SUSE SLED15: cluster-md-kmp-default / dlm-kmp-default / gfs2-kmp-default / etc (SUSE-SU-2026:2238-1)

high Nessus Plugin ID 324048

Synopsis

The remote SUSE host is missing one or more security updates.

Description

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2238-1 advisory.

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues

The following security issues were fixed:

- CVE-2023-20585: x86/CPU: Fix FPDSS on Zen1 (bsc#1243603).
- CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache (bsc#1264013).
- CVE-2025-68310: s390/pci: Use pci_uevent_ers() in PCI recovery (bsc#1255160).
- CVE-2025-71183: btrfs: always detect conflicting inodes when logging inode refs (bsc#1257631).
- CVE-2026-23168: flex_proportions: make fprop_new_period() hardirq safe (bsc#1258826).
- CVE-2026-23239: espintcp: Fix race condition in espintcp_close() (bsc#1259485).
- CVE-2026-23240: tls: Fix race condition in tls_sw_cancel_work_tx() (bsc#1259484).
- CVE-2026-23245: net/sched: act_gate: snapshot parameters with RCU on replace (bsc#1259799).
- CVE-2026-23262: gve: Fix stats report corruption on queue count change (bsc#1259870).
- CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018).
- CVE-2026-23276: net: move dev_xmit_recursion() helpers to net/core/dev.h (bsc#1260012).
- CVE-2026-23300: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop (bsc#1260538).
- CVE-2026-23304: ipv6: fix NULL pointer deref in ip6_rt_get_dev_rcu() (bsc#1260544).
- CVE-2026-23306: scsi: pm8001: Fix use-after-free in pm8001_queue_command() (bsc#1260501).
- CVE-2026-23313: i40e: Fix preempt count leak in napi poll tracepoint (bsc#1260555).
- CVE-2026-23321: mptcp: pm: in-kernel: always mark signal+subflow endp as used (bsc#1260505).
- CVE-2026-23335: RDMA/irdma: Fix kernel stack leak in irdma_create_user_ah() (bsc#1260550).
- CVE-2026-23340: net: sched: avoid qdisc_reset_all_tx_gt() vs dequeue race for lockless qdiscs (bsc#1260523).
- CVE-2026-23343: xdp: produce a warning when calculated tailroom is negative (bsc#1260527).
- CVE-2026-23346: mm/ioremap: define generic_ioremap_prot() and generic_iounmap() (bsc#1260529).
- CVE-2026-23351: netfilter: nft_set_pipapo: split gc into unlink and reclaim phase (bsc#1260526).
- CVE-2026-23354: x86/fred: Correct speculative safety in fred_extint() (bsc#1260801).
- CVE-2026-23368: net: phy: register phy led_triggers during probe to avoid AB-BA deadlock (bsc#1260530).
- CVE-2026-23374: blktrace: fix __this_cpu_read/write in preemptible context (bsc#1260811).
- CVE-2026-23378: net/sched: act_ife: Fix metalist update behavior (bsc#1260546).
- CVE-2026-23383: bpf, arm64: Force 8-byte alignment for JIT buffer to prevent atomic tearing (bsc#1260497).
- CVE-2026-23391: netfilter: xt_CT: drop pending enqueued packets on template removal (bsc#1260566).
- CVE-2026-23392: netfilter: nf_tables: release flowtable after rcu grace period on error (bsc#1260531).
- CVE-2026-23393: bridge: cfm: Fix race condition in peer_mep deletion (bsc#1260522).
- CVE-2026-23395: Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ (bsc#1260580).
- CVE-2026-23397: nfnetlink_osf: validate individual option lengths in fingerprints (bsc#1260728).
- CVE-2026-23399: nf_tables: nft_dynset: fix possible stateful expression memleak in error path (bsc#1261020).
- CVE-2026-23412: netfilter: bpf: defer hook memory release until rcu readers are done (bsc#1261412).
- CVE-2026-23419: net/rds: Fix circular locking dependency in rds_tcp_tune (bsc#1261507).
- CVE-2026-23440: net/mlx5e: Fix race condition during IPSec ESN update (bsc#1261641).
- CVE-2026-23441: net/mlx5e: Prevent concurrent access to IPSec ASO context (bsc#1261768).
- CVE-2026-23442: ipv6: add NULL checks for idev in SRv6 paths (bsc#1261581).
- CVE-2026-23445: igc: fix page fault in XDP TX timestamps handling (bsc#1261702).
- CVE-2026-23449: net/sched: teql: Fix double-free in teql_master_xmit (bsc#1261779).
- CVE-2026-23450: net/smc: fix NULL dereference and UAF in smc_tcp_syn_recv_sock() (bsc#1261584).
- CVE-2026-23455: netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() (bsc#1261687).
- CVE-2026-23456: netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case (bsc#1261703).
- CVE-2026-23457: netfilter: nf_conntrack_sip: fix Content-Length u32 truncation in sip_help_tcp() (bsc#1261686).
- CVE-2026-23458: netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() (bsc#1261781).
- CVE-2026-23461: Bluetooth: L2CAP: Fix use-after-free in l2cap_unregister_user (bsc#1261707).
- CVE-2026-23462: Bluetooth: HIDP: Fix possible UAF (bsc#1261710).
- CVE-2026-23468: drm/amdgpu: Limit BO list entry count to prevent resource exhaustion (bsc#1261692).
- CVE-2026-23472: serial: core: fix infinite loop in handle_tx() for PORT_UNKNOWN (bsc#1261636).
- CVE-2026-23473: io_uring/poll: fix multishot recv missing EOF on wakeup race (bsc#1261694).
- CVE-2026-31395: bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler (bsc#1261786).
- CVE-2026-31400: sunrpc: fix cache_request leak in cache_release (bsc#1261645).
- CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261638).
- CVE-2026-31403: NFSD: Hold net reference for the lifetime of /proc/fs/nfs/exports fd (bsc#1261796).
- CVE-2026-31404: xfs: avoid dereferencing log items after push callbacks (bsc#1261628).
- CVE-2026-31407: netfilter: conntrack: add missing netlink policy validations (bsc#1261632).
- CVE-2026-31411: net: atm: fix crash due to unvalidated vcc pointer in sigd_send() (bsc#1261752).
- CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099).
- CVE-2026-31416: netfilter: nfnetlink_log: account for netlink header size (bsc#1262100).
- CVE-2026-31420: bridge: mrp: reject zero test interval to avoid OOM panic (bsc#1262055).
- CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061).
- CVE-2026-31422: net/sched: cls_flow: fix NULL pointer dereference on shared blocks (bsc#1262054).
- CVE-2026-31423: net/sched: sch_hfsc: fix divide-by-zero in rtsc_min() (bsc#1262063).
- CVE-2026-31424: netfilter: x_tables: restrict xt_check_match/xt_check_target extensions for NFPROTO_ARP (bsc#1262053).
- CVE-2026-31425: rds: ib: reject FRMR registration before IB connection is established (bsc#1262074).
- CVE-2026-31427: netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp (bsc#1262086).
- CVE-2026-31428: netfilter: nfnetlink_log: fix uninitialized padding leak in NFULA_PAYLOAD (bsc#1262087).
- CVE-2026-31436: dmaengine: idxd: fix possible wrong descriptor completion in llist_abort_desc() (bsc#1262602).
- CVE-2026-31449: ext4: validate p_idx bounds in ext4_ext_correct_indexes (bsc#1262616).
- CVE-2026-31470: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length (bsc#1262665).
- CVE-2026-31488: drm/amd/display: Do not skip unrelated mode changes in DSC validation (bsc#1262746).
- CVE-2026-31494: net: cadence: macb: Synchronize stats calculations (bsc#1262671).
- CVE-2026-31496: netfilter: nf_conntrack_expect: skip expectations in other netns via proc (bsc#1262673).
- CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263085).
- CVE-2026-31505: iavf: fix out-of-bounds writes in iavf_get_ethtool_stats() (bsc#1263093).
- CVE-2026-31507: net/smc: fix double-free of smc_spd_priv when tee() duplicates splice pipe buffer (bsc#1263095).
- CVE-2026-31512: Bluetooth: L2CAP: Validate PDU length before reading SDU length in l2cap_ecred_data_rcv() (bsc#1262734).
- CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752).
- CVE-2026-31519: btrfs: set BTRFS_ROOT_ORPHAN_CLEANUP during subvol create (bsc#1263012).
- CVE-2026-31525: bpf: Fix undefined behavior in interpreter sdiv/smod for INT_MIN (bsc#1262725).
- CVE-2026-31528: perf: Make sure to use pmu_ctx->pmu for groups (bsc#1263001).
- CVE-2026-31533: net/tls: fix use-after-free in -EBUSY error path of tls_do_encryption (bsc#1262758).
- CVE-2026-31547: drm/xe: Fix missing runtime PM reference in ccs_mode_store (bsc#1263018).
- CVE-2026-31550: pmdomain: bcm: bcm2835-power: Increase ASB control timeout (bsc#1263104).
- CVE-2026-31565: RDMA/irdma: Fix deadlock during netdev reset with active connections (bsc#1263064).
- CVE-2026-31570: can: gw: fix OOB heap access in cgw_csum_crc8_rel() (bsc#1263065).
- CVE-2026-31586: mm: blk-cgroup: fix use-after-free in cgwb_release_workfn() (bsc#1263176).
- CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165).
- CVE-2026-31602: ALSA: ctxfi: Limit PTP to a single page (bsc#1263723).
- CVE-2026-31607: usbip: validate number_of_packets in usbip_pack_ret_submit() (bsc#1263600).
- CVE-2026-31622: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler (bsc#1263797).
- CVE-2026-31649: net: stmmac: fix integer underflow in chain mode (bsc#1263582).
- CVE-2026-31656: drm/i915/gt: fix refcount underflow in intel_engine_park_heartbeat (bsc#1263170).
- CVE-2026-31662: tipc: fix bc_ackers underflow on duplicate GRP_ACK_MSG (bsc#1263131).
- CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140).
- CVE-2026-31669: mptcp: fix slab-use-after-free in __inet_lookup_established (bsc#1263141).
- CVE-2026-31675: net/sched: sch_netem: fix out-of-bounds access in packet corruption (bsc#1263556).
- CVE-2026-31679: openvswitch: validate MPLS set/set_masked payload length (bsc#1263592).
- CVE-2026-31681: netfilter: xt_multiport: validate range encoding in checkentry (bsc#1263593).
- CVE-2026-31682: bridge: br_nd_send: linearize skb before parsing ND options (bsc#1263595).
- CVE-2026-31684: net: sched: act_csum: validate nested VLAN headers (bsc#1263596).
- CVE-2026-31685: netfilter: ip6t_eui64: reject invalid MAC header for all packets (bsc#1263668).
- CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263901).
- CVE-2026-31700: net/packet: fix TOCTOU race on mmap'd vnet_hdr in tpacket_snd() (bsc#1263882).
- CVE-2026-31738: vxlan: validate ND option lengths in vxlan_na_create (bsc#1264059).
- CVE-2026-31787: xen/privcmd: fix double free via VMA splitting (bsc#1262181).
- CVE-2026-43009: bpf: Fix incorrect pruning due to atomic fetch precision tracking (bsc#1264014).
- CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new expectations (bsc#1263931).
- CVE-2026-43027: netfilter: nf_conntrack_helper: pass helper to expect cleanup (bsc#1263933).
- CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995).
- CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097).
- CVE-2026-43044: crypto: caam - fix DMA corruption on long hmac keys (bsc#1264087).
- CVE-2026-43050: atm: lec: fix use-after-free in sock_def_readable() (bsc#1264082).
- CVE-2026-43060: netfilter: nft_ct: drop pending enqueued packets on removal (bsc#1264183).
- CVE-2026-43088: net: af_key: zero aligned sockaddr tail in PF_KEY exports (bsc#1264469).
- CVE-2026-43110: wifi: brcmfmac: validate bsscfg indices in IF events (bsc#1264482).
- CVE-2026-43120: RDMA/irdma: Fix double free related to rereg_user_mr.
- CVE-2026-43126: ALSA: mixer: oss: Add card disconnect checkpoints (bsc#1264634).
- CVE-2026-43190: netfilter: xt_tcpmss: check remaining length before reading optlen (bsc#1264848).
- CVE-2026-43214: KVM: x86: Add SRCU protection for reading PDPTRs in __get_sregs2() (bsc#1264651).
- CVE-2026-43265: KVM: x86: Ignore -EBUSY when checking nested events from vcpu_block() (bsc#1264427).
- CVE-2026-43329: netfilter: flowtable: strictly check for maximum number of actions (bsc#1265085).
- CVE-2026-43330: crypto: caam - fix overflow on long hmac keys (bsc#1264801).
- CVE-2026-43334: Bluetooth: SMP: force responder MITM requirements before building the pairing response (bsc#1265090).
- CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values (bsc#1265119).
- CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle (bsc#1265116).
- CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() (bsc#1264661).
- CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() (bsc#1265126).
- CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled (bsc#1264674).
- CVE-2026-43494: net/rds: reset op_nents when zerocopy page pin fails (bsc#1265626).
- CVE-2026-43503: net: skbuff: propagate shared-frag marker through frag-transfer helpers (bsc#1265960).
- CVE-2026-46300: net: skbuff: preserve shared-frag marker during coalescing (bsc#1265209).
- CVE-2026-46331: kernel: net/sched: fix pedit partial COW leading to page cache (bsc#1265421)

The following non security issues were fixed:

- accel/qaic: Add overflow check to remap_pfn_range during mmap (git-fixes).
- ACPI: AGDI: fix missing newline in error message (git-fixes).
- ACPI: CPPC: Fix related_cpus inconsistency during CPU hotplug (git-fixes).
- ACPI: scan: Use acpi_dev_put() in object add error paths (git-fixes).
- ACPI: video: Add backlight=native quirk for Dell OptiPlex 7770 AIO (git-fixes).
- ACPI: video: force native backlight on HP OMEN 16 (8A44) (stable-fixes).
- ALSA: 6fire: Fix input volume change detection (git-fixes).
- ALSA: 6fire: fix use-after-free on disconnect (git-fixes).
- ALSA: aoa: i2sbus: clear stale prepared state (git-fixes).
- ALSA: aoa: i2sbus: fix OF node lifetime handling (git-fixes).
- ALSA: aoa: Skip devices with no codecs in i2sbus_resume() (git-fixes).
- ALSA: aoa: Use guard() for mutex locks (stable-fixes).
- ALSA: asihpi: avoid write overflow check warning (stable-fixes).
- ALSA: caiaq: Don't abort when no input device is available (git-fixes).
- ALSA: caiaq: Fix control_put() result and cache rollback (git-fixes).
- ALSA: caiaq: Fix potentially leftover ep1_in_urb at error path (git-fixes).
- ALSA: caiaq: fix usb_dev refcount leak on probe failure (git-fixes).
- ALSA: caiaq: Handle probe errors properly (git-fixes).
- ALSA: caiaq: take a reference on the USB device in create_card() (git-fixes).
- ALSA: control: Validate buf_len before strnlen() in snd_ctl_elem_init_enum_names() (git-fixes).
- ALSA: core: Fix potential data race at fasync handling (git-fixes).
- ALSA: core: Serialize deferred fasync state checks (git-fixes).
- ALSA: core: Validate compress device numbers without dynamic minors (git-fixes).
- ALSA: ctxfi: Add fallback to default RSR for S/PDIF (git-fixes).
- ALSA: ctxfi: Fix missing SPDIFI1 index handling (stable-fixes).
- ALSA: ctxfi: Limit PTP to a single page (git-fixes).
- ALSA: firewire-tascam: Do not drop unread control events (git-fixes).
- ALSA: fireworks: bound device-supplied status before string array lookup (git-fixes).
- ALSA: hda/realtek - fixed speaker no sound update (git-fixes).
- ALSA: hda/realtek: Add HP ENVY Laptop 13-ba0xxx quirk (stable-fixes).
- ALSA: hda/realtek: Add mute LED quirk for HP Pavilion 15-eg0xxx (stable-fixes).
- ALSA: hda/realtek: Add quirk for ASUS ROG Flow Z13-KJP GZ302EAC (stable-fixes).
- ALSA: hda/realtek: add quirk for Framework F111:000F (stable-fixes).
- ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7 14IAH10 (stable-fixes).
- ALSA: hda/realtek: fix code style (ERROR: else should follow close brace '}') (git-fixes).
- ALSA: hda: cs35l41: Put ACPI device on missing physical node (git-fixes).
- ALSA: hda: cs35l56: Propagate ASP TX source control errors (git-fixes).
- ALSA: hda: cs35l56: Put ACPI device after setting companion (git-fixes).
- ALSA: hda: Fix NULL pointer dereference in snd_hda_ctl_add() (git-fixes).
- ALSA: misc: Use guard() for spin locks (stable-fixes).
- ALSA: scarlett2: Add missing error check when initialise Autogain Status (git-fixes).
- ALSA: scarlett2: Add missing sentinel initializer field (git-fixes).
- ALSA: seq: Notify client and port info changes (stable-fixes).
- ALSA: seq_oss: return full count for successful SEQ_FULLSIZE writes (stable-fixes).
- ALSA: usb-audio: apply quirk for MOONDROP JU Jiu (stable-fixes).
- ALSA: usb-audio: Avoid false E-MU sample-rate notifications (git-fixes).
- ALSA: usb-audio: Avoid potential endless loop in convert_chmap_v3() (git-fixes).
- ALSA: usb-audio: Bound MIDI 2.0 endpoint descriptor scans (git-fixes).
- ALSA: usb-audio: Bound MIDI endpoint descriptor scans (git-fixes).
- ALSA: usb-audio: Evaluate packsize caps at the right place (git-fixes).
- ALSA: usb-audio: Fix Audio Advantage Micro II SPDIF switch (git-fixes).
- ALSA: usb-audio: Fix potential leak of pd at parsing UAC3 streams (git-fixes).
- ALSA: usb-audio: Fix quirk flags for NeuralDSP Quad Cortex (stable-fixes).
- ALSA: usb-audio: Fix UAC3 cluster descriptor size check (git-fixes).
- ALSA: usb-audio: midi2: Restart output URBs on resume (git-fixes).
- ALSA: usb-audio: stop parsing UAC2 rates at MAX_NR_RATES (git-fixes).
- amdgpu/jpeg: fix deepsleep register for jpeg 5_0_0 and 5_0_2 (stable-fixes).
- ASoC: amd: acp: Add DMI quirk for Valve Steam Deck OLED (git-fixes).
- ASoC: amd: yc: Add DMI entry for HP Laptop 15-fc0xxx (stable-fixes).
- ASoC: amd: yc: Add DMI quirk for ASUS EXPERTBOOK BM1403CDA (stable-fixes).
- ASoC: amd: yc: Add DMI quirk for Thin A15 B7VF (stable-fixes).
- ASoC: amd: yc: Add HP OMEN Gaming Laptop 16-ap0xxx product line in quirk table (stable-fixes).
- ASoC: codecs: ab8500: Fix casting of private data (git-fixes).
- ASoC: cs35l56: Destroy workqueue in probe error path (git-fixes).
- ASoC: cs35l56: Don't use devres to unregister component (git-fixes).
- ASoC: cs35l56: Fix hibernate write in runtime resume error path (git-fixes).
- ASoC: fsl_easrc: Change the type for iec958 channel status controls (git-fixes).
- ASoC: fsl_easrc: Check the variable range in fsl_easrc_iec958_put_bits() (git-fixes).
- ASoC: fsl_easrc: fix comment typo (git-fixes).
- ASoC: fsl_easrc: Fix value type in fsl_easrc_iec958_get_bits() (git-fixes).
- ASoC: fsl_micfil: Add access property for 'VAD Detected' (git-fixes).
- ASoC: fsl_micfil: Fix event generation in hwvad_put_enable() (git-fixes).
- ASoC: fsl_micfil: Fix event generation in hwvad_put_init_mode() (git-fixes).
- ASoC: fsl_micfil: Fix event generation in micfil_put_dc_remover_state() (git-fixes).
- ASoC: fsl_micfil: Fix event generation in micfil_quality_set() (git-fixes).
- ASoC: fsl_xcvr: Fix event generation for cached controls (git-fixes).
- ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_arc_mode_put() (git-fixes).
- ASoC: fsl_xcvr: Fix event generation in fsl_xcvr_mode_put() (git-fixes).
- ASoC: Intel: bytcr_wm5102: Fix MCLK leak on platform_clock_control error (git-fixes).
- ASoC: qcom: q6apm-dai: reset queue ptr on trigger stop (git-fixes).
- ASoC: qcom: q6apm-lpass-dai: Fix multiple graph opens (git-fixes).
- ASoC: qcom: q6apm: move component registration to unmanaged version (git-fixes).
- ASoC: qcom: q6apm: remove child devices when apm is removed (git-fixes).
- ASoC: qcom: qdsp6: topology: check widget type before accessing data (git-fixes).
- ASoC: soc-core: call missing INIT_LIST_HEAD() for card_aux_list (stable-fixes).
- ASoC: SOF: compress: return the configured codec from get_params (git-fixes).
- ASoC: SOF: Don't allow pointer operations on unconfigured streams (git-fixes).
- ASoC: SOF: Intel: hda: Place check before dereference (git-fixes).
- ASoC: SOF: topology: reject invalid vendor array size in token parser (stable-fixes).
- ASoC: sti: Return errors from regmap_field_alloc() (git-fixes).
- ASoC: sti: use managed regmap_field allocations (git-fixes).
- ASoC: stm32_sai: fix incorrect BCLK polarity for DSP_A/B, LEFT_J (stable-fixes).
- ata: ahci: force 32-bit DMA for JMicron JMB582/JMB585 (stable-fixes).
- batman-adv: bla: only purge non-released claims (git-fixes).
- batman-adv: bla: prevent use-after-free when deleting claims (git-fixes).
- batman-adv: bla: put backbone reference on failed claim hash insert (git-fixes).
- batman-adv: fix integer overflow on buff_pos (git-fixes).
- batman-adv: hold claim backbone gateways by reference (git-fixes).
- batman-adv: reject new tp_meter sessions during teardown (git-fixes).
- batman-adv: reject oversized global TT response buffers (git-fixes).
- batman-adv: stop caching unowned originator pointers in BAT IV (git-fixes).
- Bluetooth: bnep: fix incorrect length parsing in bnep_rx_frame() extension handling (git-fixes).
- Bluetooth: btmtk: validate WMT event SKB length before struct access (git-fixes).
- Bluetooth: fix locking in hci_conn_request_evt() with HCI_PROTO_DEFER (git-fixes).
- Bluetooth: hci_event: Fix OOB read and infinite loop in hci_le_create_big_complete_evt (git-fixes).
- Bluetooth: hci_event: fix potential UAF in SSP passkey handlers (git-fixes).
- Bluetooth: hci_ldisc: Clear HCI_UART_PROTO_INIT on error (git-fixes).
- Bluetooth: HIDP: serialise l2cap_unregister_user via hidp_session_sem (git-fixes).
- Bluetooth: ISO: Fix data-race on dst in iso_sock_connect() (git-fixes).
- Bluetooth: l2cap: Add missing chan lock in l2cap_ecred_reconf_rsp (git-fixes).
- Bluetooth: l2cap: fix MPS check in l2cap_ecred_reconf_req (git-fixes).
- Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_new_connection_cb() (git-fixes).
- Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_state_change_cb() (git-fixes).
- Bluetooth: L2CAP: Fix printing wrong information if SDU length exceeds MTU (git-fixes).
- Bluetooth: RFCOMM: pull credit byte with skb_pull_data() (git-fixes).
- Bluetooth: SCO: check for codecs->num_codecs == 1 before assigning to sco_pi(sk)->codec (git-fixes).
- Bluetooth: SCO: fix sleeping under spinlock in sco_conn_ready (git-fixes).
- Bluetooth: SCO: hold sk properly in sco_conn_ready (git-fixes).
- Bluetooth: virtio_bt: clamp rx length before skb_put (git-fixes).
- Bluetooth: virtio_bt: validate rx pkt_type header length (git-fixes).
- btrfs: do not skip logging new dentries when logging a new name (git-fixes).
- btrfs: reject root items with drop_progress and zero drop_level (git-fixes).
- btrfs: replace BUG() with error handling in __btrfs_balance() (git-fixes).
- can: mcp251x: add error handling for power enable in open and resume (stable-fixes).
- can: raw: fix ro->uniq use-after-free in raw_rcv() (git-fixes).
- can: ucan: fix devres lifetime (git-fixes).
- cdc-acm: new quirk for EPSON HMD (stable-fixes).
- cgroup/cpuset: Fix incorrect change to effective_xcpus in partition_xcpus_del() (bsc#1241166).
- cgroup/cpuset: Fix incorrect use of cpuset_update_tasks_cpumask() in update_cpumasks_hier() (bsc#1241166).
- check-for-config-changes: Exclude CC_MS_EXTENSIONS.
- check-for-config-changes: Exclude HAVE_CFI_ICALL_NORMALIZE_INTEGERS{,_RUSTC}.
- checkpatch: add support for Assisted-by tag (stable-fixes).
- comedi: dt2815: add hardware detection to prevent crash (stable-fixes).
- cpufreq: intel_pstate: Drop Arrow Lake from 'scaling factor' list (bsc#1249104).
- crypto: algif_aead - Fix minimum RX size check for decryption (git-fixes).
- crypto: arm64/aes - Fix 32-bit aes_mac_update() arg treated as 64-bit (git-fixes).
- crypto: atmel-aes - Fix 3-page memory leak in atmel_aes_buff_cleanup (git-fixes).
- crypto: atmel-ecc - Release client on allocation failure (git-fixes).
- crypto: atmel-sha204a - Fix potential UAF and memory leak in remove path (git-fixes).
- crypto: atmel-tdes - fix DMA sync direction (git-fixes).
- crypto: authencesn - reject short ahash digests during instance creation (git-fixes).
- crypto: ccp - copy IV using skcipher ivsize (git-fixes).
- crypto: ccp: Don't attempt to copy CSR to userspace if PSP command failed (git-fixes).
- crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed (git-fixes).
- crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed (git-fixes).
- crypto: ccree - fix a memory leak in cc_mac_digest() (git-fixes).
- crypto: hisilicon - Fix dma_unmap_single() direction (git-fixes).
- crypto: jitterentropy - replace long-held spinlock with mutex (git-fixes).
- crypto: pcrypt - Fix handling of MAY_BACKLOG requests (git-fixes).
- crypto: qat - fix type mismatch in RAS sysfs show functions (git-fixes).
- crypto: qat - use swab32 macro (git-fixes).
- crypto: sa2ul - Fix AEAD fallback algorithm names (git-fixes).
- crypto: simd - reject compat registrations without __ prefixes (git-fixes).
- crypto: talitos - fix SEC1 32k ahash request limitation (git-fixes).
- crypto: testmgr - Hide ENOENT errors (stable-fixes).
- crypto: testmgr - Hide ENOENT errors better (git-fixes).
- devres: fix missing node debug info in devm_krealloc() (git-fixes).
- dm init: ensure device probing has finished in dm-mod.waitfor= (git-fixes).
- dmaengine: dw-axi-dmac: Remove unnecessary return statement from void function (git-fixes).
- dmaengine: mxs-dma: Fix missing return value from of_dma_controller_register() (git-fixes).
- dpll: zl3073x: Add support to adjust phase (bsc#1255752).
- dpll: zl3073x: Fix output pin phase adjustment sign (bsc#1255752).
- dpll: zl3073x: Fix output pin registration (bsc#1255752).
- dpll: zl3073x: fix REF_PHASE_OFFSET_COMP register width for some chip IDs (bsc#1255752).
- dpll: zl3073x: Specify phase adjustment granularity for pins (bsc#1255752).
- drm/amd/display: Add NULL check for integrated_info in clk_mgr_construct (git-fixes).
- drm/amd/display: Allow DCE link encoder without AUX registers (git-fixes).
- drm/amd/display: Avoid NULL dereference in dc_dmub_srv error paths (git-fixes).
- drm/amd/display: Change dither policy for 10 bpc output back to dithering (git-fixes).
- drm/amd/display: Correct logic check error for fastboot (git-fixes).
- drm/amd/display: Disable 10-bit truncation and dithering on DCE 6.x (git-fixes).
- drm/amd/display: Disable fastboot on DCE 6 too (stable-fixes).
- drm/amd/display: Read EDID from VBIOS embedded panel info (git-fixes).
- drm/amd/pm/ci: Clear EnabledForActivity field for memory levels (git-fixes).
- drm/amd/pm/ci: Disable MCLK DPM on problematic CI ASICs (git-fixes).
- drm/amd/pm/ci: Fill DW8 fields from SMC (git-fixes).
- drm/amd/pm/ci: Fix powertune defaults for Hawaii 0x67B0 (git-fixes).
- drm/amd/pm/ci: Use highest MCLK on CI when MCLK DPM is disabled (git-fixes).
- drm/amd/pm/smu7: Add SCLK cap for quirky Hawaii board (git-fixes).
- drm/amd/pm/smu7: Fix SMU7 voltage dependency on display clock (git-fixes).
- drm/amd/pm: fix incorrect FeatureCtrlMask setting on smu v14.0.x (git-fixes).
- drm/amdgpu/gfx6: Support harvested SI chips with disabled TCCs (v2) (git-fixes).
- drm/amdgpu/gfx9: drop unnecessary 64-bit fence flag check in KIQ (stable-fixes).
- drm/amdgpu/gfx10: look at the right prop for gfx queue priority (git-fixes).
- drm/amdgpu/gfx11: look at the right prop for gfx queue priority (git-fixes).
- drm/amdgpu/gmc: Fix AMDGPU_GART_PLACEMENT_LOW to not overlap with VRAM (git-fixes).
- drm/amdgpu/jpeg: set no_user_fence for JPEG v2.0 ring (git-fixes).
- ...

Please note that the description has been truncated due to length. Please refer to vendor advisory for the full description.

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://bugzilla.suse.com/1215199

https://bugzilla.suse.com/1225897

https://bugzilla.suse.com/1234634

https://bugzilla.suse.com/1237452

https://bugzilla.suse.com/1241166

https://bugzilla.suse.com/1243603

https://bugzilla.suse.com/1248754

https://bugzilla.suse.com/1249104

https://bugzilla.suse.com/1253122

https://bugzilla.suse.com/1253754

https://bugzilla.suse.com/1254518

https://bugzilla.suse.com/1255160

https://bugzilla.suse.com/1255752

https://bugzilla.suse.com/1256863

https://bugzilla.suse.com/1257183

https://bugzilla.suse.com/1257631

https://bugzilla.suse.com/1258518

https://bugzilla.suse.com/1258718

https://bugzilla.suse.com/1258826

https://bugzilla.suse.com/1258849

https://bugzilla.suse.com/1258850

https://bugzilla.suse.com/1258854

https://bugzilla.suse.com/1258855

https://bugzilla.suse.com/1258856

https://bugzilla.suse.com/1258857

https://bugzilla.suse.com/1258961

https://bugzilla.suse.com/1259186

https://bugzilla.suse.com/1259199

https://bugzilla.suse.com/1259222

https://bugzilla.suse.com/1259461

https://bugzilla.suse.com/1259484

https://bugzilla.suse.com/1259485

https://bugzilla.suse.com/1259535

https://bugzilla.suse.com/1259672

https://bugzilla.suse.com/1259799

https://bugzilla.suse.com/1259806

https://bugzilla.suse.com/1259857

https://bugzilla.suse.com/1259868

https://bugzilla.suse.com/1259869

https://bugzilla.suse.com/1259870

https://bugzilla.suse.com/1259871

https://bugzilla.suse.com/1259873

https://bugzilla.suse.com/1259878

https://bugzilla.suse.com/1259995

https://bugzilla.suse.com/1260010

https://bugzilla.suse.com/1260012

https://bugzilla.suse.com/1260018

https://bugzilla.suse.com/1260428

https://bugzilla.suse.com/1260468

https://bugzilla.suse.com/1260483

https://bugzilla.suse.com/1260484

https://bugzilla.suse.com/1260485

https://bugzilla.suse.com/1260489

https://bugzilla.suse.com/1260497

https://bugzilla.suse.com/1260501

https://bugzilla.suse.com/1260504

https://bugzilla.suse.com/1260505

https://bugzilla.suse.com/1260507

https://bugzilla.suse.com/1260522

https://bugzilla.suse.com/1260523

https://bugzilla.suse.com/1260526

https://bugzilla.suse.com/1260527

https://bugzilla.suse.com/1260528

https://bugzilla.suse.com/1260529

https://bugzilla.suse.com/1260530

https://bugzilla.suse.com/1260531

https://bugzilla.suse.com/1260532

https://bugzilla.suse.com/1260533

https://bugzilla.suse.com/1260536

https://bugzilla.suse.com/1260537

https://bugzilla.suse.com/1260538

https://bugzilla.suse.com/1260541

https://bugzilla.suse.com/1260544

https://bugzilla.suse.com/1260546

https://bugzilla.suse.com/1260549

https://bugzilla.suse.com/1260550

https://bugzilla.suse.com/1260551

https://bugzilla.suse.com/1260552

https://bugzilla.suse.com/1260553

https://bugzilla.suse.com/1260555

https://bugzilla.suse.com/1260561

https://bugzilla.suse.com/1260566

https://bugzilla.suse.com/1260572

https://bugzilla.suse.com/1260580

https://bugzilla.suse.com/1260581

https://bugzilla.suse.com/1260728

https://bugzilla.suse.com/1260729

https://bugzilla.suse.com/1260731

https://bugzilla.suse.com/1260800

https://bugzilla.suse.com/1260801

https://bugzilla.suse.com/1260811

https://bugzilla.suse.com/1260989

https://bugzilla.suse.com/1261020

https://bugzilla.suse.com/1261287

https://bugzilla.suse.com/1261295

https://bugzilla.suse.com/1261348

https://bugzilla.suse.com/1261412

https://bugzilla.suse.com/1261503

https://bugzilla.suse.com/1261504

https://bugzilla.suse.com/1261505

https://bugzilla.suse.com/1261507

https://bugzilla.suse.com/1261555

https://bugzilla.suse.com/1261581

https://bugzilla.suse.com/1261582

https://bugzilla.suse.com/1261584

https://bugzilla.suse.com/1261585

https://bugzilla.suse.com/1261601

https://bugzilla.suse.com/1261602

https://bugzilla.suse.com/1261618

https://bugzilla.suse.com/1261628

https://bugzilla.suse.com/1261632

https://bugzilla.suse.com/1261636

https://bugzilla.suse.com/1261637

https://bugzilla.suse.com/1261638

https://bugzilla.suse.com/1261641

https://bugzilla.suse.com/1261644

https://bugzilla.suse.com/1261645

https://bugzilla.suse.com/1261648

https://bugzilla.suse.com/1261669

https://bugzilla.suse.com/1261679

https://bugzilla.suse.com/1261685

https://bugzilla.suse.com/1261686

https://bugzilla.suse.com/1261687

https://bugzilla.suse.com/1261692

https://bugzilla.suse.com/1261694

https://bugzilla.suse.com/1261700

https://bugzilla.suse.com/1261702

https://bugzilla.suse.com/1261703

https://bugzilla.suse.com/1261707

https://bugzilla.suse.com/1261710

https://bugzilla.suse.com/1261713

https://bugzilla.suse.com/1261714

https://bugzilla.suse.com/1261719

https://bugzilla.suse.com/1261738

https://bugzilla.suse.com/1261750

https://bugzilla.suse.com/1261751

https://bugzilla.suse.com/1261752

https://bugzilla.suse.com/1261768

https://bugzilla.suse.com/1261778

https://bugzilla.suse.com/1261779

https://bugzilla.suse.com/1261780

https://bugzilla.suse.com/1261781

https://bugzilla.suse.com/1261786

https://bugzilla.suse.com/1261788

https://bugzilla.suse.com/1261789

https://bugzilla.suse.com/1261796

https://bugzilla.suse.com/1261797

https://bugzilla.suse.com/1261896

https://bugzilla.suse.com/1262019

https://bugzilla.suse.com/1262020

https://bugzilla.suse.com/1262053

https://bugzilla.suse.com/1262054

https://bugzilla.suse.com/1262055

https://bugzilla.suse.com/1262061

https://bugzilla.suse.com/1262063

https://bugzilla.suse.com/1262074

https://bugzilla.suse.com/1262078

https://bugzilla.suse.com/1262086

https://bugzilla.suse.com/1262087

https://bugzilla.suse.com/1262099

https://bugzilla.suse.com/1262100

https://bugzilla.suse.com/1262101

https://bugzilla.suse.com/1262179

https://bugzilla.suse.com/1262181

https://bugzilla.suse.com/1262250

https://bugzilla.suse.com/1262480

https://bugzilla.suse.com/1262526

https://bugzilla.suse.com/1262599

https://bugzilla.suse.com/1262602

https://bugzilla.suse.com/1262616

https://bugzilla.suse.com/1262665

https://bugzilla.suse.com/1262671

https://bugzilla.suse.com/1262673

https://bugzilla.suse.com/1262709

https://bugzilla.suse.com/1262725

https://bugzilla.suse.com/1262731

https://bugzilla.suse.com/1262734

https://bugzilla.suse.com/1262746

https://bugzilla.suse.com/1262752

https://bugzilla.suse.com/1262758

https://bugzilla.suse.com/1263001

https://bugzilla.suse.com/1263012

https://bugzilla.suse.com/1263018

https://bugzilla.suse.com/1263064

https://bugzilla.suse.com/1263065

https://bugzilla.suse.com/1263085

https://bugzilla.suse.com/1263093

https://bugzilla.suse.com/1263095

https://bugzilla.suse.com/1263104

https://bugzilla.suse.com/1263131

https://bugzilla.suse.com/1263140

https://bugzilla.suse.com/1263141

https://bugzilla.suse.com/1263149

https://bugzilla.suse.com/1263165

https://bugzilla.suse.com/1263170

https://bugzilla.suse.com/1263176

https://bugzilla.suse.com/1263255

https://bugzilla.suse.com/1263556

https://bugzilla.suse.com/1263582

https://bugzilla.suse.com/1263592

https://bugzilla.suse.com/1263593

https://bugzilla.suse.com/1263595

https://bugzilla.suse.com/1263596

https://bugzilla.suse.com/1263600

https://bugzilla.suse.com/1263668

https://bugzilla.suse.com/1263723

https://bugzilla.suse.com/1263797

https://bugzilla.suse.com/1263815

https://bugzilla.suse.com/1263877

https://bugzilla.suse.com/1263882

https://bugzilla.suse.com/1263901

https://bugzilla.suse.com/1263931

https://bugzilla.suse.com/1263933

https://bugzilla.suse.com/1263995

https://bugzilla.suse.com/1264013

https://bugzilla.suse.com/1264014

https://bugzilla.suse.com/1264059

https://bugzilla.suse.com/1264082

https://bugzilla.suse.com/1264087

https://bugzilla.suse.com/1264097

https://bugzilla.suse.com/1264183

https://bugzilla.suse.com/1264427

https://bugzilla.suse.com/1264449

https://bugzilla.suse.com/1264469

https://bugzilla.suse.com/1264482

https://bugzilla.suse.com/1264634

https://bugzilla.suse.com/1264651

https://bugzilla.suse.com/1264661

https://bugzilla.suse.com/1264674

https://bugzilla.suse.com/1264801

https://bugzilla.suse.com/1264848

https://bugzilla.suse.com/1265085

https://bugzilla.suse.com/1265090

https://bugzilla.suse.com/1265116

https://bugzilla.suse.com/1265119

https://bugzilla.suse.com/1265126

https://bugzilla.suse.com/1265144

https://bugzilla.suse.com/1265209

https://bugzilla.suse.com/1265421

https://bugzilla.suse.com/1265449

https://bugzilla.suse.com/1265456

https://bugzilla.suse.com/1265626

https://bugzilla.suse.com/1265846

https://bugzilla.suse.com/1265960

https://www.suse.com/security/cve/CVE-2023-20585

https://www.suse.com/security/cve/CVE-2025-40219

https://www.suse.com/security/cve/CVE-2025-54518

https://www.suse.com/security/cve/CVE-2025-68310

https://www.suse.com/security/cve/CVE-2025-71183

https://www.suse.com/security/cve/CVE-2025-71238

https://www.suse.com/security/cve/CVE-2026-23168

https://www.suse.com/security/cve/CVE-2026-23209

https://www.suse.com/security/cve/CVE-2026-23236

https://www.suse.com/security/cve/CVE-2026-23237

https://www.suse.com/security/cve/CVE-2026-23239

https://www.suse.com/security/cve/CVE-2026-23240

https://www.suse.com/security/cve/CVE-2026-23245

https://www.suse.com/security/cve/CVE-2026-23246

https://www.suse.com/security/cve/CVE-2026-23253

https://www.suse.com/security/cve/CVE-2026-23260

https://www.suse.com/security/cve/CVE-2026-23261

https://www.suse.com/security/cve/CVE-2026-23262

https://www.suse.com/security/cve/CVE-2026-23264

https://www.suse.com/security/cve/CVE-2026-23266

https://www.suse.com/security/cve/CVE-2026-23268

https://www.suse.com/security/cve/CVE-2026-23269

https://www.suse.com/security/cve/CVE-2026-23271

https://www.suse.com/security/cve/CVE-2026-23273

https://www.suse.com/security/cve/CVE-2026-23276

https://www.suse.com/security/cve/CVE-2026-23279

https://www.suse.com/security/cve/CVE-2026-23290

https://www.suse.com/security/cve/CVE-2026-23291

https://www.suse.com/security/cve/CVE-2026-23298

https://www.suse.com/security/cve/CVE-2026-23300

https://www.suse.com/security/cve/CVE-2026-23304

https://www.suse.com/security/cve/CVE-2026-23306

https://www.suse.com/security/cve/CVE-2026-23307

https://www.suse.com/security/cve/CVE-2026-23308

https://www.suse.com/security/cve/CVE-2026-23312

https://www.suse.com/security/cve/CVE-2026-23313

https://www.suse.com/security/cve/CVE-2026-23315

https://www.suse.com/security/cve/CVE-2026-23318

https://www.suse.com/security/cve/CVE-2026-23321

https://www.suse.com/security/cve/CVE-2026-23324

https://www.suse.com/security/cve/CVE-2026-23325

https://www.suse.com/security/cve/CVE-2026-23335

https://www.suse.com/security/cve/CVE-2026-23336

https://www.suse.com/security/cve/CVE-2026-23339

https://www.suse.com/security/cve/CVE-2026-23340

https://www.suse.com/security/cve/CVE-2026-23343

https://www.suse.com/security/cve/CVE-2026-23346

https://www.suse.com/security/cve/CVE-2026-23351

https://www.suse.com/security/cve/CVE-2026-23354

https://www.suse.com/security/cve/CVE-2026-23357

https://www.suse.com/security/cve/CVE-2026-23362

https://www.suse.com/security/cve/CVE-2026-23363

https://www.suse.com/security/cve/CVE-2026-23365

https://www.suse.com/security/cve/CVE-2026-23367

https://www.suse.com/security/cve/CVE-2026-23368

https://www.suse.com/security/cve/CVE-2026-23370

https://www.suse.com/security/cve/CVE-2026-23372

https://www.suse.com/security/cve/CVE-2026-23373

https://www.suse.com/security/cve/CVE-2026-23374

https://www.suse.com/security/cve/CVE-2026-23378

https://www.suse.com/security/cve/CVE-2026-23382

https://www.suse.com/security/cve/CVE-2026-23383

https://www.suse.com/security/cve/CVE-2026-23391

https://www.suse.com/security/cve/CVE-2026-23392

https://www.suse.com/security/cve/CVE-2026-23393

https://www.suse.com/security/cve/CVE-2026-23395

https://www.suse.com/security/cve/CVE-2026-23396

https://www.suse.com/security/cve/CVE-2026-23397

https://www.suse.com/security/cve/CVE-2026-23399

https://www.suse.com/security/cve/CVE-2026-23403

https://www.suse.com/security/cve/CVE-2026-23404

https://www.suse.com/security/cve/CVE-2026-23405

https://www.suse.com/security/cve/CVE-2026-23406

https://www.suse.com/security/cve/CVE-2026-23407

https://www.suse.com/security/cve/CVE-2026-23408

https://www.suse.com/security/cve/CVE-2026-23409

https://www.suse.com/security/cve/CVE-2026-23410

https://www.suse.com/security/cve/CVE-2026-23411

https://www.suse.com/security/cve/CVE-2026-23412

https://www.suse.com/security/cve/CVE-2026-23418

https://www.suse.com/security/cve/CVE-2026-23419

https://www.suse.com/security/cve/CVE-2026-23420

https://www.suse.com/security/cve/CVE-2026-23426

https://www.suse.com/security/cve/CVE-2026-23434

https://www.suse.com/security/cve/CVE-2026-23440

https://www.suse.com/security/cve/CVE-2026-23441

https://www.suse.com/security/cve/CVE-2026-23442

https://www.suse.com/security/cve/CVE-2026-23443

https://www.suse.com/security/cve/CVE-2026-23445

https://www.suse.com/security/cve/CVE-2026-23446

https://www.suse.com/security/cve/CVE-2026-23447

https://www.suse.com/security/cve/CVE-2026-23448

https://www.suse.com/security/cve/CVE-2026-23449

https://www.suse.com/security/cve/CVE-2026-23450

https://www.suse.com/security/cve/CVE-2026-23452

https://www.suse.com/security/cve/CVE-2026-23454

https://www.suse.com/security/cve/CVE-2026-23455

https://www.suse.com/security/cve/CVE-2026-23456

https://www.suse.com/security/cve/CVE-2026-23457

https://www.suse.com/security/cve/CVE-2026-23458

https://www.suse.com/security/cve/CVE-2026-23460

https://www.suse.com/security/cve/CVE-2026-23461

https://www.suse.com/security/cve/CVE-2026-23462

https://www.suse.com/security/cve/CVE-2026-23463

https://www.suse.com/security/cve/CVE-2026-23465

https://www.suse.com/security/cve/CVE-2026-23466

https://www.suse.com/security/cve/CVE-2026-23468

https://www.suse.com/security/cve/CVE-2026-23470

https://www.suse.com/security/cve/CVE-2026-23472

https://www.suse.com/security/cve/CVE-2026-23474

https://www.suse.com/security/cve/CVE-2026-23475

https://www.suse.com/security/cve/CVE-2026-31389

https://www.suse.com/security/cve/CVE-2026-31392

https://www.suse.com/security/cve/CVE-2026-31393

https://www.suse.com/security/cve/CVE-2026-31394

https://www.suse.com/security/cve/CVE-2026-31395

https://www.suse.com/security/cve/CVE-2026-31400

https://www.suse.com/security/cve/CVE-2026-31402

https://www.suse.com/security/cve/CVE-2026-31403

https://www.suse.com/security/cve/CVE-2026-31404

https://www.suse.com/security/cve/CVE-2026-31405

https://www.suse.com/security/cve/CVE-2026-31407

https://www.suse.com/security/cve/CVE-2026-31408

https://www.suse.com/security/cve/CVE-2026-31411

https://www.suse.com/security/cve/CVE-2026-31412

https://www.suse.com/security/cve/CVE-2026-31415

https://www.suse.com/security/cve/CVE-2026-31416

https://www.suse.com/security/cve/CVE-2026-31417

https://www.suse.com/security/cve/CVE-2026-31420

https://www.suse.com/security/cve/CVE-2026-31421

https://www.suse.com/security/cve/CVE-2026-31422

https://www.suse.com/security/cve/CVE-2026-31423

https://www.suse.com/security/cve/CVE-2026-31424

https://www.suse.com/security/cve/CVE-2026-31425

https://www.suse.com/security/cve/CVE-2026-31426

https://www.suse.com/security/cve/CVE-2026-31427

https://www.suse.com/security/cve/CVE-2026-31428

https://www.suse.com/security/cve/CVE-2026-31436

https://www.suse.com/security/cve/CVE-2026-31449

https://www.suse.com/security/cve/CVE-2026-31470

https://www.suse.com/security/cve/CVE-2026-31488

https://www.suse.com/security/cve/CVE-2026-31494

https://www.suse.com/security/cve/CVE-2026-31496

https://www.suse.com/security/cve/CVE-2026-31504

https://www.suse.com/security/cve/CVE-2026-31505

https://www.suse.com/security/cve/CVE-2026-31507

https://www.suse.com/security/cve/CVE-2026-31512

https://www.suse.com/security/cve/CVE-2026-31515

https://www.suse.com/security/cve/CVE-2026-31519

https://www.suse.com/security/cve/CVE-2026-31525

https://www.suse.com/security/cve/CVE-2026-31528

https://www.suse.com/security/cve/CVE-2026-31533

https://www.suse.com/security/cve/CVE-2026-31547

https://www.suse.com/security/cve/CVE-2026-31550

https://www.suse.com/security/cve/CVE-2026-31565

https://www.suse.com/security/cve/CVE-2026-31570

https://www.suse.com/security/cve/CVE-2026-31586

https://www.suse.com/security/cve/CVE-2026-31588

https://www.suse.com/security/cve/CVE-2026-31602

https://www.suse.com/security/cve/CVE-2026-31607

https://www.suse.com/security/cve/CVE-2026-31622

https://www.suse.com/security/cve/CVE-2026-31649

https://www.suse.com/security/cve/CVE-2026-31656

https://www.suse.com/security/cve/CVE-2026-31662

https://www.suse.com/security/cve/CVE-2026-31668

https://www.suse.com/security/cve/CVE-2026-31669

https://www.suse.com/security/cve/CVE-2026-31675

https://www.suse.com/security/cve/CVE-2026-31679

https://www.suse.com/security/cve/CVE-2026-31681

https://www.suse.com/security/cve/CVE-2026-31682

https://www.suse.com/security/cve/CVE-2026-31684

https://www.suse.com/security/cve/CVE-2026-31685

https://www.suse.com/security/cve/CVE-2026-31694

https://www.suse.com/security/cve/CVE-2026-31700

https://www.suse.com/security/cve/CVE-2026-31738

https://www.suse.com/security/cve/CVE-2026-31787

https://www.suse.com/security/cve/CVE-2026-43009

https://www.suse.com/security/cve/CVE-2026-43025

https://www.suse.com/security/cve/CVE-2026-43027

https://www.suse.com/security/cve/CVE-2026-43037

https://www.suse.com/security/cve/CVE-2026-43038

https://www.suse.com/security/cve/CVE-2026-43044

https://www.suse.com/security/cve/CVE-2026-43050

https://www.suse.com/security/cve/CVE-2026-43060

https://www.suse.com/security/cve/CVE-2026-43088

https://www.suse.com/security/cve/CVE-2026-43110

https://www.suse.com/security/cve/CVE-2026-43120

https://www.suse.com/security/cve/CVE-2026-43126

https://www.suse.com/security/cve/CVE-2026-43190

https://www.suse.com/security/cve/CVE-2026-43214

https://www.suse.com/security/cve/CVE-2026-43265

https://www.suse.com/security/cve/CVE-2026-43329

https://www.suse.com/security/cve/CVE-2026-43330

https://www.suse.com/security/cve/CVE-2026-43334

https://www.suse.com/security/cve/CVE-2026-43365

https://www.suse.com/security/cve/CVE-2026-43366

https://www.suse.com/security/cve/CVE-2026-43419

https://www.suse.com/security/cve/CVE-2026-43437

https://www.suse.com/security/cve/CVE-2026-43441

https://www.suse.com/security/cve/CVE-2026-43494

https://www.suse.com/security/cve/CVE-2026-43503

https://www.suse.com/security/cve/CVE-2026-46300

https://www.suse.com/security/cve/CVE-2026-46331

http://www.nessus.org/u?060701d8

Plugin Details

Severity: High

ID: 324048

File Name: suse_SU-2026-2238-1.nasl

Version: 1.1

Type: Local

Agent: unix

Published: 7/1/2026

Updated: 7/1/2026

Supported Sensors: Nessus Agent, Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.5

Percentile: 99.86

CVSS v2

Risk Factor: High

Base Score: 8.3

Temporal Score: 7.2

Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2026-23395

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 8.4

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

CVSS v4

Risk Factor: High

Base Score: 7.3

Threat Score: 7.3

Threat Vector: CVSS:4.0/E:A

Vector: CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CVSS Score Source: CVE-2025-54518

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:kernel-default-base, p-cpe:/a:novell:suse_linux:kernel-livepatch-6_4_0-150700_53_55-default, p-cpe:/a:novell:suse_linux:reiserfs-kmp-default, p-cpe:/a:novell:suse_linux:kernel-default-livepatch, p-cpe:/a:novell:suse_linux:kernel-zfcpdump, p-cpe:/a:novell:suse_linux:cluster-md-kmp-default, p-cpe:/a:novell:suse_linux:gfs2-kmp-default, p-cpe:/a:novell:suse_linux:kernel-default, p-cpe:/a:novell:suse_linux:kernel-obs-build, p-cpe:/a:novell:suse_linux:kernel-default-extra, p-cpe:/a:novell:suse_linux:ocfs2-kmp-default, p-cpe:/a:novell:suse_linux:kernel-azure, p-cpe:/a:novell:suse_linux:dlm-kmp-default, p-cpe:/a:novell:suse_linux:kernel-source, p-cpe:/a:novell:suse_linux:kernel-64kb, cpe:/o:novell:suse_linux:15

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 6/30/2026

Vulnerability Publication Date: 10/23/2025

Reference Information

CVE: CVE-2023-20585, CVE-2025-40219, CVE-2025-54518, CVE-2025-68310, CVE-2025-71183, CVE-2025-71238, CVE-2026-23168, CVE-2026-23209, CVE-2026-23236, CVE-2026-23237, CVE-2026-23239, CVE-2026-23240, CVE-2026-23245, CVE-2026-23246, CVE-2026-23253, CVE-2026-23260, CVE-2026-23261, CVE-2026-23262, CVE-2026-23264, CVE-2026-23266, CVE-2026-23268, CVE-2026-23269, CVE-2026-23271, CVE-2026-23273, CVE-2026-23276, CVE-2026-23279, CVE-2026-23290, CVE-2026-23291, CVE-2026-23298, CVE-2026-23300, CVE-2026-23304, CVE-2026-23306, CVE-2026-23307, CVE-2026-23308, CVE-2026-23312, CVE-2026-23313, CVE-2026-23315, CVE-2026-23318, CVE-2026-23321, CVE-2026-23324, CVE-2026-23325, CVE-2026-23335, CVE-2026-23336, CVE-2026-23339, CVE-2026-23340, CVE-2026-23343, CVE-2026-23346, CVE-2026-23351, CVE-2026-23354, CVE-2026-23357, CVE-2026-23362, CVE-2026-23363, CVE-2026-23365, CVE-2026-23367, CVE-2026-23368, CVE-2026-23370, CVE-2026-23372, CVE-2026-23373, CVE-2026-23374, CVE-2026-23378, CVE-2026-23382, CVE-2026-23383, CVE-2026-23391, CVE-2026-23392, CVE-2026-23393, CVE-2026-23395, CVE-2026-23396, CVE-2026-23397, CVE-2026-23399, CVE-2026-23403, CVE-2026-23404, CVE-2026-23405, CVE-2026-23406, CVE-2026-23407, CVE-2026-23408, CVE-2026-23409, CVE-2026-23410, CVE-2026-23411, CVE-2026-23412, CVE-2026-23418, CVE-2026-23419, CVE-2026-23420, CVE-2026-23426, CVE-2026-23434, CVE-2026-23440, CVE-2026-23441, CVE-2026-23442, CVE-2026-23443, CVE-2026-23445, CVE-2026-23446, CVE-2026-23447, CVE-2026-23448, CVE-2026-23449, CVE-2026-23450, CVE-2026-23452, CVE-2026-23454, CVE-2026-23455, CVE-2026-23456, CVE-2026-23457, CVE-2026-23458, CVE-2026-23460, CVE-2026-23461, CVE-2026-23462, CVE-2026-23463, CVE-2026-23465, CVE-2026-23466, CVE-2026-23468, CVE-2026-23470, CVE-2026-23472, CVE-2026-23474, CVE-2026-23475, CVE-2026-31389, CVE-2026-31392, CVE-2026-31393, CVE-2026-31394, CVE-2026-31395, CVE-2026-31400, CVE-2026-31402, CVE-2026-31403, CVE-2026-31404, CVE-2026-31405, CVE-2026-31407, CVE-2026-31408, CVE-2026-31411, CVE-2026-31412, CVE-2026-31415, CVE-2026-31416, CVE-2026-31417, CVE-2026-31420, CVE-2026-31421, CVE-2026-31422, CVE-2026-31423, CVE-2026-31424, CVE-2026-31425, CVE-2026-31426, CVE-2026-31427, CVE-2026-31428, CVE-2026-31436, CVE-2026-31449, CVE-2026-31470, CVE-2026-31488, CVE-2026-31494, CVE-2026-31496, CVE-2026-31504, CVE-2026-31505, CVE-2026-31507, CVE-2026-31512, CVE-2026-31515, CVE-2026-31519, CVE-2026-31525, CVE-2026-31528, CVE-2026-31533, CVE-2026-31547, CVE-2026-31550, CVE-2026-31565, CVE-2026-31570, CVE-2026-31586, CVE-2026-31588, CVE-2026-31602, CVE-2026-31607, CVE-2026-31622, CVE-2026-31649, CVE-2026-31656, CVE-2026-31662, CVE-2026-31668, CVE-2026-31669, CVE-2026-31675, CVE-2026-31679, CVE-2026-31681, CVE-2026-31682, CVE-2026-31684, CVE-2026-31685, CVE-2026-31694, CVE-2026-31700, CVE-2026-31738, CVE-2026-31787, CVE-2026-43009, CVE-2026-43025, CVE-2026-43027, CVE-2026-43037, CVE-2026-43038, CVE-2026-43044, CVE-2026-43050, CVE-2026-43060, CVE-2026-43088, CVE-2026-43110, CVE-2026-43120, CVE-2026-43126, CVE-2026-43190, CVE-2026-43214, CVE-2026-43265, CVE-2026-43329, CVE-2026-43330, CVE-2026-43334, CVE-2026-43365, CVE-2026-43366, CVE-2026-43419, CVE-2026-43437, CVE-2026-43441, CVE-2026-43494, CVE-2026-43503, CVE-2026-46300, CVE-2026-46331

SuSE: SUSE-SU-2026:2238-1