when running PR CI
- Update to version 0.3.13:
* Bumped dependencies for k8s v1.33
* Add delete for plan.File
* fix dispatch
* fix: add retry logic for one time instruction
* Get UID/GID for current user in write file_test.go
* Update secrets for dispatch
* fix golangci
* support k8s 1.32.2
* Add GitHub App token generation and dispatch job for System Agent Upgrade workflow.
* Add ResetFailureCountOnServiceRestart, if true reset plan failure count after each restart of the system-agent
* Bump wharfie to v0.6.7
* Add tests and update CI
* Windows updates
Patchnames: SUSE-SLE-Micro-6.1-574
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.1 (High)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for elemental-system-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for elemental-system-agent fixes the following issue\n\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-\n header (bsc#1260277).\n\nChanges for elemental-system-agent:\n\n- Update to version 0.3.16:\n * setup for immutable releases (#274)\n * align system-agent image publishing for signed releases (#270)\n * Bumo github.com/docker/cli to v29.2.0 and go.opentelemetry.io/otel to v1.43.0\n * run go mod tidy in /test folder\n * Bump google.golang.org/grpc from 1.75.0 to 1.79.3 (bsc#1260277 CVE-2026-33186)\n * Bump github.com/docker/cli in /test\n * export CATTLE_NODE_NAME if SYSTEM_UPGRADE_NODE_NAME is set\n * use correct prefix for system-agent binary (#273)\n * checksum validation (#271)\n * Add `validate` subcommand for configuration validation (#250)\n * Update CODEOWNERS\n * Pin GH Actions to commit sha\n * chore: bump sles to 15.7\n * Extend remote plan e2e tests\n * Fix agent restart issue and introduce constants\n * chore: bump go to v1.25\n * Setup e2e test infrastructure\n * chores(deps): Bump k8s dependencies\n * Define linter rules\n * Fix CI failures\n * Introduce an extended Makefile\n * Switch workflows to use name makefile\n * Replace dapper with multi stage builds\n * Remove dapper scripts\n * Add multiple improvements for ignore files\n * fix: remove umask command from the system-agent unit-file\n * fix-system-agent-umask\n * [1.34] bumped dependencies for 1.34 support (#242)\n * Bump K8s patch level to 1.33.5 and Go patch level to 1.24.6\n * fix: properly handle traps after unsuccessful SUC job execution\n * fix: do not unconditionally reset failure-counts\n * fix: remove resetFailureCountOnStartup, always reset failure counts on first start\n * un-rc wrangler and lasso\n * drop windows 2019 when running PR CI\n- Update to version 0.3.13:\n * Bumped dependencies for k8s v1.33\n * Add delete for plan.File\n * fix dispatch\n * fix: add retry logic for one time instruction\n * Get UID/GID for current user in write file_test.go\n * Update secrets for dispatch\n * fix golangci\n * support k8s 1.32.2\n * Add GitHub App token generation and dispatch job for System Agent Upgrade workflow.\n * Add ResetFailureCountOnServiceRestart, if true reset plan failure count after each restart of the system-agent\n * Bump wharfie to v0.6.7\n * Add tests and update CI\n * Windows updates\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-574",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22141-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:22141-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622141-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:22141-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047399.html"
},
{
"category": "self",
"summary": "SUSE Bug 1260277",
"url": "https://bugzilla.suse.com/1260277"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
}
],
"title": "Security update for elemental-system-agent",
"tracking": {
"current_release_date": "2026-06-11T09:43:01Z",
"generator": {
"date": "2026-06-11T09:43:01Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:22141-1",
"initial_release_date": "2026-06-11T09:43:01Z",
"revision_history": [
{
"date": "2026-06-11T09:43:01Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64",
"product": {
"name": "elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64",
"product_id": "elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64",
"product": {
"name": "elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64",
"product_id": "elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64"
},
"product_reference": "elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64"
},
"product_reference": "elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:elemental-system-agent-0.3.16-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-11T09:43:01Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
}
]
}
SUSE-SU-2026:22242-1
Vulnerability from csaf_suse - Published: 2026-06-22 09:09 - Updated: 2026-06-22 09:09Summary
Security update for google-osconfig-agent
Severity
Important
Notes
Title of the patch: Security update for google-osconfig-agent
Description of the patch: This update for google-osconfig-agent fixes the following issues
- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).
- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents
(bsc#1251453).
- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially
crafted input (bsc#1251704).
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-
header (bsc#1260264).
- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE
(bsc#1265762).
- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of
service (bsc#1262926).
- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation
bypass and privilege escalation (bsc#1266603).
- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
(bsc#1266171).
- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
(bsc#1266171).
- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during
smart-HTTP clone and fetch operations (bsc#1264923).
Changes for google-osconfig-agent:
- Update to version 20260615.01
* Upgrade golang.org/x/crypto & golang.org/x/net (#1006)
- from version 20260615.00
* Add unit tests for ospatch_apt_upgrade.go (#938)
- Update to version 20260611.00
* Add unit tests for policies/policies.go PART 5 (#998)
- from version 20260610.00
* Add unit tests for policies/policies.go PART 4 (#997)
- from version 20260609.02
* squash commits (#936)
- from version 20260609.01
* Add unit tests for policies/policies.go PART 3 (#996)
- from version 20260609.00
* Add unit tests for policies/policies.go PART 2 (#991)
- from version 20260602.01
* Align format of dates and timestamp collected across Windows packages (#973)
- from version 20260602.00
* Add unit tests for config/config,go (#979)
- from version 20260528.00
* Bump github.com/containerd/containerd (#990)
- from version 20260521.00
* Cover agentconfig functionality by unit tests (#925)
- from version 20260520.04
* Add unit tests for policies/googet.go (#961)
* Bump github.com/go-git/go-git/v5 (#987)
- from version 20260520.02
* Add unit tests for policies/yum.go (#952)
* Add unit tests for policies/apt.go PART 3 (#951)
- from version 20260520.00
* Add unit tests for policies/zypper.go (#953)
- from version 20260519.00
* Add unit tests for policies/policies.go PART 1 (#949)
- from version 20260513.01
* Bump github.com/go-git/go-git/v5 (#981), this also updates
golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)
- from version 20260513.00
* upgrade a few packages (#980)
- from version 20260512.02
* Add/improve unit tests for agentendpoint/exec_task.go (#933)
- from version 20260512.01
* Cover google_update.go by unit tests (#941)
- from version 20260512.00
* Change zone for arm64 builds because of stockout (#978)
- Update to version 20260511.00
* switch to t2a-standard-2 on ARM package build (#977)
- from version 20260505.03
* Cover zypper_patch by unit tests (#958)
- from version 20260505.02
* Remove unused functions DisableAutoUpdates (#970)
- from version 20260505.01
* Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)
- from version 20260505.00
* Upgrade a few dependencies across the repo (#968)
+ github.com/go-git/go-git/v5 5.16.2->5.18.0 (bsc#1264923, CVE-2026-41506)
+ github.com/go-jose/go-jose/v4 4.1.3->4.1.4 (bsc#1262926, CVE-2026-34986)
+ github.com/go-viper/mapstructure/v2 2.3.0->2.4.0
+ go.opentelemetry.io/otel 1.40.0->1.41.0
+ go.opentelemetry.io/otel/sdk 1.39.0->1.43.0
- from version 20260504.01
* bump github.com/docker/cli to 29.2.0 (#962)
- from version 20260504.00
* Bump github.com/opencontainers/selinux (#960)
- Update to version 20260428.00
* Add/improve unit tests for agentendpoint/agentendpoint.go (#930)
- from version 20260427.03
* Cover config/file.go by unit tests (#935)
- from version 20260422.01
* Cover patch_linux.go by unit tests (#932)
- from version 20260422.00
* upgrade grpc package in main package and e2e tests (#959)
(bsc#1260264, CVE-2026-33186)
- from version 20260417.04
* Bump OSV-Scalibr version to v0.4.3 (#956)
- from version 20260417.03
* Add unit tests for updates_linux.go (#937)
- from version 20260417.02
* Add zone to CreateDisk step (#955)
- from version 20260417.01
* Change disk type for deb11 (#954)
- from version 20260417.00
* Add unit tests for policies/apt.go PART 1 (#950)
- from version 20260410.02
* Add unit tests for packages/pty_linux.go (#943)
- from version 20260410.01
* fix disk type for arm workflows (#948)
- from version 20260410.00
* Change machine type for arm based workflows (#946)
- Update to version 20260330.00
* bump timeouts for all workflows (#940)
- from version 20260326.00
* Cover exec_resource.go by unit tests (#934)
- from version 20260318.00
* Integrate OSConfig agent with ReportVmInventory (#923)
- from version 20260313.02
* remove cacheonly flag from yum upgrade (#924)
- from version 20260313.01
* conditions python version override (#927)
- from version 20260313.00
* Fix presubmits by explicitly set python version for rpm based systems (#926)
- from version 20260311.00
* Bump osconfig version (#922)
- from version 20260309.02
* Extend OSV scalibr extractor (#921)
- from version 20260309.01
* upgrade golang.org/x/crypto and it's transitive deps (#918)
- from version 20260309.00
* Add purl to pkg info (#920)
- from version 20260306.00
* Add 'Type' field to PkgInfo (#919)
- from version 20260303.01
* Upgrade go.opentelemetry.io/otel/sdk (#913)
- from version 20260303.00
* Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)
- from version 20260302.00
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)
- from version 20260126.00
* Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)
* Bump github.com/sirupsen/logrus (#894)
- Update to version 20260119.00
* Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)
- Update to version 20251230.00
* chore: Migrate gsutil usage to gcloud storage (#904)
- from version 20251223.00
* fix e2e tests for report inventory (#903)
- from version 20251222.01
* Revert "Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)" (#902)
- from version 20251222.00
* Bump golang to the new version (#900)
- from version 20251218.00
* add new CODEOWNERS (#901)
- from version 20251217.00
* Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)
- Bump the golang compiler version to 1.24.5
- Update to version 20251202.00
* Revert "Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)" (#893)
- Update to version 20251201.00
* Revert "Bump github.com/containerd/containerd (#890)" (#892)
- Update to version 20251126.00
* Bump github.com/containerd/containerd (#890)
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)
- Update to version 20251028.00
* Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)
* Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)
- from version 20251023.02
* Create multiple_os.yaml (#883)
- from version 20251023.00
* Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)
* Add test runner for e2e tests (#876)
- Update to version 20250925.00
* Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)
* Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)
* Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)
* Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)
- Update to version 20250902.01
* Bump github.com/googleapis/enterprise-certificate-proxy (#829)
- from version 20250902.00
* update github.com/go-jose/go-jose/v4 (#869)
* Upgrade scalibr and other deps (#866)
- from version 20250901.00
* Fix possibility of path traversal for zip and tar archival (#868)
- from version 20250825.00
* set CODEOWNERS file as required by org (#863)
- from version 20250819.00
* Fix/rhel10 build centos image (#860)
- from version 20250814.00
* Fix/rhel10 build image (#859)
- from version 20250813.00
* Fix: Add RHEL 10 support to RPM startup script (#858)
- from version 20250811.00
* Remove old/sles-15-sp4-sap as image is deprecated (#857)
- Update to version 20250806.00
* Fixed JSON identifier for the universe domain (#855)
- from version 20250729.00
* Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)
- from version 20250725.02
* Update utils.go (#854)
* Upgrade golang.org/x/oauth2 package to the latest. (#853)
* Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)
- from version 20250725.01
* Bump golang.org/x/oauth2 (#848)
* Port fix for debian 11 to goo package manager. (#852)
- from version 20250725.00
* Update Golang version in common.sh and skip backports
repo for debian 11 (#850)
- from version 20250723.01
* Add workflows to build package for el10 (#849)
- from version 20250721.00
* Make OS Config agent TPC aware (#846)
- from version 20250718.00
* Create workflows for new Debian 13. (#847)
- Update to version 20250703.00
* Fix sles images (#844)
- from version 20250702.00
* Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)
- from version 20250701.00
* Bump the go_modules group across 1 directory with 2 updates (#840)
- Update to version 20250606.00
* Change base docker images Google's official base images. (#838)
- Update to version 20250523.01
* Add a simple no-op OS policy for user testing (#837)
- from version 20250523.00
* Introduce scalibr inventory extractor for dpkg/rpm/cos
os/filesystem extractors (linux) (#834)
* Trace GetInstalledPackages memory levels (#835)
- from version 20250520.00
- Update to version 20250513.00
* Fix rpm extractor, handle (none) value correctly. (#833)
- from version 20250512.01
* Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)
- from version 20250512.00
* Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)
- from version 20250508.01
* cosmetic refactoring to osinfo package (#826)
- from version 20250508.00
* Refactor /inventory with dependency injection (#825)
* Add debian, ubuntu (InstalledDebPackages) snapshots (#821)
* cover packages_linux.go file with tests (#824)
* Add debian (10,11,12) GetPackageUpdates output snapshots (#822)
- from version 20250507.00
* Add InstalledRPMPackages snapshot tests (#823)
- from version 20250506.02
* Yum tests: simplify initialization of exit errors (#820)
- from version 20250506.01
* Improve test coverage for gem package manager (#818)
- from version 20250506.00
* after go/x/crypto update 0.32.0 -> 0.37.0 (#817)
- from version 20250505.01
* Improve packages package coverage (#814)
* Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)
- from version 20250505.00
* Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)
- from version 20250430.00
* Snapshot YumUpdates (GetPackageUpdates) output (#813)
- from version 20250428.00
* Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output
for sles 12, 15 testdata (#812)
- from version 20250423.00
* Introduce MatchSnapshot large test results matcher function, snapshot
apt-deb GetPackageUpdates (#811)
- from version 20250416.02
* defaultSleeper: tolerate 10% difference to reduce test flakiness (#810)
* Add output of some packagemanagers to the testdata (#808)
- from version 20250416.01
* Refactor OS Info package (#809)
- from version 20250416.00
* Report RPM inventory as YUM instead of empty SoftwarePackage
when neither Zypper nor YUM are installed. (#805)
- from version 20250414.00
* Update hash computation algorithm (#799)
- Update to version 20250320.00
* Bump github.com/envoyproxy/protoc-gen-validate from 1.1.0 to 1.2.1 (#797)
- from version 20250318.00
* Bump go.opentelemetry.io/otel/sdk/metric from 1.32.0 to 1.35.0 (#793)
- from version 20250317.02
* Bump cel.dev/expr from 0.18.0 to 0.22.0 (#792)
* Bump github.com/golang/glog from 1.2.3 to 1.2.4 in the go_modules group (#785)
- from version 20250317.01
* Bump cloud.google.com/go/logging from 1.12.0 to 1.13.0 (#774)
- from version 20250317.00
* Add tests for retryutil package. (#795)
- from version 20250306.00
* Update OWNERS (#794)
- from version 20250206.01
* Use separate counters for pre- and post-patch reboots. (#788)
- from version 20250206.00
* Update owners (#789)
- from version 20250203.00
* Fix the vet errors for contants in logging (#786)
- from version 20250122.00
* change available package check (#783)
- from version 20250121.00
* Fix Inventory reporting e2e tests. (#782)
- from version 20250120.00
* fix e2e tests (#781)
- Add -buildmode=pie to go build command line (bsc#1239948)
- from version 20240501.00 (bsc#1236533, CVE-2023-45288)
Patchnames: SUSE-SLE-Micro-6.0-764
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
89 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-osconfig-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-osconfig-agent fixes the following issues\n\n- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).\n- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents\n (bsc#1251453).\n- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially\n crafted input (bsc#1251704).\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-\n header (bsc#1260264).\n- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE\n (bsc#1265762).\n- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of\n service (bsc#1262926).\n- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation\n bypass and privilege escalation (bsc#1266603).\n- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent \n (bsc#1266171).\n- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).\n- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts\n (bsc#1266171).\n- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).\n- CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during\n smart-HTTP clone and fetch operations (bsc#1264923).\n\nChanges for google-osconfig-agent:\n\n- Update to version 20260615.01\n * Upgrade golang.org/x/crypto \u0026 golang.org/x/net (#1006)\n- from version 20260615.00\n * Add unit tests for ospatch_apt_upgrade.go (#938)\n- Update to version 20260611.00\n * Add unit tests for policies/policies.go PART 5 (#998)\n- from version 20260610.00\n * Add unit tests for policies/policies.go PART 4 (#997)\n- from version 20260609.02\n * squash commits (#936)\n- from version 20260609.01\n * Add unit tests for policies/policies.go PART 3 (#996)\n- from version 20260609.00\n * Add unit tests for policies/policies.go PART 2 (#991)\n- from version 20260602.01\n * Align format of dates and timestamp collected across Windows packages (#973)\n- from version 20260602.00\n * Add unit tests for config/config,go (#979)\n- from version 20260528.00\n * Bump github.com/containerd/containerd (#990)\n- from version 20260521.00\n * Cover agentconfig functionality by unit tests (#925)\n- from version 20260520.04\n * Add unit tests for policies/googet.go (#961)\n * Bump github.com/go-git/go-git/v5 (#987)\n- from version 20260520.02\n * Add unit tests for policies/yum.go (#952)\n * Add unit tests for policies/apt.go PART 3 (#951)\n- from version 20260520.00\n * Add unit tests for policies/zypper.go (#953)\n- from version 20260519.00\n * Add unit tests for policies/policies.go PART 1 (#949)\n- from version 20260513.01\n * Bump github.com/go-git/go-git/v5 (#981), this also updates\n golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)\n- from version 20260513.00\n * upgrade a few packages (#980)\n- from version 20260512.02\n * Add/improve unit tests for agentendpoint/exec_task.go (#933)\n- from version 20260512.01\n * Cover google_update.go by unit tests (#941)\n- from version 20260512.00\n * Change zone for arm64 builds because of stockout (#978)\n- Update to version 20260511.00\n * switch to t2a-standard-2 on ARM package build (#977)\n- from version 20260505.03\n * Cover zypper_patch by unit tests (#958)\n- from version 20260505.02\n * Remove unused functions DisableAutoUpdates (#970)\n- from version 20260505.01\n * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)\n- from version 20260505.00\n * Upgrade a few dependencies across the repo (#968)\n + github.com/go-git/go-git/v5 5.16.2-\u003e5.18.0 (bsc#1264923, CVE-2026-41506)\n + github.com/go-jose/go-jose/v4 4.1.3-\u003e4.1.4 (bsc#1262926, CVE-2026-34986)\n + github.com/go-viper/mapstructure/v2 2.3.0-\u003e2.4.0\n + go.opentelemetry.io/otel 1.40.0-\u003e1.41.0\n + go.opentelemetry.io/otel/sdk 1.39.0-\u003e1.43.0\n- from version 20260504.01\n * bump github.com/docker/cli to 29.2.0 (#962)\n- from version 20260504.00\n * Bump github.com/opencontainers/selinux (#960)\n- Update to version 20260428.00\n * Add/improve unit tests for agentendpoint/agentendpoint.go (#930)\n- from version 20260427.03\n * Cover config/file.go by unit tests (#935)\n- from version 20260422.01\n * Cover patch_linux.go by unit tests (#932)\n- from version 20260422.00\n * upgrade grpc package in main package and e2e tests (#959)\n (bsc#1260264, CVE-2026-33186)\n- from version 20260417.04\n * Bump OSV-Scalibr version to v0.4.3 (#956)\n- from version 20260417.03\n * Add unit tests for updates_linux.go (#937)\n- from version 20260417.02\n * Add zone to CreateDisk step (#955)\n- from version 20260417.01\n * Change disk type for deb11 (#954)\n- from version 20260417.00\n * Add unit tests for policies/apt.go PART 1 (#950)\n- from version 20260410.02\n * Add unit tests for packages/pty_linux.go (#943)\n- from version 20260410.01\n * fix disk type for arm workflows (#948)\n- from version 20260410.00\n * Change machine type for arm based workflows (#946)\n- Update to version 20260330.00\n * bump timeouts for all workflows (#940)\n- from version 20260326.00\n * Cover exec_resource.go by unit tests (#934)\n- from version 20260318.00\n * Integrate OSConfig agent with ReportVmInventory (#923)\n- from version 20260313.02\n * remove cacheonly flag from yum upgrade (#924)\n- from version 20260313.01\n * conditions python version override (#927)\n- from version 20260313.00\n * Fix presubmits by explicitly set python version for rpm based systems (#926)\n- from version 20260311.00\n * Bump osconfig version (#922)\n- from version 20260309.02\n * Extend OSV scalibr extractor (#921)\n- from version 20260309.01\n * upgrade golang.org/x/crypto and it\u0027s transitive deps (#918)\n- from version 20260309.00\n * Add purl to pkg info (#920)\n- from version 20260306.00\n * Add \u0027Type\u0027 field to PkgInfo (#919)\n- from version 20260303.01\n * Upgrade go.opentelemetry.io/otel/sdk (#913)\n- from version 20260303.00\n * Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)\n- from version 20260302.00\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)\n- from version 20260126.00\n * Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)\n * Bump github.com/sirupsen/logrus (#894)\n- Update to version 20260119.00\n * Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)\n- Update to version 20251230.00\n * chore: Migrate gsutil usage to gcloud storage (#904)\n- from version 20251223.00\n * fix e2e tests for report inventory (#903)\n- from version 20251222.01\n * Revert \"Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\" (#902)\n- from version 20251222.00\n * Bump golang to the new version (#900)\n- from version 20251218.00\n * add new CODEOWNERS (#901)\n- from version 20251217.00\n * Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\n- Bump the golang compiler version to 1.24.5\n- Update to version 20251202.00\n * Revert \"Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\" (#893)\n- Update to version 20251201.00\n * Revert \"Bump github.com/containerd/containerd (#890)\" (#892)\n- Update to version 20251126.00\n * Bump github.com/containerd/containerd (#890)\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\n- Update to version 20251028.00\n * Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)\n * Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)\n- from version 20251023.02\n * Create multiple_os.yaml (#883)\n- from version 20251023.00\n * Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)\n * Add test runner for e2e tests (#876)\n- Update to version 20250925.00\n * Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)\n * Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)\n * Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)\n * Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)\n- Update to version 20250902.01\n * Bump github.com/googleapis/enterprise-certificate-proxy (#829)\n- from version 20250902.00\n * update github.com/go-jose/go-jose/v4 (#869)\n * Upgrade scalibr and other deps (#866)\n- from version 20250901.00\n * Fix possibility of path traversal for zip and tar archival (#868)\n- from version 20250825.00\n * set CODEOWNERS file as required by org (#863)\n- from version 20250819.00\n * Fix/rhel10 build centos image (#860)\n- from version 20250814.00\n * Fix/rhel10 build image (#859)\n- from version 20250813.00\n * Fix: Add RHEL 10 support to RPM startup script (#858)\n- from version 20250811.00\n * Remove old/sles-15-sp4-sap as image is deprecated (#857)\n- Update to version 20250806.00\n * Fixed JSON identifier for the universe domain (#855)\n- from version 20250729.00\n * Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)\n- from version 20250725.02\n * Update utils.go (#854)\n * Upgrade golang.org/x/oauth2 package to the latest. (#853)\n * Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)\n- from version 20250725.01\n * Bump golang.org/x/oauth2 (#848)\n * Port fix for debian 11 to goo package manager. (#852)\n- from version 20250725.00\n * Update Golang version in common.sh and skip backports\n repo for debian 11 (#850)\n- from version 20250723.01\n * Add workflows to build package for el10 (#849)\n- from version 20250721.00\n * Make OS Config agent TPC aware (#846)\n- from version 20250718.00\n * Create workflows for new Debian 13. (#847)\n- Update to version 20250703.00\n * Fix sles images (#844)\n- from version 20250702.00\n * Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)\n- from version 20250701.00\n * Bump the go_modules group across 1 directory with 2 updates (#840)\n- Update to version 20250606.00\n * Change base docker images Google\u0027s official base images. (#838)\n- Update to version 20250523.01\n * Add a simple no-op OS policy for user testing (#837)\n- from version 20250523.00\n * Introduce scalibr inventory extractor for dpkg/rpm/cos\n os/filesystem extractors (linux) (#834)\n * Trace GetInstalledPackages memory levels (#835)\n- from version 20250520.00\n- Update to version 20250513.00\n * Fix rpm extractor, handle (none) value correctly. (#833)\n- from version 20250512.01\n * Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)\n- from version 20250512.00\n * Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)\n- from version 20250508.01\n * cosmetic refactoring to osinfo package (#826)\n- from version 20250508.00\n * Refactor /inventory with dependency injection (#825)\n * Add debian, ubuntu (InstalledDebPackages) snapshots (#821)\n * cover packages_linux.go file with tests (#824)\n * Add debian (10,11,12) GetPackageUpdates output snapshots (#822)\n- from version 20250507.00\n * Add InstalledRPMPackages snapshot tests (#823)\n- from version 20250506.02\n * Yum tests: simplify initialization of exit errors (#820)\n- from version 20250506.01\n * Improve test coverage for gem package manager (#818)\n- from version 20250506.00\n * after go/x/crypto update 0.32.0 -\u003e 0.37.0 (#817)\n- from version 20250505.01\n * Improve packages package coverage (#814)\n * Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)\n- from version 20250505.00\n * Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)\n- from version 20250430.00\n * Snapshot YumUpdates (GetPackageUpdates) output (#813)\n- from version 20250428.00\n * Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output\n for sles 12, 15 testdata (#812)\n- from version 20250423.00\n * Introduce MatchSnapshot large test results matcher function, snapshot\n apt-deb GetPackageUpdates (#811)\n- from version 20250416.02\n * defaultSleeper: tolerate 10% difference to reduce test flakiness (#810)\n * Add output of some packagemanagers to the testdata (#808)\n- from version 20250416.01\n * Refactor OS Info package (#809)\n- from version 20250416.00\n * Report RPM inventory as YUM instead of empty SoftwarePackage\n when neither Zypper nor YUM are installed. (#805)\n- from version 20250414.00\n * Update hash computation algorithm (#799)\n- Update to version 20250320.00\n * Bump github.com/envoyproxy/protoc-gen-validate from 1.1.0 to 1.2.1 (#797)\n- from version 20250318.00\n * Bump go.opentelemetry.io/otel/sdk/metric from 1.32.0 to 1.35.0 (#793)\n- from version 20250317.02\n * Bump cel.dev/expr from 0.18.0 to 0.22.0 (#792)\n * Bump github.com/golang/glog from 1.2.3 to 1.2.4 in the go_modules group (#785)\n- from version 20250317.01\n * Bump cloud.google.com/go/logging from 1.12.0 to 1.13.0 (#774)\n- from version 20250317.00\n * Add tests for retryutil package. (#795)\n- from version 20250306.00\n * Update OWNERS (#794)\n- from version 20250206.01\n * Use separate counters for pre- and post-patch reboots. (#788)\n- from version 20250206.00\n * Update owners (#789)\n- from version 20250203.00\n * Fix the vet errors for contants in logging (#786)\n- from version 20250122.00\n * change available package check (#783)\n- from version 20250121.00\n * Fix Inventory reporting e2e tests. (#782)\n- from version 20250120.00\n * fix e2e tests (#781)\n- Add -buildmode=pie to go build command line (bsc#1239948)\n- from version 20240501.00 (bsc#1236533, CVE-2023-45288)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-764",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22242-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:22242-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622242-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:22242-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047622.html"
},
{
"category": "self",
"summary": "SUSE Bug 1210938",
"url": "https://bugzilla.suse.com/1210938"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE Bug 1239948",
"url": "https://bugzilla.suse.com/1239948"
},
{
"category": "self",
"summary": "SUSE Bug 1244304",
"url": "https://bugzilla.suse.com/1244304"
},
{
"category": "self",
"summary": "SUSE Bug 1244503",
"url": "https://bugzilla.suse.com/1244503"
},
{
"category": "self",
"summary": "SUSE Bug 1251453",
"url": "https://bugzilla.suse.com/1251453"
},
{
"category": "self",
"summary": "SUSE Bug 1251704",
"url": "https://bugzilla.suse.com/1251704"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE Bug 1262926",
"url": "https://bugzilla.suse.com/1262926"
},
{
"category": "self",
"summary": "SUSE Bug 1264923",
"url": "https://bugzilla.suse.com/1264923"
},
{
"category": "self",
"summary": "SUSE Bug 1265762",
"url": "https://bugzilla.suse.com/1265762"
},
{
"category": "self",
"summary": "SUSE Bug 1266171",
"url": "https://bugzilla.suse.com/1266171"
},
{
"category": "self",
"summary": "SUSE Bug 1266603",
"url": "https://bugzilla.suse.com/1266603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45339 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47911 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41506 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
}
],
"title": "Security update for google-osconfig-agent",
"tracking": {
"current_release_date": "2026-06-22T09:09:04Z",
"generator": {
"date": "2026-06-22T09:09:04Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:22242-1",
"initial_release_date": "2026-06-22T09:09:04Z",
"revision_history": [
{
"date": "2026-06-22T09:09:04Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-1.1.aarch64",
"product": {
"name": "google-osconfig-agent-20260615.01-1.1.aarch64",
"product_id": "google-osconfig-agent-20260615.01-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-1.1.s390x",
"product": {
"name": "google-osconfig-agent-20260615.01-1.1.s390x",
"product_id": "google-osconfig-agent-20260615.01-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-1.1.x86_64",
"product": {
"name": "google-osconfig-agent-20260615.01-1.1.x86_64",
"product_id": "google-osconfig-agent-20260615.01-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64"
},
"product_reference": "google-osconfig-agent-20260615.01-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x"
},
"product_reference": "google-osconfig-agent-20260615.01-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
},
"product_reference": "google-osconfig-agent-20260615.01-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-45339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45339"
}
],
"notes": [
{
"category": "general",
"text": "When logs are written to a widely-writable directory (the default), an unprivileged attacker may predict a privileged process\u0027s log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that sensitive file. To fix that, glog now causes the program to exit (with status code 2) when it finds that the configured log file already exists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45339",
"url": "https://www.suse.com/security/cve/CVE-2024-45339"
},
{
"category": "external",
"summary": "SUSE Bug 1236541 for CVE-2024-45339",
"url": "https://bugzilla.suse.com/1236541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2024-45339"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-47911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47911"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47911",
"url": "https://www.suse.com/security/cve/CVE-2025-47911"
},
{
"category": "external",
"summary": "SUSE Bug 1251308 for CVE-2025-47911",
"url": "https://bugzilla.suse.com/1251308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2025-47911"
},
{
"cve": "CVE-2025-58190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58190"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58190",
"url": "https://www.suse.com/security/cve/CVE-2025-58190"
},
{
"category": "external",
"summary": "SUSE Bug 1251309 for CVE-2025-58190",
"url": "https://bugzilla.suse.com/1251309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2025-58190"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-41506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41506"
}
],
"notes": [
{
"category": "general",
"text": "go-git is an extensible git implementation library written in pure Go. Prior to versions 5.18.0 and 6.0.0-alpha.2, go-git may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. This issue has been patched in versions 5.18.0 and 6.0.0-alpha.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41506",
"url": "https://www.suse.com/security/cve/CVE-2026-41506"
},
{
"category": "external",
"summary": "SUSE Bug 1264854 for CVE-2026-41506",
"url": "https://bugzilla.suse.com/1264854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2026-41506"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
}
]
}
SUSE-SU-2026:22249-1
Vulnerability from csaf_suse - Published: 2026-06-22 09:04 - Updated: 2026-06-22 09:04Summary
Security update for google-osconfig-agent
Severity
Important
Notes
Title of the patch: Security update for google-osconfig-agent
Description of the patch: This update for google-osconfig-agent fixes the following issues
- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers.
- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents
(bsc#1251453).
- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially
crafted input (bsc#1251704).
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-
header (bsc#1260264).
- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE
(bsc#1265762).
- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of
service (bsc#1262926).
- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation
bypass and privilege escalation (bsc#1266603).
- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
(bsc#1266171).
- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
(bsc#1266171).
- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during
smart-HTTP clone and fetch operations (bsc#1264923).
Changes for google-osconfig-agent:
- Update to version 20260615.01
* Upgrade golang.org/x/crypto & golang.org/x/net (#1006)
- from version 20260615.00
* Add unit tests for ospatch_apt_upgrade.go (#938)
- Update to version 20260611.00
* Add unit tests for policies/policies.go PART 5 (#998)
- from version 20260610.00
* Add unit tests for policies/policies.go PART 4 (#997)
- from version 20260609.02
* squash commits (#936)
- from version 20260609.01
* Add unit tests for policies/policies.go PART 3 (#996)
- from version 20260609.00
* Add unit tests for policies/policies.go PART 2 (#991)
- from version 20260602.01
* Align format of dates and timestamp collected across Windows packages (#973)
- from version 20260602.00
* Add unit tests for config/config,go (#979)
- from version 20260528.00
* Bump github.com/containerd/containerd (#990)
- from version 20260521.00
* Cover agentconfig functionality by unit tests (#925)
- from version 20260520.04
* Add unit tests for policies/googet.go (#961)
* Bump github.com/go-git/go-git/v5 (#987)
- from version 20260520.02
* Add unit tests for policies/yum.go (#952)
* Add unit tests for policies/apt.go PART 3 (#951)
- from version 20260520.00
* Add unit tests for policies/zypper.go (#953)
- from version 20260519.00
* Add unit tests for policies/policies.go PART 1 (#949)
- from version 20260513.01
* Bump github.com/go-git/go-git/v5 (#981), this also updates
golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)
- from version 20260513.00
* upgrade a few packages (#980)
- from version 20260512.02
* Add/improve unit tests for agentendpoint/exec_task.go (#933)
- from version 20260512.01
* Cover google_update.go by unit tests (#941)
- from version 20260512.00
* Change zone for arm64 builds because of stockout (#978)
- Update to version 20260511.00
* switch to t2a-standard-2 on ARM package build (#977)
- from version 20260505.03
* Cover zypper_patch by unit tests (#958)
- from version 20260505.02
* Remove unused functions DisableAutoUpdates (#970)
- from version 20260505.01
* Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)
- from version 20260505.00
* Upgrade a few dependencies across the repo (#968)
+ github.com/go-git/go-git/v5 5.16.2->5.18.0 (bsc#1264923, CVE-2026-41506)
+ github.com/go-jose/go-jose/v4 4.1.3->4.1.4 (bsc#1262926, CVE-2026-34986)
+ github.com/go-viper/mapstructure/v2 2.3.0->2.4.0
+ go.opentelemetry.io/otel 1.40.0->1.41.0
+ go.opentelemetry.io/otel/sdk 1.39.0->1.43.0
- from version 20260504.01
* bump github.com/docker/cli to 29.2.0 (#962)
- from version 20260504.00
* Bump github.com/opencontainers/selinux (#960)
- Update to version 20260428.00
* Add/improve unit tests for agentendpoint/agentendpoint.go (#930)
- from version 20260427.03
* Cover config/file.go by unit tests (#935)
- from version 20260422.01
* Cover patch_linux.go by unit tests (#932)
- from version 20260422.00
* upgrade grpc package in main package and e2e tests (#959)
(bsc#1260264, CVE-2026-33186)
- from version 20260417.04
* Bump OSV-Scalibr version to v0.4.3 (#956)
- from version 20260417.03
* Add unit tests for updates_linux.go (#937)
- from version 20260417.02
* Add zone to CreateDisk step (#955)
- from version 20260417.01
* Change disk type for deb11 (#954)
- from version 20260417.00
* Add unit tests for policies/apt.go PART 1 (#950)
- from version 20260410.02
* Add unit tests for packages/pty_linux.go (#943)
- from version 20260410.01
* fix disk type for arm workflows (#948)
- from version 20260410.00
* Change machine type for arm based workflows (#946)
- Update to version 20260330.00
* bump timeouts for all workflows (#940)
- from version 20260326.00
* Cover exec_resource.go by unit tests (#934)
- from version 20260318.00
* Integrate OSConfig agent with ReportVmInventory (#923)
- from version 20260313.02
* remove cacheonly flag from yum upgrade (#924)
- from version 20260313.01
* conditions python version override (#927)
- from version 20260313.00
* Fix presubmits by explicitly set python version for rpm based systems (#926)
- from version 20260311.00
* Bump osconfig version (#922)
- from version 20260309.02
* Extend OSV scalibr extractor (#921)
- from version 20260309.01
* upgrade golang.org/x/crypto and it's transitive deps (#918)
- from version 20260309.00
* Add purl to pkg info (#920)
- from version 20260306.00
* Add 'Type' field to PkgInfo (#919)
- from version 20260303.01
* Upgrade go.opentelemetry.io/otel/sdk (#913)
- from version 20260303.00
* Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)
- from version 20260302.00
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)
- from version 20260126.00
* Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)
* Bump github.com/sirupsen/logrus (#894)
- Update to version 20260119.00
* Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)
- Update to version 20251230.00
* chore: Migrate gsutil usage to gcloud storage (#904)
- from version 20251223.00
* fix e2e tests for report inventory (#903)
- from version 20251222.01
* Revert "Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)" (#902)
- from version 20251222.00
* Bump golang to the new version (#900)
- from version 20251218.00
* add new CODEOWNERS (#901)
- from version 20251217.00
* Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)
- Bump the golang compiler version to 1.24.5
- Update to version 20251202.00
* Revert "Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)" (#893)
- Update to version 20251201.00
* Revert "Bump github.com/containerd/containerd (#890)" (#892)
- Update to version 20251126.00
* Bump github.com/containerd/containerd (#890)
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)
- Update to version 20251028.00
* Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)
* Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)
- from version 20251023.02
* Create multiple_os.yaml (#883)
- from version 20251023.00
* Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)
* Add test runner for e2e tests (#876)
- Update to version 20250925.00
* Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)
* Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)
* Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)
* Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)
- Update to version 20250902.01
* Bump github.com/googleapis/enterprise-certificate-proxy (#829)
- from version 20250902.00
* update github.com/go-jose/go-jose/v4 (#869)
* Upgrade scalibr and other deps (#866)
- from version 20250901.00
* Fix possibility of path traversal for zip and tar archival (#868)
- from version 20250825.00
* set CODEOWNERS file as required by org (#863)
- from version 20250819.00
* Fix/rhel10 build centos image (#860)
- from version 20250814.00
* Fix/rhel10 build image (#859)
- from version 20250813.00
* Fix: Add RHEL 10 support to RPM startup script (#858)
- from version 20250811.00
* Remove old/sles-15-sp4-sap as image is deprecated (#857)
- Update to version 20250806.00
* Fixed JSON identifier for the universe domain (#855)
- from version 20250729.00
* Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)
- from version 20250725.02
* Update utils.go (#854)
* Upgrade golang.org/x/oauth2 package to the latest. (#853)
* Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)
- from version 20250725.01
* Bump golang.org/x/oauth2 (#848)
* Port fix for debian 11 to goo package manager. (#852)
- from version 20250725.00
* Update Golang version in common.sh and skip backports
repo for debian 11 (#850)
- from version 20250723.01
* Add workflows to build package for el10 (#849)
- from version 20250721.00
* Make OS Config agent TPC aware (#846)
- from version 20250718.00
* Create workflows for new Debian 13. (#847)
- Update to version 20250703.00
* Fix sles images (#844)
- from version 20250702.00
* Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)
- from version 20250701.00
* Bump the go_modules group across 1 directory with 2 updates (#840)
- Update to version 20250606.00
* Change base docker images Google's official base images. (#838)
- Update to version 20250523.01
* Add a simple no-op OS policy for user testing (#837)
- from version 20250523.00
* Introduce scalibr inventory extractor for dpkg/rpm/cos
os/filesystem extractors (linux) (#834)
* Trace GetInstalledPackages memory levels (#835)
- from version 20250520.00
- Update to version 20250513.00
* Fix rpm extractor, handle (none) value correctly. (#833)
- from version 20250512.01
* Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)
- from version 20250512.00
* Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)
- from version 20250508.01
* cosmetic refactoring to osinfo package (#826)
- from version 20250508.00
* Refactor /inventory with dependency injection (#825)
* Add debian, ubuntu (InstalledDebPackages) snapshots (#821)
* cover packages_linux.go file with tests (#824)
* Add debian (10,11,12) GetPackageUpdates output snapshots (#822)
- from version 20250507.00
* Add InstalledRPMPackages snapshot tests (#823)
- from version 20250506.02
* Yum tests: simplify initialization of exit errors (#820)
- from version 20250506.01
* Improve test coverage for gem package manager (#818)
- from version 20250506.00
* after go/x/crypto update 0.32.0 -> 0.37.0 (#817)
- from version 20250505.01
* Improve packages package coverage (#814)
* Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)
- from version 20250505.00
* Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)
- from version 20250430.00
* Snapshot YumUpdates (GetPackageUpdates) output (#813)
- from version 20250428.00
* Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output
for sles 12, 15 testdata (#812)
- from version 20250423.00
* Introduce MatchSnapshot large test results matcher function, snapshot
apt-deb GetPackageUpdates (#811)
- from version 20250416.02
Patchnames: SUSE-SLE-Micro-6.1-587
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
82 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-osconfig-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-osconfig-agent fixes the following issues\n\n- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers.\n- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents\n (bsc#1251453).\n- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially\n crafted input (bsc#1251704).\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-\n header (bsc#1260264).\n- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE\n (bsc#1265762).\n- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of\n service (bsc#1262926).\n- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation\n bypass and privilege escalation (bsc#1266603).\n- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent\n (bsc#1266171).\n- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).\n- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts\n (bsc#1266171).\n- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).\n - CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during\n smart-HTTP clone and fetch operations (bsc#1264923).\n\nChanges for google-osconfig-agent:\n\n- Update to version 20260615.01\n * Upgrade golang.org/x/crypto \u0026 golang.org/x/net (#1006)\n- from version 20260615.00\n * Add unit tests for ospatch_apt_upgrade.go (#938)\n- Update to version 20260611.00\n * Add unit tests for policies/policies.go PART 5 (#998)\n- from version 20260610.00\n * Add unit tests for policies/policies.go PART 4 (#997)\n- from version 20260609.02\n * squash commits (#936)\n- from version 20260609.01\n * Add unit tests for policies/policies.go PART 3 (#996)\n- from version 20260609.00\n * Add unit tests for policies/policies.go PART 2 (#991)\n- from version 20260602.01\n * Align format of dates and timestamp collected across Windows packages (#973)\n- from version 20260602.00\n * Add unit tests for config/config,go (#979)\n- from version 20260528.00\n * Bump github.com/containerd/containerd (#990)\n- from version 20260521.00\n * Cover agentconfig functionality by unit tests (#925)\n- from version 20260520.04\n * Add unit tests for policies/googet.go (#961)\n * Bump github.com/go-git/go-git/v5 (#987)\n- from version 20260520.02\n * Add unit tests for policies/yum.go (#952)\n * Add unit tests for policies/apt.go PART 3 (#951)\n- from version 20260520.00\n * Add unit tests for policies/zypper.go (#953)\n- from version 20260519.00\n * Add unit tests for policies/policies.go PART 1 (#949)\n- from version 20260513.01\n * Bump github.com/go-git/go-git/v5 (#981), this also updates\n golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)\n- from version 20260513.00\n * upgrade a few packages (#980)\n- from version 20260512.02\n * Add/improve unit tests for agentendpoint/exec_task.go (#933)\n- from version 20260512.01\n * Cover google_update.go by unit tests (#941)\n- from version 20260512.00\n * Change zone for arm64 builds because of stockout (#978)\n- Update to version 20260511.00\n * switch to t2a-standard-2 on ARM package build (#977)\n- from version 20260505.03\n * Cover zypper_patch by unit tests (#958)\n- from version 20260505.02\n * Remove unused functions DisableAutoUpdates (#970)\n- from version 20260505.01\n * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)\n- from version 20260505.00\n * Upgrade a few dependencies across the repo (#968)\n + github.com/go-git/go-git/v5 5.16.2-\u003e5.18.0 (bsc#1264923, CVE-2026-41506)\n + github.com/go-jose/go-jose/v4 4.1.3-\u003e4.1.4 (bsc#1262926, CVE-2026-34986)\n + github.com/go-viper/mapstructure/v2 2.3.0-\u003e2.4.0\n + go.opentelemetry.io/otel 1.40.0-\u003e1.41.0\n + go.opentelemetry.io/otel/sdk 1.39.0-\u003e1.43.0\n- from version 20260504.01\n * bump github.com/docker/cli to 29.2.0 (#962)\n- from version 20260504.00\n * Bump github.com/opencontainers/selinux (#960)\n- Update to version 20260428.00\n * Add/improve unit tests for agentendpoint/agentendpoint.go (#930)\n- from version 20260427.03\n * Cover config/file.go by unit tests (#935)\n- from version 20260422.01\n * Cover patch_linux.go by unit tests (#932)\n- from version 20260422.00\n * upgrade grpc package in main package and e2e tests (#959)\n (bsc#1260264, CVE-2026-33186)\n- from version 20260417.04\n * Bump OSV-Scalibr version to v0.4.3 (#956)\n- from version 20260417.03\n * Add unit tests for updates_linux.go (#937)\n- from version 20260417.02\n * Add zone to CreateDisk step (#955)\n- from version 20260417.01\n * Change disk type for deb11 (#954)\n- from version 20260417.00\n * Add unit tests for policies/apt.go PART 1 (#950)\n- from version 20260410.02\n * Add unit tests for packages/pty_linux.go (#943)\n- from version 20260410.01\n * fix disk type for arm workflows (#948)\n- from version 20260410.00\n * Change machine type for arm based workflows (#946)\n- Update to version 20260330.00\n * bump timeouts for all workflows (#940)\n- from version 20260326.00\n * Cover exec_resource.go by unit tests (#934)\n- from version 20260318.00\n * Integrate OSConfig agent with ReportVmInventory (#923)\n- from version 20260313.02\n * remove cacheonly flag from yum upgrade (#924)\n- from version 20260313.01\n * conditions python version override (#927)\n- from version 20260313.00\n * Fix presubmits by explicitly set python version for rpm based systems (#926)\n- from version 20260311.00\n * Bump osconfig version (#922)\n- from version 20260309.02\n * Extend OSV scalibr extractor (#921)\n- from version 20260309.01\n * upgrade golang.org/x/crypto and it\u0027s transitive deps (#918)\n- from version 20260309.00\n * Add purl to pkg info (#920)\n- from version 20260306.00\n * Add \u0027Type\u0027 field to PkgInfo (#919)\n- from version 20260303.01\n * Upgrade go.opentelemetry.io/otel/sdk (#913)\n- from version 20260303.00\n * Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)\n- from version 20260302.00\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)\n- from version 20260126.00\n * Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)\n * Bump github.com/sirupsen/logrus (#894)\n- Update to version 20260119.00\n * Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)\n- Update to version 20251230.00\n * chore: Migrate gsutil usage to gcloud storage (#904)\n- from version 20251223.00\n * fix e2e tests for report inventory (#903)\n- from version 20251222.01\n * Revert \"Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\" (#902)\n- from version 20251222.00\n * Bump golang to the new version (#900)\n- from version 20251218.00\n * add new CODEOWNERS (#901)\n- from version 20251217.00\n * Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\n- Bump the golang compiler version to 1.24.5\n- Update to version 20251202.00\n * Revert \"Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\" (#893)\n- Update to version 20251201.00\n * Revert \"Bump github.com/containerd/containerd (#890)\" (#892)\n- Update to version 20251126.00\n * Bump github.com/containerd/containerd (#890)\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\n- Update to version 20251028.00\n * Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)\n * Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)\n- from version 20251023.02\n * Create multiple_os.yaml (#883)\n- from version 20251023.00\n * Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)\n * Add test runner for e2e tests (#876)\n- Update to version 20250925.00\n * Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)\n * Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)\n * Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)\n * Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)\n- Update to version 20250902.01\n * Bump github.com/googleapis/enterprise-certificate-proxy (#829)\n- from version 20250902.00\n * update github.com/go-jose/go-jose/v4 (#869)\n * Upgrade scalibr and other deps (#866)\n- from version 20250901.00\n * Fix possibility of path traversal for zip and tar archival (#868)\n- from version 20250825.00\n * set CODEOWNERS file as required by org (#863)\n- from version 20250819.00\n * Fix/rhel10 build centos image (#860)\n- from version 20250814.00\n * Fix/rhel10 build image (#859)\n- from version 20250813.00\n * Fix: Add RHEL 10 support to RPM startup script (#858)\n- from version 20250811.00\n * Remove old/sles-15-sp4-sap as image is deprecated (#857)\n- Update to version 20250806.00\n * Fixed JSON identifier for the universe domain (#855)\n- from version 20250729.00\n * Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)\n- from version 20250725.02\n * Update utils.go (#854)\n * Upgrade golang.org/x/oauth2 package to the latest. (#853)\n * Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)\n- from version 20250725.01\n * Bump golang.org/x/oauth2 (#848)\n * Port fix for debian 11 to goo package manager. (#852)\n- from version 20250725.00\n * Update Golang version in common.sh and skip backports\n repo for debian 11 (#850)\n- from version 20250723.01\n * Add workflows to build package for el10 (#849)\n- from version 20250721.00\n * Make OS Config agent TPC aware (#846)\n- from version 20250718.00\n * Create workflows for new Debian 13. (#847)\n- Update to version 20250703.00\n * Fix sles images (#844)\n- from version 20250702.00\n * Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)\n- from version 20250701.00\n * Bump the go_modules group across 1 directory with 2 updates (#840)\n- Update to version 20250606.00\n * Change base docker images Google\u0027s official base images. (#838)\n- Update to version 20250523.01\n * Add a simple no-op OS policy for user testing (#837)\n- from version 20250523.00\n * Introduce scalibr inventory extractor for dpkg/rpm/cos\n os/filesystem extractors (linux) (#834)\n * Trace GetInstalledPackages memory levels (#835)\n- from version 20250520.00\n- Update to version 20250513.00\n * Fix rpm extractor, handle (none) value correctly. (#833)\n- from version 20250512.01\n * Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)\n- from version 20250512.00\n * Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)\n- from version 20250508.01\n * cosmetic refactoring to osinfo package (#826)\n- from version 20250508.00\n * Refactor /inventory with dependency injection (#825)\n * Add debian, ubuntu (InstalledDebPackages) snapshots (#821)\n * cover packages_linux.go file with tests (#824)\n * Add debian (10,11,12) GetPackageUpdates output snapshots (#822)\n- from version 20250507.00\n * Add InstalledRPMPackages snapshot tests (#823)\n- from version 20250506.02\n * Yum tests: simplify initialization of exit errors (#820)\n- from version 20250506.01\n * Improve test coverage for gem package manager (#818)\n- from version 20250506.00\n * after go/x/crypto update 0.32.0 -\u003e 0.37.0 (#817)\n- from version 20250505.01\n * Improve packages package coverage (#814)\n * Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)\n- from version 20250505.00\n * Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)\n- from version 20250430.00\n * Snapshot YumUpdates (GetPackageUpdates) output (#813)\n- from version 20250428.00\n * Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output\n for sles 12, 15 testdata (#812)\n- from version 20250423.00\n * Introduce MatchSnapshot large test results matcher function, snapshot\n apt-deb GetPackageUpdates (#811)\n- from version 20250416.02\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-587",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22249-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:22249-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622249-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:22249-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047615.html"
},
{
"category": "self",
"summary": "SUSE Bug 1210938",
"url": "https://bugzilla.suse.com/1210938"
},
{
"category": "self",
"summary": "SUSE Bug 1251453",
"url": "https://bugzilla.suse.com/1251453"
},
{
"category": "self",
"summary": "SUSE Bug 1251704",
"url": "https://bugzilla.suse.com/1251704"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE Bug 1262926",
"url": "https://bugzilla.suse.com/1262926"
},
{
"category": "self",
"summary": "SUSE Bug 1264923",
"url": "https://bugzilla.suse.com/1264923"
},
{
"category": "self",
"summary": "SUSE Bug 1265762",
"url": "https://bugzilla.suse.com/1265762"
},
{
"category": "self",
"summary": "SUSE Bug 1266171",
"url": "https://bugzilla.suse.com/1266171"
},
{
"category": "self",
"summary": "SUSE Bug 1266603",
"url": "https://bugzilla.suse.com/1266603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47911 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41506 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
}
],
"title": "Security update for google-osconfig-agent",
"tracking": {
"current_release_date": "2026-06-22T09:04:46Z",
"generator": {
"date": "2026-06-22T09:04:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:22249-1",
"initial_release_date": "2026-06-22T09:04:46Z",
"revision_history": [
{
"date": "2026-06-22T09:04:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-47911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47911"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47911",
"url": "https://www.suse.com/security/cve/CVE-2025-47911"
},
{
"category": "external",
"summary": "SUSE Bug 1251308 for CVE-2025-47911",
"url": "https://bugzilla.suse.com/1251308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-47911"
},
{
"cve": "CVE-2025-58190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58190"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58190",
"url": "https://www.suse.com/security/cve/CVE-2025-58190"
},
{
"category": "external",
"summary": "SUSE Bug 1251309 for CVE-2025-58190",
"url": "https://bugzilla.suse.com/1251309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-58190"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-41506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41506"
}
],
"notes": [
{
"category": "general",
"text": "go-git is an extensible git implementation library written in pure Go. Prior to versions 5.18.0 and 6.0.0-alpha.2, go-git may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. This issue has been patched in versions 5.18.0 and 6.0.0-alpha.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41506",
"url": "https://www.suse.com/security/cve/CVE-2026-41506"
},
{
"category": "external",
"summary": "SUSE Bug 1264854 for CVE-2026-41506",
"url": "https://bugzilla.suse.com/1264854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-41506"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
}
]
}
SUSE-SU-2026:2243-1
Vulnerability from csaf_suse - Published: 2026-06-03 14:10 - Updated: 2026-06-03 14:10Summary
Security update 5.0.8 for Multi-Linux Manager Client Tools
Severity
Important
Notes
Title of the patch: Security update 5.0.8 for Multi-Linux Manager Client Tools
Description of the patch: This update fixes the following issues:
golang-github-QubitProducts-exporter_exporter:
- Security Fixes:
- CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707)
golang-github-prometheus-node_exporter:
- Backward Compatibility and packaging changes:
- Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains
- Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility
- Version 1.10.2:
- Fixed typo in Zswap metric name (meminfo)
- Version 1.10.1:
- Fixed mount points being collected multiple times (filesystem)
- Refactored mountinfo parsing (bsc#1261810)
- Added Zswap/Zswapped metrics (meminfo)
- Version 1.10.0:
- New collectors: PCIe devices, swaps
- Added systemd virtualization metrics, AIX metrics
- WiFi packet metrics, additional PCIe and TLB metrics
- Changed mdadm to use sysfs, added erofs to excluded filesystems
- Fixed bugs: cpufreq collector, ethtool metrics
golang-github-prometheus-prometheus:
- Security issues fixed:
- CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret
being exposed in plaintext via /-/config endpoint (bsc#1263986)
- CVE-2026-42154: Remote-read: Reject snappy-compressed requests
whose declared decoded length exceeds the decode limit
(bsc#1263987).
- CVE-2026-40179: UI: Fixed stored XSS via unescaped le label
values in old UI heatmap chart tick labels (bsc#1262222)
- CVE-2026-33186: Fixed authorization bypass due to improper
validation of the HTTP/2 :path pseudo-header (bsc#1260267)
* Bump google.golang.org/grpc to version 1.79.3
- CVE-2026-27606: Fixed arbitrary file write via path traversal in
rollup (bsc#1258893)
* Bump rollup to version 4.59.0
- Other changes:
- Remote-Write: Reject snappy-compressed requests whose
declared decoded length exceeds the decode limit.
- Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy (jsc#PED-14816)
prometheus-postgres_exporter:
- Security Fixes:
- CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose declared decoded length exceeds the decode
limit (bsc#1263987)
- CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret being exposed in plaintext via /-/config endpoint
(bsc#1263986)
- CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699)
- Highlights of other changes and bug fixes:
- Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy
grafana was updated from version 11.6.11 to 11.6.14+security01:
- Security Fixes:
- CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)
- CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)
- CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results
(bsc#1258595)
- CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)
- CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)
- CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)
- CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)
- CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)
- CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)
- CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header
(bsc#1260263)
- CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)
- Highlights of other changes and bug fixes:
- Version 11.6.13:
- Wire the public dashboard service to the HTTP server
- Version 11.6.12:
- Update authentication redirect logic
- Fixed single panel render with variable references
spacecmd:
- Version 5.0.16-0:
- Update translation strings
uyuni-tools:
- Version 0.1.39-0:
- mgrpxy ssh tuning should happen before crypto policies (bsc#1254619)
- Fixed default value for helm registry (bsc#1258927).
- Use static supportconfig name to avoid dynamic search
(bsc#1257941)
- Do not nest multiple tarball files and instead collect
all files into one tarball (bsc#1252964)
- Show where final tarball was generated (bsc#1259208)
Patchnames: SUSE-2026-2243,SUSE-SLE-Manager-Tools-15-2026-2243,SUSE-SLE-Manager-Tools-For-Micro-5-2026-2243,SUSE-SLE-Module-Basesystem-15-SP7-2026-2243,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2243
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
low
5.4 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
8.8 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
9.1 (Critical)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.4 (Medium)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
70 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
81 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update 5.0.8 for Multi-Linux Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update fixes the following issues:\n\ngolang-github-QubitProducts-exporter_exporter:\n\n- Security Fixes:\n\n - CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707)\n\ngolang-github-prometheus-node_exporter:\n\n- Backward Compatibility and packaging changes:\n - Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains\n - Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility\n\n- Version 1.10.2:\n - Fixed typo in Zswap metric name (meminfo)\n\n- Version 1.10.1:\n - Fixed mount points being collected multiple times (filesystem)\n - Refactored mountinfo parsing (bsc#1261810)\n - Added Zswap/Zswapped metrics (meminfo)\n\n- Version 1.10.0:\n - New collectors: PCIe devices, swaps\n - Added systemd virtualization metrics, AIX metrics\n - WiFi packet metrics, additional PCIe and TLB metrics\n - Changed mdadm to use sysfs, added erofs to excluded filesystems\n - Fixed bugs: cpufreq collector, ethtool metrics\n\ngolang-github-prometheus-prometheus:\n \n- Security issues fixed:\n\n - CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret\n being exposed in plaintext via /-/config endpoint (bsc#1263986)\n - CVE-2026-42154: Remote-read: Reject snappy-compressed requests\n whose declared decoded length exceeds the decode limit\n (bsc#1263987).\n - CVE-2026-40179: UI: Fixed stored XSS via unescaped le label\n values in old UI heatmap chart tick labels (bsc#1262222)\n - CVE-2026-33186: Fixed authorization bypass due to improper\n validation of the HTTP/2 :path pseudo-header (bsc#1260267)\n * Bump google.golang.org/grpc to version 1.79.3\n - CVE-2026-27606: Fixed arbitrary file write via path traversal in\n rollup (bsc#1258893)\n * Bump rollup to version 4.59.0\n\n- Other changes:\n\n - Remote-Write: Reject snappy-compressed requests whose\n declared decoded length exceeds the decode limit.\n - Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy (jsc#PED-14816) \n\n\nprometheus-postgres_exporter:\n\n- Security Fixes:\n\n - CVE-2026-42154: Remote-read: Reject snappy-compressed requests whose declared decoded length exceeds the decode\n limit (bsc#1263987)\n - CVE-2026-42151: AzureAD remote write: Fixed OAuth client_secret being exposed in plaintext via /-/config endpoint\n (bsc#1263986)\n - CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699)\n\n- Highlights of other changes and bug fixes:\n\n - Use systemd tmpfiles.d to create /var/lib/prometheus hierarchy\n\ngrafana was updated from version 11.6.11 to 11.6.14+security01:\n\n- Security Fixes:\n\n - CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)\n - CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)\n - CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results \n (bsc#1258595)\n - CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)\n - CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)\n - CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)\n - CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)\n - CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)\n - CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)\n - CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header\n (bsc#1260263)\n - CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)\n\n- Highlights of other changes and bug fixes:\n\n - Version 11.6.13:\n\n - Wire the public dashboard service to the HTTP server\n\n - Version 11.6.12:\n\n - Update authentication redirect logic\n - Fixed single panel render with variable references\n\nspacecmd:\n\n- Version 5.0.16-0:\n\n - Update translation strings\n\nuyuni-tools:\n\n- Version 0.1.39-0:\n\n - mgrpxy ssh tuning should happen before crypto policies (bsc#1254619)\n - Fixed default value for helm registry (bsc#1258927).\n - Use static supportconfig name to avoid dynamic search\n (bsc#1257941)\n - Do not nest multiple tarball files and instead collect\n all files into one tarball (bsc#1252964)\n - Show where final tarball was generated (bsc#1259208)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2243,SUSE-SLE-Manager-Tools-15-2026-2243,SUSE-SLE-Manager-Tools-For-Micro-5-2026-2243,SUSE-SLE-Module-Basesystem-15-SP7-2026-2243,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2243,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2243,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2243,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2243",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2243-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2243-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262243-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2243-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047083.html"
},
{
"category": "self",
"summary": "SUSE Bug 1248699",
"url": "https://bugzilla.suse.com/1248699"
},
{
"category": "self",
"summary": "SUSE Bug 1248707",
"url": "https://bugzilla.suse.com/1248707"
},
{
"category": "self",
"summary": "SUSE Bug 1252964",
"url": "https://bugzilla.suse.com/1252964"
},
{
"category": "self",
"summary": "SUSE Bug 1254619",
"url": "https://bugzilla.suse.com/1254619"
},
{
"category": "self",
"summary": "SUSE Bug 1257941",
"url": "https://bugzilla.suse.com/1257941"
},
{
"category": "self",
"summary": "SUSE Bug 1258595",
"url": "https://bugzilla.suse.com/1258595"
},
{
"category": "self",
"summary": "SUSE Bug 1258873",
"url": "https://bugzilla.suse.com/1258873"
},
{
"category": "self",
"summary": "SUSE Bug 1258893",
"url": "https://bugzilla.suse.com/1258893"
},
{
"category": "self",
"summary": "SUSE Bug 1258927",
"url": "https://bugzilla.suse.com/1258927"
},
{
"category": "self",
"summary": "SUSE Bug 1259208",
"url": "https://bugzilla.suse.com/1259208"
},
{
"category": "self",
"summary": "SUSE Bug 1259999",
"url": "https://bugzilla.suse.com/1259999"
},
{
"category": "self",
"summary": "SUSE Bug 1260263",
"url": "https://bugzilla.suse.com/1260263"
},
{
"category": "self",
"summary": "SUSE Bug 1260267",
"url": "https://bugzilla.suse.com/1260267"
},
{
"category": "self",
"summary": "SUSE Bug 1260878",
"url": "https://bugzilla.suse.com/1260878"
},
{
"category": "self",
"summary": "SUSE Bug 1260881",
"url": "https://bugzilla.suse.com/1260881"
},
{
"category": "self",
"summary": "SUSE Bug 1261025",
"url": "https://bugzilla.suse.com/1261025"
},
{
"category": "self",
"summary": "SUSE Bug 1261026",
"url": "https://bugzilla.suse.com/1261026"
},
{
"category": "self",
"summary": "SUSE Bug 1261027",
"url": "https://bugzilla.suse.com/1261027"
},
{
"category": "self",
"summary": "SUSE Bug 1261029",
"url": "https://bugzilla.suse.com/1261029"
},
{
"category": "self",
"summary": "SUSE Bug 1261810",
"url": "https://bugzilla.suse.com/1261810"
},
{
"category": "self",
"summary": "SUSE Bug 1262222",
"url": "https://bugzilla.suse.com/1262222"
},
{
"category": "self",
"summary": "SUSE Bug 1262950",
"url": "https://bugzilla.suse.com/1262950"
},
{
"category": "self",
"summary": "SUSE Bug 1263501",
"url": "https://bugzilla.suse.com/1263501"
},
{
"category": "self",
"summary": "SUSE Bug 1263986",
"url": "https://bugzilla.suse.com/1263986"
},
{
"category": "self",
"summary": "SUSE Bug 1263987",
"url": "https://bugzilla.suse.com/1263987"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21698 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-29923 page",
"url": "https://www.suse.com/security/cve/CVE-2025-29923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21724 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21725 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27606 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27606/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27876 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27877 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27879 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-40179 page",
"url": "https://www.suse.com/security/cve/CVE-2026-40179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41602 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42151 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42154 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42154/"
}
],
"title": "Security update 5.0.8 for Multi-Linux Manager Client Tools",
"tracking": {
"current_release_date": "2026-06-03T14:10:38Z",
"generator": {
"date": "2026-06-03T14:10:38Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2243-1",
"initial_release_date": "2026-06-03T14:10:38Z",
"revision_history": [
{
"date": "2026-06-03T14:10:38Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.aarch64",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.aarch64",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.aarch64"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"product_id": "mgrctl-0.1.39-150000.1.33.2.aarch64"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.i586",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.i586",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.i586"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.i586",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.i586",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.i586"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.i586",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.i586",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.i586"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.i586",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.i586",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.i586"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.i586",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.i586",
"product_id": "mgrctl-0.1.39-150000.1.33.2.i586"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.i586",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.i586",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"product": {
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"product_id": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"product": {
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"product_id": "mgrctl-lang-0.1.39-150000.1.33.2.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"product": {
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"product_id": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-5.0.16-150000.3.145.1.noarch",
"product": {
"name": "spacecmd-5.0.16-150000.3.145.1.noarch",
"product_id": "spacecmd-5.0.16-150000.3.145.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.ppc64le"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.ppc64le",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.ppc64le",
"product_id": "mgrctl-0.1.39-150000.1.33.2.ppc64le"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.s390x",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.s390x",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.s390x"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.s390x",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.s390x",
"product_id": "mgrctl-0.1.39-150000.1.33.2.s390x"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"product": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"product_id": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"product": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"product_id": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64"
}
},
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150000.1.95.2.x86_64",
"product": {
"name": "grafana-11.6.14+security01-150000.1.95.2.x86_64",
"product_id": "grafana-11.6.14+security01-150000.1.95.2.x86_64"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"product": {
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"product_id": "mgrctl-0.1.39-150000.1.33.2.x86_64"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"product_id": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Manager Client Tools 15",
"product": {
"name": "SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15"
}
},
{
"category": "product_name",
"name": "SUSE Manager Client Tools for SLE Micro 5",
"product": {
"name": "SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-manager-tools-micro:5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64"
},
"product_reference": "firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64"
},
"product_reference": "golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150000.1.95.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64"
},
"product_reference": "grafana-11.6.14+security01-150000.1.95.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64 as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-5.0.16-150000.3.145.1.noarch as component of SUSE Manager Client Tools 15",
"product_id": "SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch"
},
"product_reference": "spacecmd-5.0.16-150000.3.145.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.aarch64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.s390x as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-150000.1.33.2.x86_64 as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64"
},
"product_reference": "mgrctl-0.1.39-150000.1.33.2.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-lang-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch as component of SUSE Manager Client Tools for SLE Micro 5",
"product_id": "SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
},
"product_reference": "mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for SLE Micro 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21698"
}
],
"notes": [
{
"category": "general",
"text": "client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of `promhttp.InstrumentHandler*` middleware except `RequestsInFlight`; not filter any specific methods (e.g GET) before middleware; pass metric with `method` label name to our middleware; and not have any firewall/LB/proxy that filters away requests with unknown `method`. client_golang version 1.11.1 contains a patch for this issue. Several workarounds are available, including removing the `method` label name from counter/gauge used in the InstrumentHandler; turning off affected promhttp handlers; adding custom middleware before promhttp handler that will sanitize the request method given by Go http.Request; and using a reverse proxy or web application firewall, configured to only allow a limited set of methods.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21698",
"url": "https://www.suse.com/security/cve/CVE-2022-21698"
},
{
"category": "external",
"summary": "SUSE Bug 1196338 for CVE-2022-21698",
"url": "https://bugzilla.suse.com/1196338"
},
{
"category": "external",
"summary": "SUSE Bug 1248689 for CVE-2022-21698",
"url": "https://bugzilla.suse.com/1248689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2022-21698"
},
{
"cve": "CVE-2025-29923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-29923"
}
],
"notes": [
{
"category": "general",
"text": "go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when `CLIENT SETINFO` times out during connection establishment. This can happen when the client is configured to transmit its identity, there are network connectivity issues, or the client was configured with aggressive timeouts. The problem occurs for multiple use cases. For sticky connections, you receive persistent out-of-order responses for the lifetime of the connection. All commands in the pipeline receive incorrect responses. When used with the default ConnPool once a connection is returned after use with ConnPool#Put the read buffer will be checked and the connection will be marked as bad due to the unread data. This means that at most one out-of-order response before the connection is discarded. This issue is fixed in 9.5.5, 9.6.3, and 9.7.3. You can prevent the vulnerability by setting the flag DisableIndentity to true when constructing the client instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-29923",
"url": "https://www.suse.com/security/cve/CVE-2025-29923"
},
{
"category": "external",
"summary": "SUSE Bug 1241152 for CVE-2025-29923",
"url": "https://bugzilla.suse.com/1241152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "low"
}
],
"title": "CVE-2025-29923"
},
{
"cve": "CVE-2026-21724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21724"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability has been discovered in Grafana OSS where an authorization bypass in the provisioning contact points API allows users with Editor role to modify protected webhook URLs without the required alert.notifications.receivers.protected:write permission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21724",
"url": "https://www.suse.com/security/cve/CVE-2026-21724"
},
{
"category": "external",
"summary": "SUSE Bug 1260878 for CVE-2026-21724",
"url": "https://bugzilla.suse.com/1260878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-21724"
},
{
"cve": "CVE-2026-21725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21725"
}
],
"notes": [
{
"category": "general",
"text": "A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sources be re-deleted without permission to do so.\n\nThis requires several very stringent conditions to be met:\n\n- The attacker must have admin access to the specific datasource prior to its first deletion.\n- Upon deletion, all steps within the attack must happen within the next 30 seconds and on the same pod of Grafana.\n- The attacker must delete the datasource, then someone must recreate it.\n- The new datasource must not have the attacker as an admin.\n- The new datasource must have the same UID as the prior datasource. These are randomised by default.\n- The datasource can now be re-deleted by the attacker.\n- Once 30 seconds are up, the attack is spent and cannot be repeated.\n- No datasource with any other UID can be attacked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21725",
"url": "https://www.suse.com/security/cve/CVE-2026-21725"
},
{
"category": "external",
"summary": "SUSE Bug 1258873 for CVE-2026-21725",
"url": "https://bugzilla.suse.com/1258873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "low"
}
],
"title": "CVE-2026-21725"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
},
{
"cve": "CVE-2026-27606",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27606"
}
],
"notes": [
{
"category": "general",
"text": "Rollup is a module bundler for JavaScript. Versions prior to 2.80.0, 3.30.0, and 4.59.0 of the Rollup module bundler (specifically v4.x and present in current source) is vulnerable to an Arbitrary File Write via Path Traversal. Insecure file name sanitization in the core engine allows an attacker to control output filenames (e.g., via CLI named inputs, manual chunk aliases, or malicious plugins) and use traversal sequences (`../`) to overwrite files anywhere on the host filesystem that the build process has permissions for. This can lead to persistent Remote Code Execution (RCE) by overwriting critical system or user configuration files. Versions 2.80.0, 3.30.0, and 4.59.0 contain a patch for the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27606",
"url": "https://www.suse.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "SUSE Bug 1258846 for CVE-2026-27606",
"url": "https://bugzilla.suse.com/1258846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-27606"
},
{
"cve": "CVE-2026-27876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27876"
}
],
"notes": [
{
"category": "general",
"text": "A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always recommended to update to avoid future attack vectors going this path.\n\nOnly instances with the sqlExpressions feature toggle enabled are vulnerable.\n\nOnly instances in the following version ranges are affected:\n\n- 11.6.0 (inclusive) to 11.6.14 (exclusive): 11.6.14 has the fix. 11.5 and below are not affected.\n- 12.0.0 (inclusive) to 12.1.10 (exclusive): 12.1.10 has the fix. 12.0 did not receive an update, as it is end-of-life.\n- 12.2.0 (inclusive) to 12.2.8 (exclusive): 12.2.8 has the fix.\n- 12.3.0 (inclusive) to 12.3.6 (exclusive): 12.3.6 has the fix.\n- 12.4.0 (inclusive) to 12.4.2 (exclusive): 12.4.2 has the fix. 13.0.0 and above also have the fix: no v13 release is affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27876",
"url": "https://www.suse.com/security/cve/CVE-2026-27876"
},
{
"category": "external",
"summary": "SUSE Bug 1261025 for CVE-2026-27876",
"url": "https://bugzilla.suse.com/1261025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "critical"
}
],
"title": "CVE-2026-27876"
},
{
"cve": "CVE-2026-27877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27877"
}
],
"notes": [
{
"category": "general",
"text": "When using public dashboards and direct data-sources, all direct data-sources\u0027 passwords are exposed despite not being used in dashboards.\n\nNo passwords of proxied data-sources are exposed. We encourage all direct data-sources to be converted to proxied data-sources as far as possible to improve your deployments\u0027 security.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27877",
"url": "https://www.suse.com/security/cve/CVE-2026-27877"
},
{
"category": "external",
"summary": "SUSE Bug 1261026 for CVE-2026-27877",
"url": "https://bugzilla.suse.com/1261026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-27877"
},
{
"cve": "CVE-2026-27879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27879"
}
],
"notes": [
{
"category": "general",
"text": "A resample query can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27879",
"url": "https://www.suse.com/security/cve/CVE-2026-27879"
},
{
"category": "external",
"summary": "SUSE Bug 1261027 for CVE-2026-27879",
"url": "https://bugzilla.suse.com/1261027"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-27879"
},
{
"cve": "CVE-2026-28375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28375"
}
],
"notes": [
{
"category": "general",
"text": "A testdata data-source can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28375",
"url": "https://www.suse.com/security/cve/CVE-2026-28375"
},
{
"category": "external",
"summary": "SUSE Bug 1261029 for CVE-2026-28375",
"url": "https://bugzilla.suse.com/1261029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-28375"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33375"
}
],
"notes": [
{
"category": "general",
"text": "The Grafana MSSQL data source plugin contains a logic flaw that allows a low-privileged user (Viewer) to bypass API restrictions and trigger a catastrophic Out-Of-Memory (OOM) memory exhaustion, crashing the host container.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33375",
"url": "https://www.suse.com/security/cve/CVE-2026-33375"
},
{
"category": "external",
"summary": "SUSE Bug 1260881 for CVE-2026-33375",
"url": "https://bugzilla.suse.com/1260881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-33375"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-40179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-40179"
}
],
"notes": [
{
"category": "general",
"text": "Prometheus is an open-source monitoring system and time series database. Versions 3.0 through 3.5.1 and 3.6.0 through 3.11.1 have stored cross-site scripting vulnerabilities in multiple components of the Prometheus web UI where metric names and label values are injected into innerHTML without escaping. In both the Mantine UI and old React UI, chart tooltips on the Graph page render metric names containing HTML/JavaScript without sanitization. In the old React UI, the Metric Explorer fuzzy search results use dangerouslySetInnerHTML without escaping, and heatmap cell tooltips interpolate le label values without sanitization. With Prometheus v3.x defaulting to UTF-8 metric and label name validation, characters like \u003c, \u003e, and \" are now valid in metric names and labels. An attacker who can inject metrics via a compromised scrape target, remote write, or OTLP receiver endpoint can execute arbitrary JavaScript in the browser of any Prometheus user who views the metric in the Graph UI, potentially enabling configuration exfiltration, data deletion, or Prometheus shutdown depending on enabled flags. This issue has been fixed in versions 3.5.2 and 3.11.2. If developers are unable to immediately update, the following workarounds are recommended: ensure that the remote write receiver (--web.enable-remote-write-receiver) and the OTLP receiver (--web.enable-otlp-receiver) are not exposed to untrusted sources; verify that all scrape targets are trusted and not under attacker control; avoid enabling admin or mutating API endpoints (e.g., --web.enable-admin-api or --web.enable-lifecycle) in environments where untrusted data may be ingested; and refrain from clicking untrusted links, particularly those containing functions such as label_replace, as they may generate poisoned label names and values.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-40179",
"url": "https://www.suse.com/security/cve/CVE-2026-40179"
},
{
"category": "external",
"summary": "SUSE Bug 1262222 for CVE-2026-40179",
"url": "https://bugzilla.suse.com/1262222"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "moderate"
}
],
"title": "CVE-2026-40179"
},
{
"cve": "CVE-2026-41602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41602"
}
],
"notes": [
{
"category": "general",
"text": "Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation\n\nThis issue affects Apache Thrift: before 0.23.0.\n\nUsers are recommended to upgrade to version 0.23.0, which fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41602",
"url": "https://www.suse.com/security/cve/CVE-2026-41602"
},
{
"category": "external",
"summary": "SUSE Bug 1263496 for CVE-2026-41602",
"url": "https://bugzilla.suse.com/1263496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-41602"
},
{
"cve": "CVE-2026-42151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42151"
}
],
"notes": [
{
"category": "general",
"text": "Prometheus is an open-source monitoring system and time series database. Prior to versions 3.5.3 and 3.11.3, the client_secret field in the Azure AD remote write OAuth configuration (storage/remote/azuread) was typed as string instead of Secret. Prometheus redacts fields of type Secret when serving the configuration via the /-/config HTTP API endpoint. Because the field was a plain string, the Azure OAuth client secret was exposed in plaintext to any user or process with access to that endpoint. This issue has been patched in versions 3.5.3 and 3.11.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42151",
"url": "https://www.suse.com/security/cve/CVE-2026-42151"
},
{
"category": "external",
"summary": "SUSE Bug 1263986 for CVE-2026-42151",
"url": "https://bugzilla.suse.com/1263986"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-42151"
},
{
"cve": "CVE-2026-42154",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42154"
}
],
"notes": [
{
"category": "general",
"text": "Prometheus is an open-source monitoring system and time series database. Prior to versions 3.5.3 and 3.11.3, the remote read endpoint (/api/v1/read) does not validate the declared decoded length in a snappy-compressed request body before allocating memory. An unauthenticated attacker can send a small payload that causes a huge heap allocation per request. Under concurrent load this can exhaust available memory and crash the Prometheus process. This issue has been patched in versions 3.5.3 and 3.11.3.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42154",
"url": "https://www.suse.com/security/cve/CVE-2026-42154"
},
{
"category": "external",
"summary": "SUSE Bug 1263987 for CVE-2026-42154",
"url": "https://bugzilla.suse.com/1263987"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP7:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP4-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP5-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Linux Enterprise Server 15 SP6-LTSS:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP4:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15 SP6:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:firewalld-prometheus-config-0.1-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools 15:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.aarch64",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.ppc64le",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.s390x",
"SUSE Manager Client Tools 15:golang-github-prometheus-prometheus-3.5.3-150000.3.72.2.x86_64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.aarch64",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.ppc64le",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.s390x",
"SUSE Manager Client Tools 15:grafana-11.6.14+security01-150000.1.95.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.ppc64le",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools 15:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools 15:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.aarch64",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.ppc64le",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.s390x",
"SUSE Manager Client Tools 15:prometheus-postgres_exporter-0.10.1-150000.1.20.2.x86_64",
"SUSE Manager Client Tools 15:spacecmd-5.0.16-150000.3.145.1.noarch",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.24.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:golang-github-prometheus-node_exporter-1.10.2-150100.3.41.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.aarch64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.s390x",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-0.1.39-150000.1.33.2.x86_64",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-bash-completion-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-lang-0.1.39-150000.1.33.2.noarch",
"SUSE Manager Client Tools for SLE Micro 5:mgrctl-zsh-completion-0.1.39-150000.1.33.2.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:10:38Z",
"details": "important"
}
],
"title": "CVE-2026-42154"
}
]
}
SUSE-SU-2026:2258-1
Vulnerability from csaf_suse - Published: 2026-06-03 14:22 - Updated: 2026-06-03 14:22Summary
Security update for grafana
Severity
Moderate
Notes
Title of the patch: Security update for grafana
Description of the patch: This update for grafana to version to 11.6.14+security01 fixes the following issues:
- Security Fixes:
- CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)
- CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)
- CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results
(bsc#1258595)
- CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)
- CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)
- CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)
- CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)
- CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)
- CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)
- CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header
(bsc#1260263)
- CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)
- Highlights of other changes and bug fixes:
- Version 11.6.13:
- Wire the public dashboard service to the HTTP server
- Version 11.6.12:
- Update authentication redirect logic
- Fixed single panel render with variable references
Patchnames: SUSE-2026-2258,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2258
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.4 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
9.1 (Critical)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
52 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for grafana",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for grafana to version to 11.6.14+security01 fixes the following issues:\n\n- Security Fixes:\n\n - CVE-2026-34986: Fixed unrecoverable error in JWE decryption that could lead to a denial of service (bsc#1262950)\n - CVE-2026-41602: Fixed Integer Overflow or Wraparound vulnerability in Apache Thrift (bsc#1263501)\n - CVE-2026-26958: Ensure that MultiScalarMult properly handles initialization and produces correct results \n (bsc#1258595)\n - CVE-2026-21725: Fixed missing UID when deleting datasource by name (bsc#1258873)\n - CVE-2026-33375: Fixed denial of Service via out-of-memory exhaustion in MSSQL data source plugin (bsc#1260881)\n - CVE-2026-27876: Fixed remote arbitrary code execution via chained SQL Expressions (bsc#1261025)\n - CVE-2026-27877: Fixed information disclosure of data-source passwords via public dashboards (bsc#1261026)\n - CVE-2026-28375: Fixed denial of service via testdata data-source (bsc#1261029)\n - CVE-2026-27879: Fixed denial of service via resample query (bsc#1261027)\n - CVE-2026-33186: Fixed authorization bypass due to improper validation of the HTTP/2 :path pseudo-header\n (bsc#1260263)\n - CVE-2026-21724: Fixed authorization bypass allows modification of protected webhook URLs (bsc#1260878)\n\n- Highlights of other changes and bug fixes:\n\n - Version 11.6.13:\n\n - Wire the public dashboard service to the HTTP server\n\n - Version 11.6.12:\n\n - Update authentication redirect logic\n - Fixed single panel render with variable references\n\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2258,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2258",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2258-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2258-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262258-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2258-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047070.html"
},
{
"category": "self",
"summary": "SUSE Bug 1258595",
"url": "https://bugzilla.suse.com/1258595"
},
{
"category": "self",
"summary": "SUSE Bug 1258873",
"url": "https://bugzilla.suse.com/1258873"
},
{
"category": "self",
"summary": "SUSE Bug 1259999",
"url": "https://bugzilla.suse.com/1259999"
},
{
"category": "self",
"summary": "SUSE Bug 1260263",
"url": "https://bugzilla.suse.com/1260263"
},
{
"category": "self",
"summary": "SUSE Bug 1260878",
"url": "https://bugzilla.suse.com/1260878"
},
{
"category": "self",
"summary": "SUSE Bug 1260881",
"url": "https://bugzilla.suse.com/1260881"
},
{
"category": "self",
"summary": "SUSE Bug 1261025",
"url": "https://bugzilla.suse.com/1261025"
},
{
"category": "self",
"summary": "SUSE Bug 1261026",
"url": "https://bugzilla.suse.com/1261026"
},
{
"category": "self",
"summary": "SUSE Bug 1261027",
"url": "https://bugzilla.suse.com/1261027"
},
{
"category": "self",
"summary": "SUSE Bug 1261029",
"url": "https://bugzilla.suse.com/1261029"
},
{
"category": "self",
"summary": "SUSE Bug 1262950",
"url": "https://bugzilla.suse.com/1262950"
},
{
"category": "self",
"summary": "SUSE Bug 1263501",
"url": "https://bugzilla.suse.com/1263501"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-29923 page",
"url": "https://www.suse.com/security/cve/CVE-2025-29923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21724 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-21725 page",
"url": "https://www.suse.com/security/cve/CVE-2026-21725/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-26958 page",
"url": "https://www.suse.com/security/cve/CVE-2026-26958/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27876 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27876/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27877 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27877/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-27879 page",
"url": "https://www.suse.com/security/cve/CVE-2026-27879/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-28375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-28375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33375 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33375/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41602 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41602/"
}
],
"title": "Security update for grafana",
"tracking": {
"current_release_date": "2026-06-03T14:22:06Z",
"generator": {
"date": "2026-06-03T14:22:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2258-1",
"initial_release_date": "2026-06-03T14:22:06Z",
"revision_history": [
{
"date": "2026-06-03T14:22:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.aarch64",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.aarch64",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.s390x",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.s390x",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-11.6.14+security01-150200.3.88.1.x86_64",
"product": {
"name": "grafana-11.6.14+security01-150200.3.88.1.x86_64",
"product_id": "grafana-11.6.14+security01-150200.3.88.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:15:sp7"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-11.6.14+security01-150200.3.88.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
"product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
},
"product_reference": "grafana-11.6.14+security01-150200.3.88.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-29923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-29923"
}
],
"notes": [
{
"category": "general",
"text": "go-redis is the official Redis client library for the Go programming language. Prior to 9.5.5, 9.6.3, and 9.7.3, go-redis potentially responds out of order when `CLIENT SETINFO` times out during connection establishment. This can happen when the client is configured to transmit its identity, there are network connectivity issues, or the client was configured with aggressive timeouts. The problem occurs for multiple use cases. For sticky connections, you receive persistent out-of-order responses for the lifetime of the connection. All commands in the pipeline receive incorrect responses. When used with the default ConnPool once a connection is returned after use with ConnPool#Put the read buffer will be checked and the connection will be marked as bad due to the unread data. This means that at most one out-of-order response before the connection is discarded. This issue is fixed in 9.5.5, 9.6.3, and 9.7.3. You can prevent the vulnerability by setting the flag DisableIndentity to true when constructing the client instance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-29923",
"url": "https://www.suse.com/security/cve/CVE-2025-29923"
},
{
"category": "external",
"summary": "SUSE Bug 1241152 for CVE-2025-29923",
"url": "https://bugzilla.suse.com/1241152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "low"
}
],
"title": "CVE-2025-29923"
},
{
"cve": "CVE-2026-21724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21724"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability has been discovered in Grafana OSS where an authorization bypass in the provisioning contact points API allows users with Editor role to modify protected webhook URLs without the required alert.notifications.receivers.protected:write permission.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21724",
"url": "https://www.suse.com/security/cve/CVE-2026-21724"
},
{
"category": "external",
"summary": "SUSE Bug 1260878 for CVE-2026-21724",
"url": "https://bugzilla.suse.com/1260878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-21724"
},
{
"cve": "CVE-2026-21725",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-21725"
}
],
"notes": [
{
"category": "general",
"text": "A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data sources be re-deleted without permission to do so.\n\nThis requires several very stringent conditions to be met:\n\n- The attacker must have admin access to the specific datasource prior to its first deletion.\n- Upon deletion, all steps within the attack must happen within the next 30 seconds and on the same pod of Grafana.\n- The attacker must delete the datasource, then someone must recreate it.\n- The new datasource must not have the attacker as an admin.\n- The new datasource must have the same UID as the prior datasource. These are randomised by default.\n- The datasource can now be re-deleted by the attacker.\n- Once 30 seconds are up, the attack is spent and cannot be repeated.\n- No datasource with any other UID can be attacked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-21725",
"url": "https://www.suse.com/security/cve/CVE-2026-21725"
},
{
"category": "external",
"summary": "SUSE Bug 1258873 for CVE-2026-21725",
"url": "https://bugzilla.suse.com/1258873"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "low"
}
],
"title": "CVE-2026-21725"
},
{
"cve": "CVE-2026-26958",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-26958"
}
],
"notes": [
{
"category": "general",
"text": "filippo.io/edwards25519 is a Go library implementing the edwards25519 elliptic curve with APIs for building cryptographic primitives. In versions 1.1.0 and earlier, MultiScalarMult produces invalid results or undefined behavior if the receiver is not the identity point. If (*Point).MultiScalarMult is called on an initialized point that is not the identity point, it returns an incorrect result. If the method is called on an uninitialized point, the behavior is undefined. In particular, if the receiver is the zero value, MultiScalarMult returns an invalid point that compares Equal to every other point. Note that MultiScalarMult is a rarely used, advanced API. For example, users who depend on filippo.io/edwards25519 only through github.com/go-sql-driver/mysql are not affected. This issue has been fixed in version 1.1.1.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-26958",
"url": "https://www.suse.com/security/cve/CVE-2026-26958"
},
{
"category": "external",
"summary": "SUSE Bug 1258570 for CVE-2026-26958",
"url": "https://bugzilla.suse.com/1258570"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-26958"
},
{
"cve": "CVE-2026-27876",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27876"
}
],
"notes": [
{
"category": "general",
"text": "A chained attack via SQL Expressions and a Grafana Enterprise plugin can lead to a remote arbitrary code execution impact (RCE). This is enabled by a feature in Grafana (OSS), so all users are always recommended to update to avoid future attack vectors going this path.\n\nOnly instances with the sqlExpressions feature toggle enabled are vulnerable.\n\nOnly instances in the following version ranges are affected:\n\n- 11.6.0 (inclusive) to 11.6.14 (exclusive): 11.6.14 has the fix. 11.5 and below are not affected.\n- 12.0.0 (inclusive) to 12.1.10 (exclusive): 12.1.10 has the fix. 12.0 did not receive an update, as it is end-of-life.\n- 12.2.0 (inclusive) to 12.2.8 (exclusive): 12.2.8 has the fix.\n- 12.3.0 (inclusive) to 12.3.6 (exclusive): 12.3.6 has the fix.\n- 12.4.0 (inclusive) to 12.4.2 (exclusive): 12.4.2 has the fix. 13.0.0 and above also have the fix: no v13 release is affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27876",
"url": "https://www.suse.com/security/cve/CVE-2026-27876"
},
{
"category": "external",
"summary": "SUSE Bug 1261025 for CVE-2026-27876",
"url": "https://bugzilla.suse.com/1261025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "critical"
}
],
"title": "CVE-2026-27876"
},
{
"cve": "CVE-2026-27877",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27877"
}
],
"notes": [
{
"category": "general",
"text": "When using public dashboards and direct data-sources, all direct data-sources\u0027 passwords are exposed despite not being used in dashboards.\n\nNo passwords of proxied data-sources are exposed. We encourage all direct data-sources to be converted to proxied data-sources as far as possible to improve your deployments\u0027 security.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27877",
"url": "https://www.suse.com/security/cve/CVE-2026-27877"
},
{
"category": "external",
"summary": "SUSE Bug 1261026 for CVE-2026-27877",
"url": "https://bugzilla.suse.com/1261026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-27877"
},
{
"cve": "CVE-2026-27879",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-27879"
}
],
"notes": [
{
"category": "general",
"text": "A resample query can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-27879",
"url": "https://www.suse.com/security/cve/CVE-2026-27879"
},
{
"category": "external",
"summary": "SUSE Bug 1261027 for CVE-2026-27879",
"url": "https://bugzilla.suse.com/1261027"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-27879"
},
{
"cve": "CVE-2026-28375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-28375"
}
],
"notes": [
{
"category": "general",
"text": "A testdata data-source can be used to trigger out-of-memory crashes in Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-28375",
"url": "https://www.suse.com/security/cve/CVE-2026-28375"
},
{
"category": "external",
"summary": "SUSE Bug 1261029 for CVE-2026-28375",
"url": "https://bugzilla.suse.com/1261029"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-28375"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33375",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33375"
}
],
"notes": [
{
"category": "general",
"text": "The Grafana MSSQL data source plugin contains a logic flaw that allows a low-privileged user (Viewer) to bypass API restrictions and trigger a catastrophic Out-Of-Memory (OOM) memory exhaustion, crashing the host container.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33375",
"url": "https://www.suse.com/security/cve/CVE-2026-33375"
},
{
"category": "external",
"summary": "SUSE Bug 1260881 for CVE-2026-33375",
"url": "https://bugzilla.suse.com/1260881"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "moderate"
}
],
"title": "CVE-2026-33375"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-41602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41602"
}
],
"notes": [
{
"category": "general",
"text": "Integer Overflow or Wraparound vulnerability in Apache Thrift TFramedTransport Go language implementation\n\nThis issue affects Apache Thrift: before 0.23.0.\n\nUsers are recommended to upgrade to version 0.23.0, which fixes the issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41602",
"url": "https://www.suse.com/security/cve/CVE-2026-41602"
},
{
"category": "external",
"summary": "SUSE Bug 1263496 for CVE-2026-41602",
"url": "https://bugzilla.suse.com/1263496"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.aarch64",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.ppc64le",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.s390x",
"SUSE Linux Enterprise Module for Package Hub 15 SP7:grafana-11.6.14+security01-150200.3.88.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:22:06Z",
"details": "important"
}
],
"title": "CVE-2026-41602"
}
]
}
SUSE-SU-2026:2347-1
Vulnerability from csaf_suse - Published: 2026-06-10 13:22 - Updated: 2026-06-10 13:22Summary
Security update for google-osconfig-agent
Severity
Important
Notes
Title of the patch: Security update for google-osconfig-agent
Description of the patch: This update for google-osconfig-agent fixes the following issue
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-
header (bsc#1260264).
Patchnames: SUSE-2026-2347,SUSE-SLE-Module-Public-Cloud-12-2026-2347
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-osconfig-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-osconfig-agent fixes the following issue\n\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-\n header (bsc#1260264).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2347,SUSE-SLE-Module-Public-Cloud-12-2026-2347",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2347-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2347-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262347-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2347-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026693.html"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
}
],
"title": "Security update for google-osconfig-agent",
"tracking": {
"current_release_date": "2026-06-10T13:22:28Z",
"generator": {
"date": "2026-06-10T13:22:28Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2347-1",
"initial_release_date": "2026-06-10T13:22:28Z",
"revision_history": [
{
"date": "2026-06-10T13:22:28Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-1.44.1.aarch64",
"product": {
"name": "google-osconfig-agent-20250416.02-1.44.1.aarch64",
"product_id": "google-osconfig-agent-20250416.02-1.44.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-1.44.1.i586",
"product": {
"name": "google-osconfig-agent-20250416.02-1.44.1.i586",
"product_id": "google-osconfig-agent-20250416.02-1.44.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-1.44.1.ppc64le",
"product": {
"name": "google-osconfig-agent-20250416.02-1.44.1.ppc64le",
"product_id": "google-osconfig-agent-20250416.02-1.44.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-1.44.1.s390x",
"product": {
"name": "google-osconfig-agent-20250416.02-1.44.1.s390x",
"product_id": "google-osconfig-agent-20250416.02-1.44.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-1.44.1.x86_64",
"product": {
"name": "google-osconfig-agent-20250416.02-1.44.1.x86_64",
"product_id": "google-osconfig-agent-20250416.02-1.44.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12",
"product": {
"name": "SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 12",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-1.44.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.aarch64"
},
"product_reference": "google-osconfig-agent-20250416.02-1.44.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-1.44.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.ppc64le"
},
"product_reference": "google-osconfig-agent-20250416.02-1.44.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-1.44.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.s390x"
},
"product_reference": "google-osconfig-agent-20250416.02-1.44.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-1.44.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.x86_64"
},
"product_reference": "google-osconfig-agent-20250416.02-1.44.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-osconfig-agent-20250416.02-1.44.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-10T13:22:28Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
}
]
}
SUSE-SU-2026:2581-1
Vulnerability from csaf_suse - Published: 2026-06-23 13:25 - Updated: 2026-06-23 13:25Summary
Security update for google-guest-agent
Severity
Important
Notes
Title of the patch: Security update for google-guest-agent
Description of the patch: This update for google-guest-agent fixes the following issues:
- CVE-2026-39827: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39828: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39829: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39830: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39831: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39832: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39833: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39834: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39835: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-42508: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-46595: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-46597: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-46598: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2024-45337: Update golang.org/x/crypto/ssh dependency (bsc#1234563).
- CVE-2026-39821: Update golang.org/x/net dependency (bsc#1266603).
- CVE-2023-45288: Update golang.org/x/net/http2 dependency (bsc#1236533).
- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1239334).
- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1253889).
- CVE-2026-33814: Update golang.org/x/net/http2 dependency (bsc#1265762).
- CVE-2026-33186: Update google.golang.org/grpc dependency (bsc#1260264).
- CVE-2026-34986: Fix crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262926).
Bug fixes:
- Update to version 20260402.00 (bsc#1257010).
- Update to version 20250506.01 (bsc#1243254, bsc#1243505).
- Install google_metadata_script_runner_adapt script (bsc#1245759).
- Add -buildmode=pie to go build command line (bsc#1239944).
- Re-enable binary stripping and debuginfo (bsc#1210938).
Patchnames: SUSE-2026-2581,SUSE-SLE-Module-Public-Cloud-12-2026-2581
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
88 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-guest-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-guest-agent fixes the following issues:\n\n- CVE-2026-39827: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39828: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39829: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39830: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39831: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39832: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39833: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39834: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39835: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-42508: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-46595: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-46597: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-46598: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2024-45337: Update golang.org/x/crypto/ssh dependency (bsc#1234563).\n- CVE-2026-39821: Update golang.org/x/net dependency (bsc#1266603).\n- CVE-2023-45288: Update golang.org/x/net/http2 dependency (bsc#1236533).\n- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1239334).\n- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1253889).\n- CVE-2026-33814: Update golang.org/x/net/http2 dependency (bsc#1265762).\n- CVE-2026-33186: Update google.golang.org/grpc dependency (bsc#1260264).\n- CVE-2026-34986: Fix crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262926).\n\nBug fixes:\n\n- Update to version 20260402.00 (bsc#1257010).\n- Update to version 20250506.01 (bsc#1243254, bsc#1243505).\n- Install google_metadata_script_runner_adapt script (bsc#1245759).\n- Add -buildmode=pie to go build command line (bsc#1239944).\n- Re-enable binary stripping and debuginfo (bsc#1210938).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2581,SUSE-SLE-Module-Public-Cloud-12-2026-2581",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2581-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2581-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262581-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2581-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026965.html"
},
{
"category": "self",
"summary": "SUSE Bug 1210938",
"url": "https://bugzilla.suse.com/1210938"
},
{
"category": "self",
"summary": "SUSE Bug 1234563",
"url": "https://bugzilla.suse.com/1234563"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE Bug 1239334",
"url": "https://bugzilla.suse.com/1239334"
},
{
"category": "self",
"summary": "SUSE Bug 1239944",
"url": "https://bugzilla.suse.com/1239944"
},
{
"category": "self",
"summary": "SUSE Bug 1243254",
"url": "https://bugzilla.suse.com/1243254"
},
{
"category": "self",
"summary": "SUSE Bug 1243505",
"url": "https://bugzilla.suse.com/1243505"
},
{
"category": "self",
"summary": "SUSE Bug 1245759",
"url": "https://bugzilla.suse.com/1245759"
},
{
"category": "self",
"summary": "SUSE Bug 1253889",
"url": "https://bugzilla.suse.com/1253889"
},
{
"category": "self",
"summary": "SUSE Bug 1257010",
"url": "https://bugzilla.suse.com/1257010"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE Bug 1262926",
"url": "https://bugzilla.suse.com/1262926"
},
{
"category": "self",
"summary": "SUSE Bug 1265762",
"url": "https://bugzilla.suse.com/1265762"
},
{
"category": "self",
"summary": "SUSE Bug 1266171",
"url": "https://bugzilla.suse.com/1266171"
},
{
"category": "self",
"summary": "SUSE Bug 1266603",
"url": "https://bugzilla.suse.com/1266603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
}
],
"title": "Security update for google-guest-agent",
"tracking": {
"current_release_date": "2026-06-23T13:25:47Z",
"generator": {
"date": "2026-06-23T13:25:47Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2581-1",
"initial_release_date": "2026-06-23T13:25:47Z",
"revision_history": [
{
"date": "2026-06-23T13:25:47Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.aarch64",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64",
"product_id": "google-guest-agent-20260529.00-1.61.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.i586",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.i586",
"product_id": "google-guest-agent-20260529.00-1.61.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"product_id": "google-guest-agent-20260529.00-1.61.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.s390x",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x",
"product_id": "google-guest-agent-20260529.00-1.61.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.x86_64",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64",
"product_id": "google-guest-agent-20260529.00-1.61.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12",
"product": {
"name": "SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 12",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-45337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45337"
}
],
"notes": [
{
"category": "general",
"text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45337",
"url": "https://www.suse.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "SUSE Bug 1234482 for CVE-2024-45337",
"url": "https://bugzilla.suse.com/1234482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2024-45337"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
}
]
}
SUSE-SU-2026:2609-1
Vulnerability from csaf_suse - Published: 2026-06-24 08:46 - Updated: 2026-06-24 08:46Summary
Security update for apptainer
Severity
Important
Notes
Title of the patch: Security update for apptainer
Description of the patch: This update for apptainer fixes the following issues
- CVE-2026-24137: github.com/sigstore/sigstore/pkg/tuf: legacy TUF client allows for arbitrary file writes with target
cache path traversal (bsc#1264177).
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-
header (bsc#1260311).
- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE
(bsc#1265844).
- CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input with a missing
encrypted key can lead to a denial of service (bsc#1262956).
- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation
bypass and privilege escalation (bsc#1266656).
- CVE-2026-39827: memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh
(bsc#1266202).
- CVE-2026-39828: bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266202).
- CVE-2026-39829: pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266202).
- CVE-2026-39830: client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
(bsc#1266202).
- CVE-2026-39831: bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
(bsc#1266202).
- CVE-2026-39832: agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
(bsc#1266202).
- CVE-2026-39833: key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266202).
- CVE-2026-39834: infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266202).
- CVE-2026-39835: server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266202).
- CVE-2026-42508: auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
(bsc#1266202).
- CVE-2026-46595: VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
(bsc#1266202).
- CVE-2026-46597: byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266202).
- CVE-2026-46598: pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266202).
- CVE-2026-48785: incorrect path matching for limit container paths directive (bsc#1267982).
Changes for apptainer:
- Update apptainer to version v1.5.1
* Work around segmentation fault sometimes seen while `mksquashfs`
under proot is creating a SIF file.
* Update bundled PRoot to version 5.4.0-rootless.3 in order to
fix a problem where SIF files could be corrupted when
`mksquashfs` died with a signal. The proot command was not
passing back an error exit code.
* Updated bundled `squashfuse_ll` to version 0.6.2 in order to
fix a crash sometimes seen with apptainer in unprivileged
docker.
* Update bundled fuse2fs to version 1.47.4 instead of patching
the bugs in 1.47.3.
* Fix a crash that happened when `/etc/resolv.conf` was a
symlink while building from a definition file using the
localimage bootstrap.
* Support hosts that have an /etc/resolv.conf symlink pointing
to `../run` in addition to `/run`.
* Change the download-dependencies script to skip downloading
the PRoot source code on architectures that it is known to
not support (that is: ppc*, s390*, and riscv*).
In those situations Apptainer will skip trying to compile
and run proot. As a result original owners and groups of
files will not be preserved in SIF images built by
unprivileged users, as was the case for all architectures
prior to 1.5.0.
* Fix panic encountered during progress bar update while
pulling image.
* Fix fakeroot overwriting root's username in `/etc/passwd`
with the host user's name, a regression introduced in v1.5.0.
* Add nonested flag for --mount specifications to prevent
individual bind mounts from being passed to nested containers
via `APPTAINER_BIND`.
Patchnames: SUSE-2026-2609,SUSE-SLE-Module-HPC-15-SP7-2026-2609,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2609
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
4.8 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
70 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for apptainer",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for apptainer fixes the following issues\n\n- CVE-2026-24137: github.com/sigstore/sigstore/pkg/tuf: legacy TUF client allows for arbitrary file writes with target\n cache path traversal (bsc#1264177).\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-\n header (bsc#1260311).\n- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE\n (bsc#1265844).\n- CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input with a missing\n encrypted key can lead to a denial of service (bsc#1262956).\n- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation\n bypass and privilege escalation (bsc#1266656).\n- CVE-2026-39827: memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh\n (bsc#1266202).\n- CVE-2026-39828: bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266202).\n- CVE-2026-39829: pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266202).\n- CVE-2026-39830: client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh\n (bsc#1266202).\n- CVE-2026-39831: bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh\n (bsc#1266202).\n- CVE-2026-39832: agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent\n (bsc#1266202).\n- CVE-2026-39833: key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266202).\n- CVE-2026-39834: infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266202).\n- CVE-2026-39835: server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266202).\n- CVE-2026-42508: auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts\n (bsc#1266202).\n- CVE-2026-46595: VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh\n (bsc#1266202).\n- CVE-2026-46597: byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266202).\n- CVE-2026-46598: pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266202). \n- CVE-2026-48785: incorrect path matching for limit container paths directive (bsc#1267982).\n\nChanges for apptainer:\n\n- Update apptainer to version v1.5.1\n \n * Work around segmentation fault sometimes seen while `mksquashfs`\n under proot is creating a SIF file.\n * Update bundled PRoot to version 5.4.0-rootless.3 in order to\n fix a problem where SIF files could be corrupted when\n `mksquashfs` died with a signal. The proot command was not\n passing back an error exit code.\n * Updated bundled `squashfuse_ll` to version 0.6.2 in order to\n fix a crash sometimes seen with apptainer in unprivileged\n docker.\n * Update bundled fuse2fs to version 1.47.4 instead of patching\n the bugs in 1.47.3.\n * Fix a crash that happened when `/etc/resolv.conf` was a\n symlink while building from a definition file using the\n localimage bootstrap.\n * Support hosts that have an /etc/resolv.conf symlink pointing\n to `../run` in addition to `/run`.\n * Change the download-dependencies script to skip downloading\n the PRoot source code on architectures that it is known to\n not support (that is: ppc*, s390*, and riscv*).\n In those situations Apptainer will skip trying to compile\n and run proot. As a result original owners and groups of\n files will not be preserved in SIF images built by\n unprivileged users, as was the case for all architectures\n prior to 1.5.0.\n * Fix panic encountered during progress bar update while\n pulling image.\n * Fix fakeroot overwriting root\u0027s username in `/etc/passwd`\n with the host user\u0027s name, a regression introduced in v1.5.0.\n * Add nonested flag for --mount specifications to prevent\n individual bind mounts from being passed to nested containers\n via `APPTAINER_BIND`.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2609,SUSE-SLE-Module-HPC-15-SP7-2026-2609,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2609",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2609-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2609-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262609-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2609-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047611.html"
},
{
"category": "self",
"summary": "SUSE Bug 1260311",
"url": "https://bugzilla.suse.com/1260311"
},
{
"category": "self",
"summary": "SUSE Bug 1262956",
"url": "https://bugzilla.suse.com/1262956"
},
{
"category": "self",
"summary": "SUSE Bug 1264177",
"url": "https://bugzilla.suse.com/1264177"
},
{
"category": "self",
"summary": "SUSE Bug 1265844",
"url": "https://bugzilla.suse.com/1265844"
},
{
"category": "self",
"summary": "SUSE Bug 1266202",
"url": "https://bugzilla.suse.com/1266202"
},
{
"category": "self",
"summary": "SUSE Bug 1266656",
"url": "https://bugzilla.suse.com/1266656"
},
{
"category": "self",
"summary": "SUSE Bug 1267982",
"url": "https://bugzilla.suse.com/1267982"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-24137 page",
"url": "https://www.suse.com/security/cve/CVE-2026-24137/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-48785 page",
"url": "https://www.suse.com/security/cve/CVE-2026-48785/"
}
],
"title": "Security update for apptainer",
"tracking": {
"current_release_date": "2026-06-24T08:46:20Z",
"generator": {
"date": "2026-06-24T08:46:20Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2609-1",
"initial_release_date": "2026-06-24T08:46:20Z",
"revision_history": [
{
"date": "2026-06-24T08:46:20Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "apptainer-1.5.1-150600.4.24.1.aarch64",
"product": {
"name": "apptainer-1.5.1-150600.4.24.1.aarch64",
"product_id": "apptainer-1.5.1-150600.4.24.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "apptainer-leap-1.5.1-150600.4.24.1.noarch",
"product": {
"name": "apptainer-leap-1.5.1-150600.4.24.1.noarch",
"product_id": "apptainer-leap-1.5.1-150600.4.24.1.noarch"
}
},
{
"category": "product_version",
"name": "apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"product": {
"name": "apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"product_id": "apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
}
},
{
"category": "product_version",
"name": "apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"product": {
"name": "apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"product_id": "apptainer-sle15_7-1.5.1-150600.4.24.1.noarch"
}
},
{
"category": "product_version",
"name": "apptainer-sle16-1.5.1-150600.4.24.1.noarch",
"product": {
"name": "apptainer-sle16-1.5.1-150600.4.24.1.noarch",
"product_id": "apptainer-sle16-1.5.1-150600.4.24.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "apptainer-1.5.1-150600.4.24.1.x86_64",
"product": {
"name": "apptainer-1.5.1-150600.4.24.1.x86_64",
"product_id": "apptainer-1.5.1-150600.4.24.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for HPC 15 SP7",
"product": {
"name": "SUSE Linux Enterprise Module for HPC 15 SP7",
"product_id": "SUSE Linux Enterprise Module for HPC 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-hpc:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15 SP7",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15 SP7",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc:15:sp7"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15:sp6"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15 SP6",
"product": {
"name": "SUSE Linux Enterprise Server 15 SP6",
"product_id": "SUSE Linux Enterprise Server 15 SP6",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:15:sp6"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.aarch64 as component of SUSE Linux Enterprise Module for HPC 15 SP7",
"product_id": "SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for HPC 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.x86_64 as component of SUSE Linux Enterprise Module for HPC 15 SP7",
"product_id": "SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for HPC 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-sle15_7-1.5.1-150600.4.24.1.noarch as component of SUSE Linux Enterprise Module for HPC 15 SP7",
"product_id": "SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch"
},
"product_reference": "apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for HPC 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.aarch64 as component of SUSE Linux Enterprise Module for HPC 15 SP7",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.x86_64 as component of SUSE Linux Enterprise Module for HPC 15 SP7",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-sle15_7-1.5.1-150600.4.24.1.noarch as component of SUSE Linux Enterprise Module for HPC 15 SP7",
"product_id": "SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch"
},
"product_reference": "apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-sle15_6-1.5.1-150600.4.24.1.noarch as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
},
"product_reference": "apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-1.5.1-150600.4.24.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64"
},
"product_reference": "apptainer-1.5.1-150600.4.24.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apptainer-sle15_6-1.5.1-150600.4.24.1.noarch as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
"product_id": "SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
},
"product_reference": "apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-24137",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-24137"
}
],
"notes": [
{
"category": "general",
"text": "sigstore framework is a common go library shared across sigstore services and clients. In versions 1.10.3 and below, the legacy TUF client (pkg/tuf/client.go) supports caching target files to disk. It constructs a filesystem path by joining a cache base directory with a target name sourced from signed target metadata; however, it does not validate that the resulting path stays within the cache base directory. A malicious TUF repository can trigger arbitrary file overwriting, limited to the permissions that the calling process has. Note that this should only affect clients that are directly using the TUF client in sigstore/sigstore or are using an older version of Cosign. Public Sigstore deployment users are unaffected, as TUF metadata is validated by a quorum of trusted collaborators. This issue has been fixed in version 1.10.4. As a workaround, users can disable disk caching for the legacy client by setting SIGSTORE_NO_CACHE=true in the environment, migrate to https://github.com/sigstore/sigstore-go/tree/main/pkg/tuf, or upgrade to the latest sigstore/sigstore release.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-24137",
"url": "https://www.suse.com/security/cve/CVE-2026-24137"
},
{
"category": "external",
"summary": "SUSE Bug 1257137 for CVE-2026-24137",
"url": "https://bugzilla.suse.com/1257137"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "moderate"
}
],
"title": "CVE-2026-24137"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
},
{
"cve": "CVE-2026-48785",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-48785"
}
],
"notes": [
{
"category": "general",
"text": "unknown",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-48785",
"url": "https://www.suse.com/security/cve/CVE-2026-48785"
},
{
"category": "external",
"summary": "SUSE Bug 1267982 for CVE-2026-48785",
"url": "https://bugzilla.suse.com/1267982"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Module for HPC 15 SP7:apptainer-sle15_7-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6-LTSS:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.aarch64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-1.5.1-150600.4.24.1.x86_64",
"SUSE Linux Enterprise Server 15 SP6:apptainer-sle15_6-1.5.1-150600.4.24.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-24T08:46:20Z",
"details": "moderate"
}
],
"title": "CVE-2026-48785"
}
]
}
SUSE-SU-2026:2640-1
Vulnerability from csaf_suse - Published: 2026-06-26 07:06 - Updated: 2026-06-26 07:06Summary
Security update for containerd
Severity
Important
Notes
Title of the patch: Security update for containerd
Description of the patch: This update for containerd fixes the following issues
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-
header (bsc#1260296).
- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE
(bsc#1265794).
- CVE-2026-34986: github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of
service (bsc#1262948).
- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation
bypass and privilege escalation (bsc#1266640).
Patchnames: SUSE-2026-2640,SUSE-SLE-SERVER-12-SP5-LTSS-2026-2640,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2640
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
8.1 (High)
Affected products
Recommended
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for containerd",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for containerd fixes the following issues\n\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-\n header (bsc#1260296).\n- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE\n (bsc#1265794).\n- CVE-2026-34986: github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of\n service (bsc#1262948).\n- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation\n bypass and privilege escalation (bsc#1266640).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2640,SUSE-SLE-SERVER-12-SP5-LTSS-2026-2640,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-2640",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2640-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2640-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262640-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2640-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047639.html"
},
{
"category": "self",
"summary": "SUSE Bug 1260296",
"url": "https://bugzilla.suse.com/1260296"
},
{
"category": "self",
"summary": "SUSE Bug 1262948",
"url": "https://bugzilla.suse.com/1262948"
},
{
"category": "self",
"summary": "SUSE Bug 1265794",
"url": "https://bugzilla.suse.com/1265794"
},
{
"category": "self",
"summary": "SUSE Bug 1266640",
"url": "https://bugzilla.suse.com/1266640"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
}
],
"title": "Security update for containerd",
"tracking": {
"current_release_date": "2026-06-26T07:06:31Z",
"generator": {
"date": "2026-06-26T07:06:31Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2640-1",
"initial_release_date": "2026-06-26T07:06:31Z",
"revision_history": [
{
"date": "2026-06-26T07:06:31Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.7.29-16.110.1.aarch64",
"product": {
"name": "containerd-1.7.29-16.110.1.aarch64",
"product_id": "containerd-1.7.29-16.110.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.7.29-16.110.1.aarch64",
"product": {
"name": "containerd-ctr-1.7.29-16.110.1.aarch64",
"product_id": "containerd-ctr-1.7.29-16.110.1.aarch64"
}
},
{
"category": "product_version",
"name": "containerd-devel-1.7.29-16.110.1.aarch64",
"product": {
"name": "containerd-devel-1.7.29-16.110.1.aarch64",
"product_id": "containerd-devel-1.7.29-16.110.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.7.29-16.110.1.i586",
"product": {
"name": "containerd-1.7.29-16.110.1.i586",
"product_id": "containerd-1.7.29-16.110.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.7.29-16.110.1.i586",
"product": {
"name": "containerd-ctr-1.7.29-16.110.1.i586",
"product_id": "containerd-ctr-1.7.29-16.110.1.i586"
}
},
{
"category": "product_version",
"name": "containerd-devel-1.7.29-16.110.1.i586",
"product": {
"name": "containerd-devel-1.7.29-16.110.1.i586",
"product_id": "containerd-devel-1.7.29-16.110.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.7.29-16.110.1.ppc64le",
"product": {
"name": "containerd-1.7.29-16.110.1.ppc64le",
"product_id": "containerd-1.7.29-16.110.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.7.29-16.110.1.ppc64le",
"product": {
"name": "containerd-ctr-1.7.29-16.110.1.ppc64le",
"product_id": "containerd-ctr-1.7.29-16.110.1.ppc64le"
}
},
{
"category": "product_version",
"name": "containerd-devel-1.7.29-16.110.1.ppc64le",
"product": {
"name": "containerd-devel-1.7.29-16.110.1.ppc64le",
"product_id": "containerd-devel-1.7.29-16.110.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.7.29-16.110.1.s390x",
"product": {
"name": "containerd-1.7.29-16.110.1.s390x",
"product_id": "containerd-1.7.29-16.110.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.7.29-16.110.1.s390x",
"product": {
"name": "containerd-ctr-1.7.29-16.110.1.s390x",
"product_id": "containerd-ctr-1.7.29-16.110.1.s390x"
}
},
{
"category": "product_version",
"name": "containerd-devel-1.7.29-16.110.1.s390x",
"product": {
"name": "containerd-devel-1.7.29-16.110.1.s390x",
"product_id": "containerd-devel-1.7.29-16.110.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "containerd-1.7.29-16.110.1.x86_64",
"product": {
"name": "containerd-1.7.29-16.110.1.x86_64",
"product_id": "containerd-1.7.29-16.110.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-ctr-1.7.29-16.110.1.x86_64",
"product": {
"name": "containerd-ctr-1.7.29-16.110.1.x86_64",
"product_id": "containerd-ctr-1.7.29-16.110.1.x86_64"
}
},
{
"category": "product_version",
"name": "containerd-devel-1.7.29-16.110.1.x86_64",
"product": {
"name": "containerd-devel-1.7.29-16.110.1.x86_64",
"product_id": "containerd-devel-1.7.29-16.110.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64"
},
"product_reference": "containerd-1.7.29-16.110.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le"
},
"product_reference": "containerd-1.7.29-16.110.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x"
},
"product_reference": "containerd-1.7.29-16.110.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64"
},
"product_reference": "containerd-1.7.29-16.110.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le"
},
"product_reference": "containerd-1.7.29-16.110.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x"
},
"product_reference": "containerd-1.7.29-16.110.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-ctr-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-ctr-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containerd-devel-1.7.29-16.110.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
},
"product_reference": "containerd-devel-1.7.29-16.110.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T07:06:31Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T07:06:31Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T07:06:31Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5-LTSS:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-ctr-1.7.29-16.110.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:containerd-devel-1.7.29-16.110.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-26T07:06:31Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…