Upstream information

CVE-2026-6893 at MITRE

Description

A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by providing specially crafted DHCP (Dynamic Host Configuration Protocol) options, such as a malicious hostname, to a system using dracut's legacy DHCP path. These options are improperly handled and written into temporary shell scripts without proper escaping, leading to command injection. This allows the attacker to achieve root code execution within the initramfs, potentially compromising the system's boot and network behavior.

SUSE information

Overall state of this security issue: Pending

This issue is currently rated as having important severity.

CVSS v3 Scores
CVSS detail CNA (0b0ca135-0b70-47e7-9f44-1890c2a1c46c) CNA (Red Hat) SUSE
Base Score 7.5 7.5 8.8
Vector CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector Adjacent Network Adjacent Network Adjacent Network
Attack Complexity High High Low
Privileges Required None None None
User Interaction None None None
Scope Unchanged Unchanged Unchanged
Confidentiality Impact High High High
Integrity Impact High High High
Availability Impact High High High
CVSSv3 Version 3.1 3.1 3.1
CVSS v4 Scores
CVSS detail SUSE
Base Score 8.7
Vector CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Attack Vector Adjacent Network
Attack Complexity Low
Attack Requirements None
Privileges Required None
User Interaction None
Vulnerable System Confidentiality Impact High
Vulnerable System Integrity Impact High
Vulnerable System Availability Impact High
Subsequent System Confidentiality Impact None
Subsequent System Integrity Impact None
Subsequent System Availability Impact None
CVSSv4 Version 4.0
SUSE Bugzilla entry: 1268322 [NEW]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Container rancher/seedimage-builder:1.9.2-4.7
Image SLES-Azure-3P
Image SLES-Azure-Basic
Image SLES-Azure-Standard
Image SLES-BYOS-Azure
Image SLES-BYOS-EC2
Image SLES-BYOS-GCE
Image SLES-EC2
Image SLES-EC2-ECS
Image SLES-GCE
Image SLES-Hardened-BYOS-Azure
Image SLES-Hardened-BYOS-EC2
Image SLES-Hardened-BYOS-GCE
Image SLES-SAP-Azure
Image SLES-SAP-Azure-3P
Image SLES-SAP-BYOS-Azure
Image SLES-SAP-BYOS-EC2
Image SLES-SAP-BYOS-GCE
Image SLES-SAP-EC2
Image SLES-SAP-GCE
Image SLES-SAPCAL-Azure
Image SLES-SAPCAL-EC2
Image SLES-SAPCAL-GCE
  • dracut >= 059+suse.722.gdd9d67ff5-160000.1.1
Container suse/sl-micro/6.0/baremetal-os-container:2.1.3-6.196
Container suse/sl-micro/6.0/base-os-container:2.1.3-7.161
Container suse/sl-micro/6.0/kvm-os-container:2.1.3-6.175
Container suse/sl-micro/6.0/rt-os-container:2.1.3-7.192
  • dracut >= 059+suse.609.g1a2492e-1.1
Container suse/sl-micro/6.1/baremetal-os-container:2.2.1-7.127
Container suse/sl-micro/6.1/base-os-container:2.2.1-5.147
Container suse/sl-micro/6.1/kvm-os-container:2.2.1-5.146
Container suse/sl-micro/6.1/rt-os-container:2.2.1-5.142
  • dracut >= 059+suse.643.g1f1d880-slfo.1.1_1.1
Container suse/sle-micro-rancher/5.3:latest
Container suse/sle-micro-rancher/5.4:5.4.4.5.140
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Container suse/sle-micro/5.5:2.0.4-5.8.46
Container suse/sle-micro/base-5.5:2.0.4-5.8.290
Image SLES15-SP5-SAPCAL-Azure
Image SLES15-SP5-SAPCAL-EC2
Image SLES15-SP5-SAPCAL-GCE
  • dracut >= 055+suse.402.g2720eea-150500.3.41.1
Image SLES15-SP4-CHOST-BYOS
Image SLES15-SP4-CHOST-BYOS-Aliyun
Image SLES15-SP4-CHOST-BYOS-Azure
Image SLES15-SP4-CHOST-BYOS-EC2
Image SLES15-SP4-CHOST-BYOS-GCE
Image SLES15-SP4-CHOST-BYOS-SAP-CCloud
Image SLES15-SP4-SAP
Image SLES15-SP4-SAP-Azure
Image SLES15-SP4-SAP-EC2
Image SLES15-SP4-SAP-GCE
Image SLES15-SP4-SAPCAL
Image SLES15-SP4-SAPCAL-Azure
Image SLES15-SP4-SAPCAL-EC2
Image SLES15-SP4-SAPCAL-GCE
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
SUSE Liberty Linux 10
  • dracut >= 107-7.el10_2
  • dracut-caps >= 107-7.el10_2
  • dracut-config-generic >= 107-7.el10_2
  • dracut-config-rescue >= 107-7.el10_2
  • dracut-live >= 107-7.el10_2
  • dracut-network >= 107-7.el10_2
  • dracut-squash >= 107-7.el10_2
  • dracut-tools >= 107-7.el10_2
Patchnames:
RHSA-2026:26532
SUSE Liberty Linux 8
  • dracut >= 049-244.git20260529.el8_10
  • dracut-caps >= 049-244.git20260529.el8_10
  • dracut-config-generic >= 049-244.git20260529.el8_10
  • dracut-config-rescue >= 049-244.git20260529.el8_10
  • dracut-live >= 049-244.git20260529.el8_10
  • dracut-network >= 049-244.git20260529.el8_10
  • dracut-squash >= 049-244.git20260529.el8_10
  • dracut-tools >= 049-244.git20260529.el8_10
Patchnames:
RHSA-2026:26534
SUSE Liberty Linux 9
  • dracut >= 057-115.git20260527.el9_8
  • dracut-caps >= 057-115.git20260527.el9_8
  • dracut-config-generic >= 057-115.git20260527.el9_8
  • dracut-config-rescue >= 057-115.git20260527.el9_8
  • dracut-live >= 057-115.git20260527.el9_8
  • dracut-network >= 057-115.git20260527.el9_8
  • dracut-squash >= 057-115.git20260527.el9_8
  • dracut-tools >= 057-115.git20260527.el9_8
Patchnames:
RHSA-2026:26533
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-ima >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2720
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-ima >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2720
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
  • dracut >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-fips >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-ima >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-mkinitrd-deprecated >= 055+suse.402.g2720eea-150500.3.41.1
Patchnames:
SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2721
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
  • dracut >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-fips >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-ima >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-mkinitrd-deprecated >= 055+suse.402.g2720eea-150500.3.41.1
Patchnames:
SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2721
SUSE Linux Enterprise Micro 5.3
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Micro-5.3-2026-2720
SUSE Linux Enterprise Micro 5.4
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Micro-5.4-2026-2720
SUSE Linux Enterprise Micro 5.5
  • dracut >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-fips >= 055+suse.402.g2720eea-150500.3.41.1
Patchnames:
SUSE-SLE-Micro-5.5-2026-2721
SUSE Linux Enterprise Server 15 SP4-LTSS
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-ima >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2720
SUSE Linux Enterprise Server 15 SP5-LTSS
  • dracut >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-fips >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-ima >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-mkinitrd-deprecated >= 055+suse.402.g2720eea-150500.3.41.1
Patchnames:
SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2721
SUSE Linux Enterprise Server 16.0
SUSE Linux Enterprise Server for SAP applications 16.0
  • dracut >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-extra >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-fips >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-ima >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-tools >= 059+suse.722.gdd9d67ff5-160000.1.1
Patchnames:
SUSE-SLES-16.0-1067
SUSE Linux Enterprise Server for SAP Applications 15 SP4
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-ima >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2720
SUSE Linux Enterprise Server for SAP Applications 15 SP5
  • dracut >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-fips >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-ima >= 055+suse.402.g2720eea-150500.3.41.1
  • dracut-mkinitrd-deprecated >= 055+suse.402.g2720eea-150500.3.41.1
Patchnames:
SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2721
SUSE Linux Micro 6.0
  • dracut >= 059+suse.609.g1a2492e-1.1
  • dracut-fips >= 059+suse.609.g1a2492e-1.1
Patchnames:
SUSE-SLE-Micro-6.0-772
SUSE Linux Micro 6.1
  • dracut >= 059+suse.643.g1f1d880-slfo.1.1_1.1
  • dracut-fips >= 059+suse.643.g1f1d880-slfo.1.1_1.1
Patchnames:
SUSE-SLE-Micro-6.1-596
SUSE Linux Micro 6.2
  • dracut >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-fips >= 059+suse.722.gdd9d67ff5-160000.1.1
Patchnames:
SUSE-SL-Micro-6.2-1067
SUSE Manager Proxy LTS 4.3
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-ima >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-LTS-2026-2720
SUSE Manager Retail Branch Server LTS 4.3
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-ima >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.3-LTS-2026-2720
SUSE Manager Server LTS 4.3
  • dracut >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-fips >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-ima >= 055+suse.365.g79144c5-150400.3.49.1
  • dracut-mkinitrd-deprecated >= 055+suse.365.g79144c5-150400.3.49.1
Patchnames:
SUSE-SLE-Product-SUSE-Manager-Server-4.3-LTS-2026-2720
openSUSE Leap 16.0
  • dracut >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-extra >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-fips >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-ima >= 059+suse.722.gdd9d67ff5-160000.1.1
  • dracut-tools >= 059+suse.722.gdd9d67ff5-160000.1.1
Patchnames:
openSUSE-Leap-16.0-1067
openSUSE Tumbleweed
  • dracut >= 110+suse.35.g9834432-1.1
  • dracut-extra >= 110+suse.35.g9834432-1.1
  • dracut-fips >= 110+suse.35.g9834432-1.1
  • dracut-ima >= 110+suse.35.g9834432-1.1
  • dracut-tools >= 110+suse.35.g9834432-1.1
Patchnames:
openSUSE-Tumbleweed-2026-11076

List of packages in QA

Product(s) Package(s)
SUSE Linux Enterprise High Availability Extension 15 SP6
  • dracut-mkinitrd-deprecated >= 059+suse.565.g682306ec5-150600.3.29.1
SUSE Linux Enterprise High Availability Extension 15 SP7
  • dracut-mkinitrd-deprecated >= 059+suse.570.g2b84048d7-150700.3.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP7
  • dracut >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-fips >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-ima >= 059+suse.570.g2b84048d7-150700.3.17.1
SUSE Linux Enterprise Server 15 SP7
  • dracut >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-fips >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-ima >= 059+suse.570.g2b84048d7-150700.3.17.1
SUSE Linux Enterprise Desktop 15 SP7
  • dracut >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-fips >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-ima >= 059+suse.570.g2b84048d7-150700.3.17.1
SUSE Linux Enterprise Server for SAP Applications 15 SP7
  • dracut >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-fips >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-ima >= 059+suse.570.g2b84048d7-150700.3.17.1
SUSE Linux Enterprise High Performance Computing 15 SP7
  • dracut >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-fips >= 059+suse.570.g2b84048d7-150700.3.17.1
  • dracut-ima >= 059+suse.570.g2b84048d7-150700.3.17.1
SUSE Linux Enterprise Server 15 SP6-LTSS
  • dracut >= 059+suse.565.g682306ec5-150600.3.29.1
  • dracut-fips >= 059+suse.565.g682306ec5-150600.3.29.1
  • dracut-ima >= 059+suse.565.g682306ec5-150600.3.29.1
SUSE Linux Enterprise Server 15 SP6-LTSS
  • dracut >= 059+suse.565.g682306ec5-150600.3.29.1
  • dracut-fips >= 059+suse.565.g682306ec5-150600.3.29.1
  • dracut-ima >= 059+suse.565.g682306ec5-150600.3.29.1
SUSE Linux Enterprise Server for SAP Applications 15 SP6
  • dracut >= 059+suse.565.g682306ec5-150600.3.29.1
  • dracut-fips >= 059+suse.565.g682306ec5-150600.3.29.1
  • dracut-ima >= 059+suse.565.g682306ec5-150600.3.29.1


First public cloud image revisions this CVE is fixed in:


Status of this issue by product and package

Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

Product(s) Source package State
Products under general support and receiving all security fixes.
SLES15-SP5-CHOST-BYOS-SAP-CCloud dracut In progress
SLES15-SP6-CHOST-BYOS dracut Affected
SLES15-SP6-CHOST-BYOS-Aliyun dracut Affected
SLES15-SP6-CHOST-BYOS-Azure dracut Affected
SLES15-SP6-CHOST-BYOS-EC2 dracut Affected
SLES15-SP6-CHOST-BYOS-GCE dracut Affected
SLES15-SP6-CHOST-BYOS-GDC dracut Affected
SLES15-SP6-CHOST-BYOS-SAP-CCloud dracut Affected
SLES15-SP7-CHOST-BYOS-Aliyun dracut Affected
SLES15-SP7-CHOST-BYOS-Azure dracut Affected
SLES15-SP7-CHOST-BYOS-EC2 dracut Affected
SLES15-SP7-CHOST-BYOS-GCE dracut Affected
SLES15-SP7-CHOST-BYOS-GDC dracut Affected
SLES15-SP7-CHOST-BYOS-SAP-CCloud dracut Affected
SUSE Linux Enterprise Desktop 15 SP7 dracut In progress
SUSE Linux Enterprise High Availability Extension 15 SP7 dracut In progress
SUSE Linux Enterprise High Performance Computing 15 SP7 dracut In progress
SUSE Linux Enterprise Micro 5.3 dracut Released
SUSE Linux Enterprise Micro 5.4 dracut Released
SUSE Linux Enterprise Micro 5.5 dracut Released
SUSE Linux Enterprise Micro for Rancher 5.3 dracut Released
SUSE Linux Enterprise Micro for Rancher 5.4 dracut Released
SUSE Linux Enterprise Module for Basesystem 15 SP7 dracut In progress
SUSE Linux Enterprise Server 15 SP7 dracut In progress
SUSE Linux Enterprise Server 16.0 dracut Released
SUSE Linux Enterprise Server 16.1 dracut Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP7 dracut In progress
SUSE Linux Enterprise Server for SAP applications 16.0 dracut Released
SUSE Linux Enterprise Server for SAP applications 16.1 dracut Affected
SUSE Linux Micro 6.0 dracut Released
SUSE Linux Micro 6.1 dracut Released
SUSE Linux Micro 6.2 dracut Released
openSUSE Leap 16.0 dracut Affected
Products under Long Term Service Pack support and receiving important and critical security fixes.
SLES15-SP3-CHOST-BYOS-Aliyun dracut Affected
SLES15-SP3-CHOST-BYOS-Azure dracut Affected
SLES15-SP3-CHOST-BYOS-EC2 dracut Affected
SLES15-SP3-CHOST-BYOS-GCE dracut Affected
SLES15-SP3-CHOST-BYOS-SAP-CCloud dracut Affected
SLES15-SP4-CHOST-BYOS dracut Released
SLES15-SP4-CHOST-BYOS-Aliyun dracut Released
SLES15-SP4-CHOST-BYOS-Azure dracut Released
SLES15-SP4-CHOST-BYOS-EC2 dracut Released
SLES15-SP4-CHOST-BYOS-GCE dracut Released
SLES15-SP4-CHOST-BYOS-SAP-CCloud dracut Released
SLES15-SP5-CHOST-BYOS-Aliyun dracut In progress
SLES15-SP5-CHOST-BYOS-Azure dracut In progress
SLES15-SP5-CHOST-BYOS-EC2 dracut In progress
SLES15-SP5-CHOST-BYOS-GCE dracut In progress
SLES15-SP5-CHOST-BYOS-GDC dracut In progress
SUSE Linux Enterprise High Performance Computing 15 SP4 dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS dracut Released
SUSE Linux Enterprise High Performance Computing 15 SP5 dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS dracut Released
SUSE Linux Enterprise Module for Basesystem 15 SP4 dracut Affected
SUSE Linux Enterprise Module for Basesystem 15 SP5 dracut Affected
SUSE Linux Enterprise Module for Basesystem 15 SP6 dracut Affected
SUSE Linux Enterprise Server 12 SP5 dracut Not affected
SUSE Linux Enterprise Server 12 SP5-LTSS dracut Not affected
SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security dracut Not affected
SUSE Linux Enterprise Server 15 SP4 dracut Affected
SUSE Linux Enterprise Server 15 SP4-LTSS dracut Released
SUSE Linux Enterprise Server 15 SP5 dracut Affected
SUSE Linux Enterprise Server 15 SP5-LTSS dracut Released
SUSE Linux Enterprise Server 15 SP6 dracut Affected
SUSE Linux Enterprise Server 15 SP6-LTSS dracut In progress
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 dracut Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP6 dracut In progress
SUSE Manager Proxy 4.3 dracut Affected
SUSE Manager Proxy LTS 4.3 dracut Released
SUSE Manager Retail Branch Server 4.3 dracut Affected
SUSE Manager Retail Branch Server LTS 4.3 dracut Released
SUSE Manager Server 4.3 dracut Affected
SUSE Manager Server LTS 4.3 dracut Released
Products past their end of life and not receiving proactive updates anymore.
HPE Helion OpenStack 8 dracut Not affected
SUSE CaaS Platform 3.0 dracut Not affected
SUSE CaaS Platform 4.0 dracut Not affected
SUSE Enterprise Storage 6 dracut Not affected
SUSE Enterprise Storage 7 dracut Affected
SUSE Enterprise Storage 7.1 dracut Affected
SUSE Linux Enterprise Desktop 12 SP3 dracut Not affected
SUSE Linux Enterprise Desktop 12 SP4 dracut Unsupported
SUSE Linux Enterprise Desktop 15 dracut Not affected
SUSE Linux Enterprise Desktop 15 SP1 dracut Not affected
SUSE Linux Enterprise Desktop 15 SP2 dracut Affected
SUSE Linux Enterprise Desktop 15 SP3 dracut Affected
SUSE Linux Enterprise Desktop 15 SP4 dracut Affected
SUSE Linux Enterprise Desktop 15 SP5 dracut Affected
SUSE Linux Enterprise Desktop 15 SP6 dracut Affected
SUSE Linux Enterprise High Availability Extension 15 SP6 dracut In progress
SUSE Linux Enterprise High Performance Computing 15 dracut Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1 dracut Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS dracut Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS dracut Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2 dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP3 dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS dracut Affected
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS dracut Released
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS dracut Released
SUSE Linux Enterprise High Performance Computing 15 SP6 dracut Affected
SUSE Linux Enterprise High Performance Computing 15-ESPOS dracut Not affected
SUSE Linux Enterprise High Performance Computing 15-LTSS dracut Not affected
SUSE Linux Enterprise Micro 5.1 dracut Affected
SUSE Linux Enterprise Micro 5.2 dracut Affected
SUSE Linux Enterprise Module for Basesystem 15 dracut Not affected
SUSE Linux Enterprise Module for Basesystem 15 SP1 dracut Not affected
SUSE Linux Enterprise Module for Basesystem 15 SP2 dracut Affected
SUSE Linux Enterprise Module for Basesystem 15 SP3 dracut Affected
SUSE Linux Enterprise Real Time 15 SP2 dracut Affected
SUSE Linux Enterprise Real Time 15 SP3 dracut Affected
SUSE Linux Enterprise Real Time 15 SP4 dracut Affected
SUSE Linux Enterprise Server 12 SP3 dracut Not affected
SUSE Linux Enterprise Server 12 SP3-BCL dracut Not affected
SUSE Linux Enterprise Server 12 SP3-ESPOS dracut Not affected
SUSE Linux Enterprise Server 12 SP3-LTSS dracut Not affected
SUSE Linux Enterprise Server 12 SP4 dracut Unsupported
SUSE Linux Enterprise Server 12 SP4-ESPOS dracut Unsupported
SUSE Linux Enterprise Server 12 SP4-LTSS dracut Unsupported
SUSE Linux Enterprise Server 15 dracut Not affected
SUSE Linux Enterprise Server 15 SP1 dracut Not affected
SUSE Linux Enterprise Server 15 SP1-BCL dracut Not affected
SUSE Linux Enterprise Server 15 SP1-LTSS dracut Not affected
SUSE Linux Enterprise Server 15 SP2 dracut Affected
SUSE Linux Enterprise Server 15 SP2-BCL dracut Affected
SUSE Linux Enterprise Server 15 SP2-LTSS dracut Affected
SUSE Linux Enterprise Server 15 SP3 dracut Affected
SUSE Linux Enterprise Server 15 SP3-BCL dracut Affected
SUSE Linux Enterprise Server 15 SP3-LTSS dracut Affected
SUSE Linux Enterprise Server 15-LTSS dracut Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP3 dracut Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP4 dracut Unsupported
SUSE Linux Enterprise Server for SAP Applications 15 dracut Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP1 dracut Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP2 dracut Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP3 dracut Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP4 dracut Released
SUSE Linux Enterprise Server for SAP Applications 15 SP5 dracut Released
SUSE Manager Proxy 4.0 dracut Not affected
SUSE Manager Proxy 4.1 dracut Affected
SUSE Manager Proxy 4.2 dracut Affected
SUSE Manager Retail Branch Server 4.0 dracut Not affected
SUSE Manager Retail Branch Server 4.1 dracut Affected
SUSE Manager Retail Branch Server 4.2 dracut Affected
SUSE Manager Server 4.0 dracut Not affected
SUSE Manager Server 4.1 dracut Affected
SUSE Manager Server 4.2 dracut Affected
SUSE OpenStack Cloud 8 dracut Not affected
SUSE OpenStack Cloud 9 dracut Unsupported
SUSE OpenStack Cloud Crowbar 8 dracut Not affected
SUSE OpenStack Cloud Crowbar 9 dracut Unsupported
openSUSE Leap 15.3 dracut Affected
openSUSE Leap 15.4 dracut Released
openSUSE Leap 15.5 dracut Released
openSUSE Leap 15.6 dracut Affected
openSUSE Leap Micro 5.2 dracut Affected
openSUSE Leap Micro 5.3 dracut Affected
openSUSE Leap Micro 5.4 dracut Affected
openSUSE Leap Micro 5.5 dracut Affected
Products at an unknown state of their lifecycle.
SLES-CHOST-BYOS-Aliyun dracut Affected
SLES-CHOST-BYOS-Azure dracut Affected
SLES-CHOST-BYOS-EC2 dracut Affected
SLES-CHOST-BYOS-GCE dracut Affected
SLES-CHOST-BYOS-GDC dracut Affected
SLES-CHOST-BYOS-SAP-CCloud dracut Affected
Container Status
kiwi-templates-Minimal
kiwi-templates-Minimal-Cloud-sap
kiwi-templates-Minimal-MS-HyperV-sap
kiwi-templates-Minimal-VMware-sap
kiwi-templates-Minimal-kvm-and-xen-sap
rancher/seedimage-builder
suse/hpc/warewulf4-x86_64/sle-hpc-node
suse/sle-micro-rancher/5.2
suse/sles/15.3/libguestfs-tools:0.45.0
suse/sles/15.6/libguestfs-tools:1.1.1
suse/sles/15.7/libguestfs-tools:1.5.0
dracutAffected
suse/sle-micro-rancher/5.3
suse/sle-micro-rancher/5.4
suse/sle-micro/5.5
suse/sle-micro/base-5.5
dracutReleased
rancher/elemental-teal-rt/5.3
rancher/elemental-teal-rt/5.4
rancher/elemental-teal/5.3
rancher/elemental-teal/5.4
suse/sles/15.4/libguestfs-tools:0.49.0
suse/sles/15.5/libguestfs-tools:0.58.0
dracutIn progress


SUSE Timeline for this CVE

CVE page created: Wed Jun 10 22:05:26 2026
CVE page last modified: Tue Jul 7 11:24:39 2026