Security update for the Linux Kernel

Announcement ID:	SUSE-SU-2026:0496-1
Release Date:	2026-02-13T10:52:19Z
Rating:	important
References:	bsc#1220137 bsc#1220144 bsc#1222323 bsc#1223007 bsc#1225049 bsc#1233038 bsc#1235905 bsc#1236104 bsc#1236208 bsc#1237885 bsc#1237906 bsc#1238414 bsc#1238754 bsc#1238763 bsc#1244758 bsc#1244904 bsc#1245110 bsc#1245210 bsc#1245723 bsc#1245751 bsc#1247177 bsc#1247483 bsc#1248306 bsc#1248377 bsc#1249156 bsc#1249158 bsc#1249827 bsc#1252785 bsc#1253028 bsc#1253087 bsc#1253409 bsc#1253702 bsc#1254447 bsc#1254462 bsc#1254463 bsc#1254464 bsc#1254465 bsc#1254767 bsc#1254842 bsc#1255171 bsc#1255251 bsc#1255377 bsc#1255401 bsc#1255594 bsc#1255908 bsc#1256095 bsc#1256582 bsc#1256612 bsc#1256623 bsc#1256641 bsc#1256726 bsc#1256744 bsc#1256779 bsc#1256792 bsc#1257232 bsc#1257236 bsc#1257296 bsc#1257473
Cross-References:	CVE-2022-49604 CVE-2022-49943 CVE-2022-49980 CVE-2022-50232 CVE-2022-50697 CVE-2023-52433 CVE-2023-52874 CVE-2023-52923 CVE-2023-53178 CVE-2023-53407 CVE-2023-53412 CVE-2023-53417 CVE-2023-53418 CVE-2023-53714 CVE-2023-54142 CVE-2023-54243 CVE-2024-26581 CVE-2024-26661 CVE-2024-26832 CVE-2024-50143 CVE-2024-54031 CVE-2025-21658 CVE-2025-21760 CVE-2025-21764 CVE-2025-21765 CVE-2025-21766 CVE-2025-38068 CVE-2025-38129 CVE-2025-38159 CVE-2025-38375 CVE-2025-38563 CVE-2025-38565 CVE-2025-38684 CVE-2025-40044 CVE-2025-40139 CVE-2025-40257 CVE-2025-40300 CVE-2025-68183 CVE-2025-68284 CVE-2025-68285 CVE-2025-68312 CVE-2025-68771 CVE-2025-68813 CVE-2025-71085 CVE-2025-71089 CVE-2025-71112 CVE-2025-71116 CVE-2025-71120 CVE-2026-22999 CVE-2026-23001
CVSS scores:	CVE-2022-49604 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-49604 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-49604 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-49943 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N CVE-2022-49943 ( SUSE ): 5.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H CVE-2022-49943 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-49980 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2022-49980 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-49980 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-50232 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-50232 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-50697 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2022-50697 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2023-52433 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2023-52433 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2023-52874 ( SUSE ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N CVE-2023-52874 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2023-52923 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2023-52923 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-52923 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53178 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53178 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53407 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2023-53407 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53407 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53407 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53412 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2023-53412 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53412 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53417 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2023-53417 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53417 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53417 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53418 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53418 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-53714 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2023-53714 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2023-54142 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2023-54142 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2023-54243 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N CVE-2023-54243 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H CVE-2024-26581 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2024-26581 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-26581 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-26661 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-26661 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-26832 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-26832 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-50143 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N CVE-2024-50143 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H CVE-2024-50143 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-50143 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2024-54031 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2024-54031 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-54031 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21658 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-21658 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21658 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21658 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21760 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21760 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-21764 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21764 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-21765 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21765 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21766 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-21766 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-38068 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N CVE-2025-38068 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H CVE-2025-38068 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38129 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38129 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38129 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38159 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38159 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38159 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2025-38375 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-38375 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38375 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38563 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H CVE-2025-38563 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38565 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2025-38565 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2025-38565 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-38684 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-38684 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-40044 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-40044 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2025-40139 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-40139 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-40257 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-40300 ( SUSE ): 8.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N CVE-2025-40300 ( SUSE ): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2025-40300 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-68183 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N CVE-2025-68183 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H CVE-2025-68284 ( SUSE ): 7.0 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-68284 ( SUSE ): 7.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H CVE-2025-68285 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-68285 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-68312 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-68312 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-68771 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-68771 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2025-68813 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-68813 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-71085 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-71085 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-71089 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-71089 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-71112 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-71112 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2025-71116 ( SUSE ): 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-71116 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2025-71120 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-71120 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-22999 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2026-22999 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2026-23001 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2026-23001 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:	openSUSE Leap 15.5 SUSE Linux Enterprise Micro 5.5

An update that solves 50 vulnerabilities and has eight security fixes can now be installed.

Description:

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues

The following security issues were fixed:

• CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit (bsc#1255594).
• CVE-2023-54142: gtp: Fix use-after-free in __gtp_encap_destroy() (bsc#1256095).
• CVE-2023-54243: netfilter: ebtables: fix table blob use-after-free (bsc#1255908).
• CVE-2025-38068: crypto: lzo - Fix compression buffer overrun (bsc#1245210).
• CVE-2025-38129: page_pool: fix inconsistency for page_pool_ring_lock() (bsc#1245723).
• CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds (bsc#1245751).
• CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size (bsc#1247177).
• CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
• CVE-2025-40300: Documentation/hw-vuln: Add VMSCAPE documentation (bsc#1247483).
• CVE-2025-68183: ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattr (bsc#1255251).
• CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
• CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
• CVE-2025-68312: usbnet: Prevents free active kevent (bsc#1255171).
• CVE-2025-68771: ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582).
• CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path (bsc#1256641).
• CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623).
• CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
• CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
• CVE-2025-71116: libceph: make decode_pool() more resilient against corrupted osdmaps (bsc#1256744).
• CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256779).
• CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236).
• CVE-2026-23001: macvlan: fix possible UAF in macvlan_forward_source() (bsc#1257232).
• CVE-2023-53215: sched/fair: Don't balance task to its current running CPU (bsc#1250397).
• CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).

The following non security issues were fixed:

• Revert "ocfs2: fix kernel BUG in ocfs2_find_victim_chain (bsc#1256582)".
• mm, page_alloc, thp: prevent reclaim for __GFP_THISNODE THP allocations (bsc#1253087 bsc#1254447).
• net: hv_netvsc: reject RSS hash key programming without RX indirection table (bsc#1257473).
• net: tcp: allow zero-window ACK update the window (bsc#1254767).
• net: tcp: send zero-window ACK when no memory (bsc#1254767).
• scsi: storvsc: Process unsupported MODE_SENSE_10 (bsc#1257296).
• tcp: correct handling of extreme memory squeeze (bsc#1254767).
• x86: make page fault handling disable interrupts properly (git-fixes).

Special Instructions and Notes:

• Please reboot the system after installing this update.

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• openSUSE Leap 15.5
  zypper in -t patch SUSE-2026-496=1
• SUSE Linux Enterprise Micro 5.5
  zypper in -t patch SUSE-SLE-Micro-5.5-2026-496=1

Package List:

• openSUSE Leap 15.5 (noarch)
  • kernel-source-rt-5.14.21-150500.13.121.1
  • kernel-devel-rt-5.14.21-150500.13.121.1
• openSUSE Leap 15.5 (x86_64)
  • kernel-rt-livepatch-devel-5.14.21-150500.13.121.1
  • ocfs2-kmp-rt-5.14.21-150500.13.121.1
  • dlm-kmp-rt-debuginfo-5.14.21-150500.13.121.1
  • dlm-kmp-rt-5.14.21-150500.13.121.1
  • cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt-extra-5.14.21-150500.13.121.1
  • reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt-devel-debuginfo-5.14.21-150500.13.121.1
  • kselftests-kmp-rt-5.14.21-150500.13.121.1
  • kernel-rt_debug-debugsource-5.14.21-150500.13.121.1
  • kernel-rt_debug-devel-5.14.21-150500.13.121.1
  • kselftests-kmp-rt-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt-extra-debuginfo-5.14.21-150500.13.121.1
  • cluster-md-kmp-rt-5.14.21-150500.13.121.1
  • kernel-rt_debug-debuginfo-5.14.21-150500.13.121.1
  • gfs2-kmp-rt-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt-debugsource-5.14.21-150500.13.121.1
  • kernel-rt-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt_debug-vdso-5.14.21-150500.13.121.1
  • gfs2-kmp-rt-5.14.21-150500.13.121.1
  • kernel-rt-optional-5.14.21-150500.13.121.1
  • ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.121.1
  • kernel-syms-rt-5.14.21-150500.13.121.1
  • kernel-rt-devel-5.14.21-150500.13.121.1
  • kernel-rt-optional-debuginfo-5.14.21-150500.13.121.1
  • reiserfs-kmp-rt-5.14.21-150500.13.121.1
  • kernel-rt-vdso-5.14.21-150500.13.121.1
  • kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt-vdso-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt-livepatch-5.14.21-150500.13.121.1
• openSUSE Leap 15.5 (nosrc x86_64)
  • kernel-rt_debug-5.14.21-150500.13.121.1
  • kernel-rt-5.14.21-150500.13.121.1
• SUSE Linux Enterprise Micro 5.5 (noarch)
  • kernel-source-rt-5.14.21-150500.13.121.1
  • kernel-devel-rt-5.14.21-150500.13.121.1
• SUSE Linux Enterprise Micro 5.5 (nosrc x86_64)
  • kernel-rt-5.14.21-150500.13.121.1
• SUSE Linux Enterprise Micro 5.5 (x86_64)
  • kernel-rt-debuginfo-5.14.21-150500.13.121.1
  • kernel-rt-debugsource-5.14.21-150500.13.121.1

References:

• https://www.suse.com/security/cve/CVE-2022-49604.html
• https://www.suse.com/security/cve/CVE-2022-49943.html
• https://www.suse.com/security/cve/CVE-2022-49980.html
• https://www.suse.com/security/cve/CVE-2022-50232.html
• https://www.suse.com/security/cve/CVE-2022-50697.html
• https://www.suse.com/security/cve/CVE-2023-52433.html
• https://www.suse.com/security/cve/CVE-2023-52874.html
• https://www.suse.com/security/cve/CVE-2023-52923.html
• https://www.suse.com/security/cve/CVE-2023-53178.html
• https://www.suse.com/security/cve/CVE-2023-53407.html
• https://www.suse.com/security/cve/CVE-2023-53412.html
• https://www.suse.com/security/cve/CVE-2023-53417.html
• https://www.suse.com/security/cve/CVE-2023-53418.html
• https://www.suse.com/security/cve/CVE-2023-53714.html
• https://www.suse.com/security/cve/CVE-2023-54142.html
• https://www.suse.com/security/cve/CVE-2023-54243.html
• https://www.suse.com/security/cve/CVE-2024-26581.html
• https://www.suse.com/security/cve/CVE-2024-26661.html
• https://www.suse.com/security/cve/CVE-2024-26832.html
• https://www.suse.com/security/cve/CVE-2024-50143.html
• https://www.suse.com/security/cve/CVE-2024-54031.html
• https://www.suse.com/security/cve/CVE-2025-21658.html
• https://www.suse.com/security/cve/CVE-2025-21760.html
• https://www.suse.com/security/cve/CVE-2025-21764.html
• https://www.suse.com/security/cve/CVE-2025-21765.html
• https://www.suse.com/security/cve/CVE-2025-21766.html
• https://www.suse.com/security/cve/CVE-2025-38068.html
• https://www.suse.com/security/cve/CVE-2025-38129.html
• https://www.suse.com/security/cve/CVE-2025-38159.html
• https://www.suse.com/security/cve/CVE-2025-38375.html
• https://www.suse.com/security/cve/CVE-2025-38563.html
• https://www.suse.com/security/cve/CVE-2025-38565.html
• https://www.suse.com/security/cve/CVE-2025-38684.html
• https://www.suse.com/security/cve/CVE-2025-40044.html
• https://www.suse.com/security/cve/CVE-2025-40139.html
• https://www.suse.com/security/cve/CVE-2025-40257.html
• https://www.suse.com/security/cve/CVE-2025-40300.html
• https://www.suse.com/security/cve/CVE-2025-68183.html
• https://www.suse.com/security/cve/CVE-2025-68284.html
• https://www.suse.com/security/cve/CVE-2025-68285.html
• https://www.suse.com/security/cve/CVE-2025-68312.html
• https://www.suse.com/security/cve/CVE-2025-68771.html
• https://www.suse.com/security/cve/CVE-2025-68813.html
• https://www.suse.com/security/cve/CVE-2025-71085.html
• https://www.suse.com/security/cve/CVE-2025-71089.html
• https://www.suse.com/security/cve/CVE-2025-71112.html
• https://www.suse.com/security/cve/CVE-2025-71116.html
• https://www.suse.com/security/cve/CVE-2025-71120.html
• https://www.suse.com/security/cve/CVE-2026-22999.html
• https://www.suse.com/security/cve/CVE-2026-23001.html
• https://bugzilla.suse.com/show_bug.cgi?id=1220137
• https://bugzilla.suse.com/show_bug.cgi?id=1220144
• https://bugzilla.suse.com/show_bug.cgi?id=1222323
• https://bugzilla.suse.com/show_bug.cgi?id=1223007
• https://bugzilla.suse.com/show_bug.cgi?id=1225049
• https://bugzilla.suse.com/show_bug.cgi?id=1233038
• https://bugzilla.suse.com/show_bug.cgi?id=1235905
• https://bugzilla.suse.com/show_bug.cgi?id=1236104
• https://bugzilla.suse.com/show_bug.cgi?id=1236208
• https://bugzilla.suse.com/show_bug.cgi?id=1237885
• https://bugzilla.suse.com/show_bug.cgi?id=1237906
• https://bugzilla.suse.com/show_bug.cgi?id=1238414
• https://bugzilla.suse.com/show_bug.cgi?id=1238754
• https://bugzilla.suse.com/show_bug.cgi?id=1238763
• https://bugzilla.suse.com/show_bug.cgi?id=1244758
• https://bugzilla.suse.com/show_bug.cgi?id=1244904
• https://bugzilla.suse.com/show_bug.cgi?id=1245110
• https://bugzilla.suse.com/show_bug.cgi?id=1245210
• https://bugzilla.suse.com/show_bug.cgi?id=1245723
• https://bugzilla.suse.com/show_bug.cgi?id=1245751
• https://bugzilla.suse.com/show_bug.cgi?id=1247177
• https://bugzilla.suse.com/show_bug.cgi?id=1247483
• https://bugzilla.suse.com/show_bug.cgi?id=1248306
• https://bugzilla.suse.com/show_bug.cgi?id=1248377
• https://bugzilla.suse.com/show_bug.cgi?id=1249156
• https://bugzilla.suse.com/show_bug.cgi?id=1249158
• https://bugzilla.suse.com/show_bug.cgi?id=1249827
• https://bugzilla.suse.com/show_bug.cgi?id=1252785
• https://bugzilla.suse.com/show_bug.cgi?id=1253028
• https://bugzilla.suse.com/show_bug.cgi?id=1253087
• https://bugzilla.suse.com/show_bug.cgi?id=1253409
• https://bugzilla.suse.com/show_bug.cgi?id=1253702
• https://bugzilla.suse.com/show_bug.cgi?id=1254447
• https://bugzilla.suse.com/show_bug.cgi?id=1254462
• https://bugzilla.suse.com/show_bug.cgi?id=1254463
• https://bugzilla.suse.com/show_bug.cgi?id=1254464
• https://bugzilla.suse.com/show_bug.cgi?id=1254465
• https://bugzilla.suse.com/show_bug.cgi?id=1254767
• https://bugzilla.suse.com/show_bug.cgi?id=1254842
• https://bugzilla.suse.com/show_bug.cgi?id=1255171
• https://bugzilla.suse.com/show_bug.cgi?id=1255251
• https://bugzilla.suse.com/show_bug.cgi?id=1255377
• https://bugzilla.suse.com/show_bug.cgi?id=1255401
• https://bugzilla.suse.com/show_bug.cgi?id=1255594
• https://bugzilla.suse.com/show_bug.cgi?id=1255908
• https://bugzilla.suse.com/show_bug.cgi?id=1256095
• https://bugzilla.suse.com/show_bug.cgi?id=1256582
• https://bugzilla.suse.com/show_bug.cgi?id=1256612
• https://bugzilla.suse.com/show_bug.cgi?id=1256623
• https://bugzilla.suse.com/show_bug.cgi?id=1256641
• https://bugzilla.suse.com/show_bug.cgi?id=1256726
• https://bugzilla.suse.com/show_bug.cgi?id=1256744
• https://bugzilla.suse.com/show_bug.cgi?id=1256779
• https://bugzilla.suse.com/show_bug.cgi?id=1256792
• https://bugzilla.suse.com/show_bug.cgi?id=1257232
• https://bugzilla.suse.com/show_bug.cgi?id=1257236
• https://bugzilla.suse.com/show_bug.cgi?id=1257296
• https://bugzilla.suse.com/show_bug.cgi?id=1257473