Security update for the Linux Kernel

Announcement ID:	SUSE-SU-2025:2588-1
Release Date:	2025-11-04T09:39:30Z
Rating:	important
References:	bsc#1206051 bsc#1221829 bsc#1233551 bsc#1234480 bsc#1234863 bsc#1236104 bsc#1236333 bsc#1238160 bsc#1239644 bsc#1242417 bsc#1244523 bsc#1245217 bsc#1245431 bsc#1246000 bsc#1246029 bsc#1246037 bsc#1246045 bsc#1246073 bsc#1246186 bsc#1246287 bsc#1246555
Cross-References:	CVE-2022-49138 CVE-2022-49770 CVE-2023-52923 CVE-2023-52927 CVE-2024-26643 CVE-2024-53057 CVE-2024-53164 CVE-2024-57947 CVE-2025-37797 CVE-2025-38079 CVE-2025-38181 CVE-2025-38200 CVE-2025-38206 CVE-2025-38212 CVE-2025-38213 CVE-2025-38257 CVE-2025-38289
CVSS scores:	CVE-2022-49138 ( SUSE ): 2.0 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N CVE-2022-49138 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L CVE-2022-49138 ( NVD ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-49770 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-52923 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2023-52923 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-52923 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-52927 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2023-52927 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2023-52927 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-26643 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2024-26643 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-53057 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-53057 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-53057 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-53164 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2024-53164 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-53164 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-57947 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2024-57947 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-57947 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-37797 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38079 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38079 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38181 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-38181 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-38200 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38200 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H CVE-2025-38206 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38206 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38212 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38212 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38213 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38213 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2025-38257 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38257 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38289 ( SUSE ): 8.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38289 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Products:	SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Live Patching 15-SP5 SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Real Time 15 SP5 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves 17 vulnerabilities and has four security fixes can now be installed.

Description:

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later.

Special Instructions and Notes:

• Please reboot the system after installing this update.

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Live Patching 15-SP5
  zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2025-2588=1

Package List:

• SUSE Linux Enterprise Live Patching 15-SP5 (nosrc)
  • kernel-default-5.14.21-150500.55.116.1
• SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x x86_64)
  • kernel-default-debuginfo-5.14.21-150500.55.116.1
  • kernel-default-livepatch-5.14.21-150500.55.116.1
  • kernel-default-livepatch-devel-5.14.21-150500.55.116.1
  • kernel-livepatch-5_14_21-150500_55_116-default-1-150500.11.3.1
  • kernel-default-debugsource-5.14.21-150500.55.116.1
  • kernel-livepatch-5_14_21-150500_55_116-default-debuginfo-1-150500.11.3.1
• SUSE Linux Enterprise Live Patching 15-SP5 (ppc64le s390x)
  • kernel-livepatch-SLE15-SP5_Update_29-debugsource-1-150500.11.3.1

References:

• https://www.suse.com/security/cve/CVE-2022-49138.html
• https://www.suse.com/security/cve/CVE-2022-49770.html
• https://www.suse.com/security/cve/CVE-2023-52923.html
• https://www.suse.com/security/cve/CVE-2023-52927.html
• https://www.suse.com/security/cve/CVE-2024-26643.html
• https://www.suse.com/security/cve/CVE-2024-53057.html
• https://www.suse.com/security/cve/CVE-2024-53164.html
• https://www.suse.com/security/cve/CVE-2024-57947.html
• https://www.suse.com/security/cve/CVE-2025-37797.html
• https://www.suse.com/security/cve/CVE-2025-38079.html
• https://www.suse.com/security/cve/CVE-2025-38181.html
• https://www.suse.com/security/cve/CVE-2025-38200.html
• https://www.suse.com/security/cve/CVE-2025-38206.html
• https://www.suse.com/security/cve/CVE-2025-38212.html
• https://www.suse.com/security/cve/CVE-2025-38213.html
• https://www.suse.com/security/cve/CVE-2025-38257.html
• https://www.suse.com/security/cve/CVE-2025-38289.html
• https://bugzilla.suse.com/show_bug.cgi?id=1206051
• https://bugzilla.suse.com/show_bug.cgi?id=1221829
• https://bugzilla.suse.com/show_bug.cgi?id=1233551
• https://bugzilla.suse.com/show_bug.cgi?id=1234480
• https://bugzilla.suse.com/show_bug.cgi?id=1234863
• https://bugzilla.suse.com/show_bug.cgi?id=1236104
• https://bugzilla.suse.com/show_bug.cgi?id=1236333
• https://bugzilla.suse.com/show_bug.cgi?id=1238160
• https://bugzilla.suse.com/show_bug.cgi?id=1239644
• https://bugzilla.suse.com/show_bug.cgi?id=1242417
• https://bugzilla.suse.com/show_bug.cgi?id=1244523
• https://bugzilla.suse.com/show_bug.cgi?id=1245217
• https://bugzilla.suse.com/show_bug.cgi?id=1245431
• https://bugzilla.suse.com/show_bug.cgi?id=1246000
• https://bugzilla.suse.com/show_bug.cgi?id=1246029
• https://bugzilla.suse.com/show_bug.cgi?id=1246037
• https://bugzilla.suse.com/show_bug.cgi?id=1246045
• https://bugzilla.suse.com/show_bug.cgi?id=1246073
• https://bugzilla.suse.com/show_bug.cgi?id=1246186
• https://bugzilla.suse.com/show_bug.cgi?id=1246287
• https://bugzilla.suse.com/show_bug.cgi?id=1246555