SUSE-SU-2026:20207-1
Vulnerability from csaf_suse - Published: 2026-02-02 10:12 - Updated: 2026-02-02 10:12Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2025-38704: rcu/nocb: Fix possible invalid rdp's->nocb_cb_kthread pointer (bsc#1254408).
- CVE-2025-39880: ceph: fix race condition validating r_parent before applying state (bsc#1250388).
- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).
- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).
- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).
- CVE-2025-40130: scsi: ufs: core: Fix data race in CPU latency PM QoS request handling
- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).
- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).
- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).
- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).
- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).
- CVE-2025-40214: af_unix: Initialise scc_index in unix_add_edge() (bsc#1254961).
- CVE-2025-40215: xfrm: delete x->tunnel as we delete x (bsc#1254959).
- CVE-2025-40218: mm/damon/vaddr: do not repeat pte_offset_map_lock() until success (bsc#1254964).
- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).
- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).
- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).
- CVE-2025-40237: fs/notify: call exportfs_encode_fid with s_umount (bsc#1254809).
- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).
- CVE-2025-40239: net: phy: micrel: always set shared->phydev for LAN8814 (bsc#1254868).
- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).
- CVE-2025-40246: xfs: fix out of bounds memory read error in symlink repair (bsc#1254861).
- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).
- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).
- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).
- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in
qede_tpa_cont() and qede_tpa_end() (bsc#1254849).
- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).
- CVE-2025-40255: net: core: prevent NULL deref in generic_hwtstamp_ioctl_lower() (bsc#1255156).
- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).
- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).
- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).
- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).
- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).
- CVE-2025-40276: drm/panthor: Flush shmem writes before mapping buffers CPU-uncached (bsc#1254824).
- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).
- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).
- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).
- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).
- CVE-2025-40293: iommufd: Don't overflow during division for dirty tracking (bsc#1255179).
- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).
- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).
- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).
- CVE-2025-40330: bnxt_en: Shutdown FW DMA in bnxt_shutdown() (bsc#1254616).
- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).
- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).
- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).
- CVE-2025-40347: net: enetc: fix the deadlock of enetc_mdio_lock (bsc#1255262).
- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).
- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).
- CVE-2025-40357: net/smc: fix general protection fault in __smc_diag_dump (bsc#1255097).
- CVE-2025-40359: perf/x86/intel: Fix KASAN global-out-of-bounds warning (bsc#1255087).
- CVE-2025-40362: ceph: fix multifs mds auth caps issue (bsc#1255103).
- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).
- CVE-2025-68197: bnxt_en: Fix null pointer dereference in bnxt_bs_trace_check_wrap() (bsc#1255242).
- CVE-2025-68198: crash: fix crashkernel resource shrink (bsc#1255243).
- CVE-2025-68202: sched_ext: Fix unsafe locking in the scx_dump_state() (bsc#1255223).
- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).
- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).
- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).
- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).
- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).
- CVE-2025-68259: KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).
- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).
- CVE-2025-68283: libceph: replace BUG_ON with bounds check for map->max_osd (bsc#1255379).
- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).
- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).
- CVE-2025-68293: mm/huge_memory: fix NULL pointer deference when splitting folio (bsc#1255150).
- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).
- CVE-2025-68302: net: sxgbe: fix potential NULL dereference in sxgbe_rx() (bsc#1255121).
- CVE-2025-68317: io_uring/zctx: check chained notif contexts (bsc#1255354).
- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).
- CVE-2025-68353: net: vxlan: prevent NULL deref in vxlan_xmit_one (bsc#1255533).
- CVE-2025-68363: bpf: Check skb->transport_header is set in bpf_skb_check_mtu (bsc#1255552).
- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).
- CVE-2025-68736: landlock: Optimize file path walks and prepare for audit support (bsc#1255698).
- CVE-2025-68742: bpf: Fix invalid prog->stats access when update_effective_progs fails (bsc#1255707).
- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).
- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).
The following non security issues were fixed:
- KVM: SEV: Drop GHCB_VERSION_DEFAULT and open code it (bsc#1255672).
- Set HZ=1000 for ppc64 default configuration (jsc#PED-14344)
- bpf: Do not limit bpf_cgroup_from_id to current's namespace (bsc#1255433).
- btrfs: handle aligned EOF truncation correctly for subpage cases (bsc#1253238).
- cgroup: rstat: use LOCK CMPXCHG in css_rstat_updated (bsc#1255434).
- cifs: update dstaddr whenever channel iface is updated (git-fixes).
- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).
- cpuset: fix warning when disabling remote partition (bsc#1256794).
- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).
- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).
- netdevsim: print human readable IP address (bsc#1255071).
- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event
handling (bsc#1253262 ltc#216029).
- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285
bsc#1205462 ltc#200161 ltc#200588 git-fixes bsc#1253739 ltc#211493
bsc#1254244 ltc#216496).
- sched: Increase sched_tick_remote timeout (bsc#1254510).
- selftests: net: fib-onlink-tests: Set high metric for default IPv6 route (bsc#1255346).
- selftests: net: use slowwait to make sure IPv6 setup finished (bsc#1255349).
- selftests: net: use slowwait to stabilize vrf_route_leaking test (bsc#1255349).
- serial: xilinx_uartps: Use helper function hrtimer_update_function() (stable-fixes).
- supported.conf: Mark lan 743x supported (jsc#PED-14571)
- tick/sched: Limit non-timekeeper CPUs calling jiffies update (bsc#1254477).
- wifi: ath10k: Avoid vdev delete timeout when firmware is already down (stable-fixes).
- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256495).
- x86/microcode/AMD: Make __verify_patch_size() return bool (bsc#1256495).
- x86/microcode/AMD: Remove bogus comment from parse_container() (bsc#1256495).
- x86/microcode/AMD: Select which microcode patch to load (bsc#1256495).
- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256495).
Patchnames
SUSE-SL-Micro-6.2-230
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-38704: rcu/nocb: Fix possible invalid rdp\u0027s-\u003enocb_cb_kthread pointer (bsc#1254408).\n- CVE-2025-39880: ceph: fix race condition validating r_parent before applying state (bsc#1250388).\n- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252046).\n- CVE-2025-40042: tracing: Fix race condition in kprobe initialization causing NULL pointer dereference (bsc#1252861).\n- CVE-2025-40123: bpf: Enforce expected_attach_type for tailcall compatibility (bsc#1253365).\n- CVE-2025-40130: scsi: ufs: core: Fix data race in CPU latency PM QoS request handling\n- CVE-2025-40160: xen/events: Cleanup find_virq() return codes (bsc#1253400).\n- CVE-2025-40167: ext4: detect invalid INLINE_DATA + EXTENTS flag combination (bsc#1253458).\n- CVE-2025-40170: net: use dst_dev_rcu() in sk_setup_caps() (bsc#1253413).\n- CVE-2025-40179: ext4: verify orphan file size is not too big (bsc#1253442).\n- CVE-2025-40190: ext4: guard against EA inode refcount underflow in xattr update (bsc#1253623).\n- CVE-2025-40214: af_unix: Initialise scc_index in unix_add_edge() (bsc#1254961).\n- CVE-2025-40215: xfrm: delete x-\u003etunnel as we delete x (bsc#1254959).\n- CVE-2025-40218: mm/damon/vaddr: do not repeat pte_offset_map_lock() until success (bsc#1254964).\n- CVE-2025-40220: fuse: fix livelock in synchronous file put from fuseblk workers (bsc#1254520).\n- CVE-2025-40231: vsock: fix lock inversion in vsock_assign_transport() (bsc#1254815).\n- CVE-2025-40233: ocfs2: clear extent cache after moving/defragmenting extents (bsc#1254813).\n- CVE-2025-40237: fs/notify: call exportfs_encode_fid with s_umount (bsc#1254809).\n- CVE-2025-40238: net/mlx5: Fix IPsec cleanup over MPV device (bsc#1254871).\n- CVE-2025-40239: net: phy: micrel: always set shared-\u003ephydev for LAN8814 (bsc#1254868).\n- CVE-2025-40242: gfs2: Fix unlikely race in gdlm_put_lock (bsc#1255075).\n- CVE-2025-40246: xfs: fix out of bounds memory read error in symlink repair (bsc#1254861).\n- CVE-2025-40248: vsock: Ignore signal/timeout on connect() if already established (bsc#1254864).\n- CVE-2025-40250: net/mlx5: Clean up only new IRQ glue on request_irq() failure (bsc#1254854).\n- CVE-2025-40251: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy (bsc#1254856).\n- CVE-2025-40252: net: qlogic/qede: fix potential out-of-bounds read in\n qede_tpa_cont() and qede_tpa_end() (bsc#1254849).\n- CVE-2025-40254: net: openvswitch: remove never-working support for setting nsh fields (bsc#1254852).\n- CVE-2025-40255: net: core: prevent NULL deref in generic_hwtstamp_ioctl_lower() (bsc#1255156).\n- CVE-2025-40258: mptcp: fix race condition in mptcp_schedule_work() (bsc#1254843).\n- CVE-2025-40264: be2net: pass wrb_params in case of OS2BMC (bsc#1254835).\n- CVE-2025-40268: cifs: client: fix memory leak in smb3_fs_context_parse_param (bsc#1255082).\n- CVE-2025-40271: fs/proc: fix uaf in proc_readdir_de() (bsc#1255297).\n- CVE-2025-40274: KVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying (bsc#1254830).\n- CVE-2025-40276: drm/panthor: Flush shmem writes before mapping buffers CPU-uncached (bsc#1254824).\n- CVE-2025-40278: net: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak (bsc#1254825).\n- CVE-2025-40279: net: sched: act_connmark: initialize struct tc_ife to fix kernel leak (bsc#1254846).\n- CVE-2025-40280: tipc: Fix use-after-free in tipc_mon_reinit_self() (bsc#1254847).\n- CVE-2025-40292: virtio-net: fix received length check in big packets (bsc#1255175).\n- CVE-2025-40293: iommufd: Don\u0027t overflow during division for dirty tracking (bsc#1255179).\n- CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass (bsc#1255187).\n- CVE-2025-40319: bpf: Sync pending IRQ work before freeing ring buffer (bsc#1254794).\n- CVE-2025-40328: smb: client: fix potential UAF in smb2_close_cached_fid() (bsc#1254624).\n- CVE-2025-40330: bnxt_en: Shutdown FW DMA in bnxt_shutdown() (bsc#1254616).\n- CVE-2025-40331: sctp: Prevent TOCTOU out-of-bounds write (bsc#1254615).\n- CVE-2025-40338: ASoC: Intel: avs: Do not share the name pointer between components (bsc#1255273).\n- CVE-2025-40346: arch_topology: Fix incorrect error check in topology_parse_cpu_capacity() (bsc#1255318).\n- CVE-2025-40347: net: enetc: fix the deadlock of enetc_mdio_lock (bsc#1255262).\n- CVE-2025-40350: net/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ (bsc#1255260).\n- CVE-2025-40355: sysfs: check visibility before changing group attribute ownership (bsc#1255261).\n- CVE-2025-40357: net/smc: fix general protection fault in __smc_diag_dump (bsc#1255097).\n- CVE-2025-40359: perf/x86/intel: Fix KASAN global-out-of-bounds warning (bsc#1255087).\n- CVE-2025-40362: ceph: fix multifs mds auth caps issue (bsc#1255103).\n- CVE-2025-68171: x86/fpu: Ensure XFD state on signal delivery (bsc#1255255).\n- CVE-2025-68197: bnxt_en: Fix null pointer dereference in bnxt_bs_trace_check_wrap() (bsc#1255242).\n- CVE-2025-68198: crash: fix crashkernel resource shrink (bsc#1255243).\n- CVE-2025-68202: sched_ext: Fix unsafe locking in the scx_dump_state() (bsc#1255223).\n- CVE-2025-68206: netfilter: nft_ct: add seqadj extension for natted connections (bsc#1255142).\n- CVE-2025-68208: bpf: account for current allocated stack depth in widen_imprecise_scalars() (bsc#1255227).\n- CVE-2025-68209: mlx5: Fix default values in create CQ (bsc#1255230).\n- CVE-2025-68215: ice: fix PTP cleanup on driver removal in error path (bsc#1255226).\n- CVE-2025-68239: binfmt_misc: restore write access before closing files opened by open_exec() (bsc#1255272).\n- CVE-2025-68259: KVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced (bsc#1255199).\n- CVE-2025-68264: ext4: refresh inline data size before write operations (bsc#1255380).\n- CVE-2025-68283: libceph: replace BUG_ON with bounds check for map-\u003emax_osd (bsc#1255379).\n- CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() (bsc#1255377).\n- CVE-2025-68285: libceph: fix potential use-after-free in have_mon_and_osd_map() (bsc#1255401).\n- CVE-2025-68293: mm/huge_memory: fix NULL pointer deference when splitting folio (bsc#1255150).\n- CVE-2025-68301: net: atlantic: fix fragment overflow handling in RX path (bsc#1255120).\n- CVE-2025-68302: net: sxgbe: fix potential NULL dereference in sxgbe_rx() (bsc#1255121).\n- CVE-2025-68317: io_uring/zctx: check chained notif contexts (bsc#1255354).\n- CVE-2025-68340: team: Move team device type change at the end of team_port_add (bsc#1255507).\n- CVE-2025-68353: net: vxlan: prevent NULL deref in vxlan_xmit_one (bsc#1255533).\n- CVE-2025-68363: bpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu (bsc#1255552).\n- CVE-2025-68378: bpf: Refactor stack map trace depth calculation into helper function (bsc#1255614).\n- CVE-2025-68736: landlock: Optimize file path walks and prepare for audit support (bsc#1255698).\n- CVE-2025-68742: bpf: Fix invalid prog-\u003estats access when update_effective_progs fails (bsc#1255707).\n- CVE-2025-68744: bpf: Free special fields when update [lru_,]percpu_hash maps (bsc#1255709).\n- CVE-2025-71096: RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly (bsc#1256606).\n\nThe following non security issues were fixed:\n\n- KVM: SEV: Drop GHCB_VERSION_DEFAULT and open code it (bsc#1255672).\n- Set HZ=1000 for ppc64 default configuration (jsc#PED-14344)\n- bpf: Do not limit bpf_cgroup_from_id to current\u0027s namespace (bsc#1255433).\n- btrfs: handle aligned EOF truncation correctly for subpage cases (bsc#1253238).\n- cgroup: rstat: use LOCK CMPXCHG in css_rstat_updated (bsc#1255434).\n- cifs: update dstaddr whenever channel iface is updated (git-fixes).\n- cpuidle: menu: Use residency threshold in polling state override decisions (bsc#1255026).\n- cpuset: fix warning when disabling remote partition (bsc#1256794).\n- ext4: use optimized mballoc scanning regardless of inode format (bsc#1254378).\n- net: usb: pegasus: fix memory leak in update_eth_regs_async() (git-fixes).\n- netdevsim: print human readable IP address (bsc#1255071).\n- powerpc/eeh: fix recursive pci_lock_rescan_remove locking in EEH event\n handling (bsc#1253262 ltc#216029).\n- powerpc/kexec: Enable SMT before waking offline CPUs (bsc#1214285\n bsc#1205462 ltc#200161 ltc#200588 git-fixes bsc#1253739 ltc#211493\n bsc#1254244 ltc#216496).\n- sched: Increase sched_tick_remote timeout (bsc#1254510).\n- selftests: net: fib-onlink-tests: Set high metric for default IPv6 route (bsc#1255346).\n- selftests: net: use slowwait to make sure IPv6 setup finished (bsc#1255349).\n- selftests: net: use slowwait to stabilize vrf_route_leaking test (bsc#1255349).\n- serial: xilinx_uartps: Use helper function hrtimer_update_function() (stable-fixes).\n- supported.conf: Mark lan 743x supported (jsc#PED-14571)\n- tick/sched: Limit non-timekeeper CPUs calling jiffies update (bsc#1254477).\n- wifi: ath10k: Avoid vdev delete timeout when firmware is already down (stable-fixes).\n- x86/microcode/AMD: Fix Entrysign revision check for Zen5/Strix Halo (bsc#1256495).\n- x86/microcode/AMD: Make __verify_patch_size() return bool (bsc#1256495).\n- x86/microcode/AMD: Remove bogus comment from parse_container() (bsc#1256495).\n- x86/microcode/AMD: Select which microcode patch to load (bsc#1256495).\n- x86/microcode/AMD: Use sha256() instead of init/update/final (bsc#1256495).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SL-Micro-6.2-230",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20207-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20207-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620207-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20207-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024052.html"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1243112",
"url": "https://bugzilla.suse.com/1243112"
},
{
"category": "self",
"summary": "SUSE Bug 1245193",
"url": "https://bugzilla.suse.com/1245193"
},
{
"category": "self",
"summary": "SUSE Bug 1247500",
"url": "https://bugzilla.suse.com/1247500"
},
{
"category": "self",
"summary": "SUSE Bug 1250388",
"url": "https://bugzilla.suse.com/1250388"
},
{
"category": "self",
"summary": "SUSE Bug 1252046",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "self",
"summary": "SUSE Bug 1252861",
"url": "https://bugzilla.suse.com/1252861"
},
{
"category": "self",
"summary": "SUSE Bug 1253155",
"url": "https://bugzilla.suse.com/1253155"
},
{
"category": "self",
"summary": "SUSE Bug 1253238",
"url": "https://bugzilla.suse.com/1253238"
},
{
"category": "self",
"summary": "SUSE Bug 1253262",
"url": "https://bugzilla.suse.com/1253262"
},
{
"category": "self",
"summary": "SUSE Bug 1253365",
"url": "https://bugzilla.suse.com/1253365"
},
{
"category": "self",
"summary": "SUSE Bug 1253400",
"url": "https://bugzilla.suse.com/1253400"
},
{
"category": "self",
"summary": "SUSE Bug 1253413",
"url": "https://bugzilla.suse.com/1253413"
},
{
"category": "self",
"summary": "SUSE Bug 1253414",
"url": "https://bugzilla.suse.com/1253414"
},
{
"category": "self",
"summary": "SUSE Bug 1253442",
"url": "https://bugzilla.suse.com/1253442"
},
{
"category": "self",
"summary": "SUSE Bug 1253458",
"url": "https://bugzilla.suse.com/1253458"
},
{
"category": "self",
"summary": "SUSE Bug 1253623",
"url": "https://bugzilla.suse.com/1253623"
},
{
"category": "self",
"summary": "SUSE Bug 1253674",
"url": "https://bugzilla.suse.com/1253674"
},
{
"category": "self",
"summary": "SUSE Bug 1253739",
"url": "https://bugzilla.suse.com/1253739"
},
{
"category": "self",
"summary": "SUSE Bug 1254126",
"url": "https://bugzilla.suse.com/1254126"
},
{
"category": "self",
"summary": "SUSE Bug 1254128",
"url": "https://bugzilla.suse.com/1254128"
},
{
"category": "self",
"summary": "SUSE Bug 1254195",
"url": "https://bugzilla.suse.com/1254195"
},
{
"category": "self",
"summary": "SUSE Bug 1254244",
"url": "https://bugzilla.suse.com/1254244"
},
{
"category": "self",
"summary": "SUSE Bug 1254363",
"url": "https://bugzilla.suse.com/1254363"
},
{
"category": "self",
"summary": "SUSE Bug 1254378",
"url": "https://bugzilla.suse.com/1254378"
},
{
"category": "self",
"summary": "SUSE Bug 1254408",
"url": "https://bugzilla.suse.com/1254408"
},
{
"category": "self",
"summary": "SUSE Bug 1254477",
"url": "https://bugzilla.suse.com/1254477"
},
{
"category": "self",
"summary": "SUSE Bug 1254510",
"url": "https://bugzilla.suse.com/1254510"
},
{
"category": "self",
"summary": "SUSE Bug 1254518",
"url": "https://bugzilla.suse.com/1254518"
},
{
"category": "self",
"summary": "SUSE Bug 1254519",
"url": "https://bugzilla.suse.com/1254519"
},
{
"category": "self",
"summary": "SUSE Bug 1254520",
"url": "https://bugzilla.suse.com/1254520"
},
{
"category": "self",
"summary": "SUSE Bug 1254615",
"url": "https://bugzilla.suse.com/1254615"
},
{
"category": "self",
"summary": "SUSE Bug 1254616",
"url": "https://bugzilla.suse.com/1254616"
},
{
"category": "self",
"summary": "SUSE Bug 1254618",
"url": "https://bugzilla.suse.com/1254618"
},
{
"category": "self",
"summary": "SUSE Bug 1254621",
"url": "https://bugzilla.suse.com/1254621"
},
{
"category": "self",
"summary": "SUSE Bug 1254624",
"url": "https://bugzilla.suse.com/1254624"
},
{
"category": "self",
"summary": "SUSE Bug 1254791",
"url": "https://bugzilla.suse.com/1254791"
},
{
"category": "self",
"summary": "SUSE Bug 1254793",
"url": "https://bugzilla.suse.com/1254793"
},
{
"category": "self",
"summary": "SUSE Bug 1254794",
"url": "https://bugzilla.suse.com/1254794"
},
{
"category": "self",
"summary": "SUSE Bug 1254795",
"url": "https://bugzilla.suse.com/1254795"
},
{
"category": "self",
"summary": "SUSE Bug 1254796",
"url": "https://bugzilla.suse.com/1254796"
},
{
"category": "self",
"summary": "SUSE Bug 1254797",
"url": "https://bugzilla.suse.com/1254797"
},
{
"category": "self",
"summary": "SUSE Bug 1254798",
"url": "https://bugzilla.suse.com/1254798"
},
{
"category": "self",
"summary": "SUSE Bug 1254808",
"url": "https://bugzilla.suse.com/1254808"
},
{
"category": "self",
"summary": "SUSE Bug 1254809",
"url": "https://bugzilla.suse.com/1254809"
},
{
"category": "self",
"summary": "SUSE Bug 1254813",
"url": "https://bugzilla.suse.com/1254813"
},
{
"category": "self",
"summary": "SUSE Bug 1254815",
"url": "https://bugzilla.suse.com/1254815"
},
{
"category": "self",
"summary": "SUSE Bug 1254821",
"url": "https://bugzilla.suse.com/1254821"
},
{
"category": "self",
"summary": "SUSE Bug 1254824",
"url": "https://bugzilla.suse.com/1254824"
},
{
"category": "self",
"summary": "SUSE Bug 1254825",
"url": "https://bugzilla.suse.com/1254825"
},
{
"category": "self",
"summary": "SUSE Bug 1254827",
"url": "https://bugzilla.suse.com/1254827"
},
{
"category": "self",
"summary": "SUSE Bug 1254828",
"url": "https://bugzilla.suse.com/1254828"
},
{
"category": "self",
"summary": "SUSE Bug 1254829",
"url": "https://bugzilla.suse.com/1254829"
},
{
"category": "self",
"summary": "SUSE Bug 1254830",
"url": "https://bugzilla.suse.com/1254830"
},
{
"category": "self",
"summary": "SUSE Bug 1254832",
"url": "https://bugzilla.suse.com/1254832"
},
{
"category": "self",
"summary": "SUSE Bug 1254835",
"url": "https://bugzilla.suse.com/1254835"
},
{
"category": "self",
"summary": "SUSE Bug 1254840",
"url": "https://bugzilla.suse.com/1254840"
},
{
"category": "self",
"summary": "SUSE Bug 1254843",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "self",
"summary": "SUSE Bug 1254846",
"url": "https://bugzilla.suse.com/1254846"
},
{
"category": "self",
"summary": "SUSE Bug 1254847",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "self",
"summary": "SUSE Bug 1254849",
"url": "https://bugzilla.suse.com/1254849"
},
{
"category": "self",
"summary": "SUSE Bug 1254850",
"url": "https://bugzilla.suse.com/1254850"
},
{
"category": "self",
"summary": "SUSE Bug 1254851",
"url": "https://bugzilla.suse.com/1254851"
},
{
"category": "self",
"summary": "SUSE Bug 1254852",
"url": "https://bugzilla.suse.com/1254852"
},
{
"category": "self",
"summary": "SUSE Bug 1254854",
"url": "https://bugzilla.suse.com/1254854"
},
{
"category": "self",
"summary": "SUSE Bug 1254856",
"url": "https://bugzilla.suse.com/1254856"
},
{
"category": "self",
"summary": "SUSE Bug 1254858",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "self",
"summary": "SUSE Bug 1254860",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "self",
"summary": "SUSE Bug 1254861",
"url": "https://bugzilla.suse.com/1254861"
},
{
"category": "self",
"summary": "SUSE Bug 1254864",
"url": "https://bugzilla.suse.com/1254864"
},
{
"category": "self",
"summary": "SUSE Bug 1254868",
"url": "https://bugzilla.suse.com/1254868"
},
{
"category": "self",
"summary": "SUSE Bug 1254869",
"url": "https://bugzilla.suse.com/1254869"
},
{
"category": "self",
"summary": "SUSE Bug 1254871",
"url": "https://bugzilla.suse.com/1254871"
},
{
"category": "self",
"summary": "SUSE Bug 1254894",
"url": "https://bugzilla.suse.com/1254894"
},
{
"category": "self",
"summary": "SUSE Bug 1254957",
"url": "https://bugzilla.suse.com/1254957"
},
{
"category": "self",
"summary": "SUSE Bug 1254959",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "self",
"summary": "SUSE Bug 1254961",
"url": "https://bugzilla.suse.com/1254961"
},
{
"category": "self",
"summary": "SUSE Bug 1254964",
"url": "https://bugzilla.suse.com/1254964"
},
{
"category": "self",
"summary": "SUSE Bug 1254996",
"url": "https://bugzilla.suse.com/1254996"
},
{
"category": "self",
"summary": "SUSE Bug 1255026",
"url": "https://bugzilla.suse.com/1255026"
},
{
"category": "self",
"summary": "SUSE Bug 1255030",
"url": "https://bugzilla.suse.com/1255030"
},
{
"category": "self",
"summary": "SUSE Bug 1255034",
"url": "https://bugzilla.suse.com/1255034"
},
{
"category": "self",
"summary": "SUSE Bug 1255035",
"url": "https://bugzilla.suse.com/1255035"
},
{
"category": "self",
"summary": "SUSE Bug 1255039",
"url": "https://bugzilla.suse.com/1255039"
},
{
"category": "self",
"summary": "SUSE Bug 1255040",
"url": "https://bugzilla.suse.com/1255040"
},
{
"category": "self",
"summary": "SUSE Bug 1255041",
"url": "https://bugzilla.suse.com/1255041"
},
{
"category": "self",
"summary": "SUSE Bug 1255042",
"url": "https://bugzilla.suse.com/1255042"
},
{
"category": "self",
"summary": "SUSE Bug 1255057",
"url": "https://bugzilla.suse.com/1255057"
},
{
"category": "self",
"summary": "SUSE Bug 1255058",
"url": "https://bugzilla.suse.com/1255058"
},
{
"category": "self",
"summary": "SUSE Bug 1255064",
"url": "https://bugzilla.suse.com/1255064"
},
{
"category": "self",
"summary": "SUSE Bug 1255065",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "self",
"summary": "SUSE Bug 1255068",
"url": "https://bugzilla.suse.com/1255068"
},
{
"category": "self",
"summary": "SUSE Bug 1255071",
"url": "https://bugzilla.suse.com/1255071"
},
{
"category": "self",
"summary": "SUSE Bug 1255072",
"url": "https://bugzilla.suse.com/1255072"
},
{
"category": "self",
"summary": "SUSE Bug 1255075",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "self",
"summary": "SUSE Bug 1255077",
"url": "https://bugzilla.suse.com/1255077"
},
{
"category": "self",
"summary": "SUSE Bug 1255081",
"url": "https://bugzilla.suse.com/1255081"
},
{
"category": "self",
"summary": "SUSE Bug 1255082",
"url": "https://bugzilla.suse.com/1255082"
},
{
"category": "self",
"summary": "SUSE Bug 1255083",
"url": "https://bugzilla.suse.com/1255083"
},
{
"category": "self",
"summary": "SUSE Bug 1255087",
"url": "https://bugzilla.suse.com/1255087"
},
{
"category": "self",
"summary": "SUSE Bug 1255092",
"url": "https://bugzilla.suse.com/1255092"
},
{
"category": "self",
"summary": "SUSE Bug 1255094",
"url": "https://bugzilla.suse.com/1255094"
},
{
"category": "self",
"summary": "SUSE Bug 1255095",
"url": "https://bugzilla.suse.com/1255095"
},
{
"category": "self",
"summary": "SUSE Bug 1255097",
"url": "https://bugzilla.suse.com/1255097"
},
{
"category": "self",
"summary": "SUSE Bug 1255099",
"url": "https://bugzilla.suse.com/1255099"
},
{
"category": "self",
"summary": "SUSE Bug 1255103",
"url": "https://bugzilla.suse.com/1255103"
},
{
"category": "self",
"summary": "SUSE Bug 1255116",
"url": "https://bugzilla.suse.com/1255116"
},
{
"category": "self",
"summary": "SUSE Bug 1255120",
"url": "https://bugzilla.suse.com/1255120"
},
{
"category": "self",
"summary": "SUSE Bug 1255121",
"url": "https://bugzilla.suse.com/1255121"
},
{
"category": "self",
"summary": "SUSE Bug 1255122",
"url": "https://bugzilla.suse.com/1255122"
},
{
"category": "self",
"summary": "SUSE Bug 1255124",
"url": "https://bugzilla.suse.com/1255124"
},
{
"category": "self",
"summary": "SUSE Bug 1255131",
"url": "https://bugzilla.suse.com/1255131"
},
{
"category": "self",
"summary": "SUSE Bug 1255134",
"url": "https://bugzilla.suse.com/1255134"
},
{
"category": "self",
"summary": "SUSE Bug 1255135",
"url": "https://bugzilla.suse.com/1255135"
},
{
"category": "self",
"summary": "SUSE Bug 1255136",
"url": "https://bugzilla.suse.com/1255136"
},
{
"category": "self",
"summary": "SUSE Bug 1255138",
"url": "https://bugzilla.suse.com/1255138"
},
{
"category": "self",
"summary": "SUSE Bug 1255140",
"url": "https://bugzilla.suse.com/1255140"
},
{
"category": "self",
"summary": "SUSE Bug 1255142",
"url": "https://bugzilla.suse.com/1255142"
},
{
"category": "self",
"summary": "SUSE Bug 1255145",
"url": "https://bugzilla.suse.com/1255145"
},
{
"category": "self",
"summary": "SUSE Bug 1255146",
"url": "https://bugzilla.suse.com/1255146"
},
{
"category": "self",
"summary": "SUSE Bug 1255149",
"url": "https://bugzilla.suse.com/1255149"
},
{
"category": "self",
"summary": "SUSE Bug 1255150",
"url": "https://bugzilla.suse.com/1255150"
},
{
"category": "self",
"summary": "SUSE Bug 1255152",
"url": "https://bugzilla.suse.com/1255152"
},
{
"category": "self",
"summary": "SUSE Bug 1255154",
"url": "https://bugzilla.suse.com/1255154"
},
{
"category": "self",
"summary": "SUSE Bug 1255155",
"url": "https://bugzilla.suse.com/1255155"
},
{
"category": "self",
"summary": "SUSE Bug 1255156",
"url": "https://bugzilla.suse.com/1255156"
},
{
"category": "self",
"summary": "SUSE Bug 1255161",
"url": "https://bugzilla.suse.com/1255161"
},
{
"category": "self",
"summary": "SUSE Bug 1255167",
"url": "https://bugzilla.suse.com/1255167"
},
{
"category": "self",
"summary": "SUSE Bug 1255169",
"url": "https://bugzilla.suse.com/1255169"
},
{
"category": "self",
"summary": "SUSE Bug 1255171",
"url": "https://bugzilla.suse.com/1255171"
},
{
"category": "self",
"summary": "SUSE Bug 1255175",
"url": "https://bugzilla.suse.com/1255175"
},
{
"category": "self",
"summary": "SUSE Bug 1255179",
"url": "https://bugzilla.suse.com/1255179"
},
{
"category": "self",
"summary": "SUSE Bug 1255181",
"url": "https://bugzilla.suse.com/1255181"
},
{
"category": "self",
"summary": "SUSE Bug 1255182",
"url": "https://bugzilla.suse.com/1255182"
},
{
"category": "self",
"summary": "SUSE Bug 1255186",
"url": "https://bugzilla.suse.com/1255186"
},
{
"category": "self",
"summary": "SUSE Bug 1255187",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "self",
"summary": "SUSE Bug 1255190",
"url": "https://bugzilla.suse.com/1255190"
},
{
"category": "self",
"summary": "SUSE Bug 1255193",
"url": "https://bugzilla.suse.com/1255193"
},
{
"category": "self",
"summary": "SUSE Bug 1255196",
"url": "https://bugzilla.suse.com/1255196"
},
{
"category": "self",
"summary": "SUSE Bug 1255197",
"url": "https://bugzilla.suse.com/1255197"
},
{
"category": "self",
"summary": "SUSE Bug 1255199",
"url": "https://bugzilla.suse.com/1255199"
},
{
"category": "self",
"summary": "SUSE Bug 1255202",
"url": "https://bugzilla.suse.com/1255202"
},
{
"category": "self",
"summary": "SUSE Bug 1255203",
"url": "https://bugzilla.suse.com/1255203"
},
{
"category": "self",
"summary": "SUSE Bug 1255206",
"url": "https://bugzilla.suse.com/1255206"
},
{
"category": "self",
"summary": "SUSE Bug 1255209",
"url": "https://bugzilla.suse.com/1255209"
},
{
"category": "self",
"summary": "SUSE Bug 1255218",
"url": "https://bugzilla.suse.com/1255218"
},
{
"category": "self",
"summary": "SUSE Bug 1255220",
"url": "https://bugzilla.suse.com/1255220"
},
{
"category": "self",
"summary": "SUSE Bug 1255221",
"url": "https://bugzilla.suse.com/1255221"
},
{
"category": "self",
"summary": "SUSE Bug 1255223",
"url": "https://bugzilla.suse.com/1255223"
},
{
"category": "self",
"summary": "SUSE Bug 1255226",
"url": "https://bugzilla.suse.com/1255226"
},
{
"category": "self",
"summary": "SUSE Bug 1255227",
"url": "https://bugzilla.suse.com/1255227"
},
{
"category": "self",
"summary": "SUSE Bug 1255228",
"url": "https://bugzilla.suse.com/1255228"
},
{
"category": "self",
"summary": "SUSE Bug 1255230",
"url": "https://bugzilla.suse.com/1255230"
},
{
"category": "self",
"summary": "SUSE Bug 1255231",
"url": "https://bugzilla.suse.com/1255231"
},
{
"category": "self",
"summary": "SUSE Bug 1255233",
"url": "https://bugzilla.suse.com/1255233"
},
{
"category": "self",
"summary": "SUSE Bug 1255234",
"url": "https://bugzilla.suse.com/1255234"
},
{
"category": "self",
"summary": "SUSE Bug 1255242",
"url": "https://bugzilla.suse.com/1255242"
},
{
"category": "self",
"summary": "SUSE Bug 1255243",
"url": "https://bugzilla.suse.com/1255243"
},
{
"category": "self",
"summary": "SUSE Bug 1255246",
"url": "https://bugzilla.suse.com/1255246"
},
{
"category": "self",
"summary": "SUSE Bug 1255247",
"url": "https://bugzilla.suse.com/1255247"
},
{
"category": "self",
"summary": "SUSE Bug 1255251",
"url": "https://bugzilla.suse.com/1255251"
},
{
"category": "self",
"summary": "SUSE Bug 1255252",
"url": "https://bugzilla.suse.com/1255252"
},
{
"category": "self",
"summary": "SUSE Bug 1255253",
"url": "https://bugzilla.suse.com/1255253"
},
{
"category": "self",
"summary": "SUSE Bug 1255255",
"url": "https://bugzilla.suse.com/1255255"
},
{
"category": "self",
"summary": "SUSE Bug 1255256",
"url": "https://bugzilla.suse.com/1255256"
},
{
"category": "self",
"summary": "SUSE Bug 1255259",
"url": "https://bugzilla.suse.com/1255259"
},
{
"category": "self",
"summary": "SUSE Bug 1255260",
"url": "https://bugzilla.suse.com/1255260"
},
{
"category": "self",
"summary": "SUSE Bug 1255261",
"url": "https://bugzilla.suse.com/1255261"
},
{
"category": "self",
"summary": "SUSE Bug 1255262",
"url": "https://bugzilla.suse.com/1255262"
},
{
"category": "self",
"summary": "SUSE Bug 1255272",
"url": "https://bugzilla.suse.com/1255272"
},
{
"category": "self",
"summary": "SUSE Bug 1255273",
"url": "https://bugzilla.suse.com/1255273"
},
{
"category": "self",
"summary": "SUSE Bug 1255274",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "self",
"summary": "SUSE Bug 1255276",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "self",
"summary": "SUSE Bug 1255279",
"url": "https://bugzilla.suse.com/1255279"
},
{
"category": "self",
"summary": "SUSE Bug 1255297",
"url": "https://bugzilla.suse.com/1255297"
},
{
"category": "self",
"summary": "SUSE Bug 1255312",
"url": "https://bugzilla.suse.com/1255312"
},
{
"category": "self",
"summary": "SUSE Bug 1255316",
"url": "https://bugzilla.suse.com/1255316"
},
{
"category": "self",
"summary": "SUSE Bug 1255318",
"url": "https://bugzilla.suse.com/1255318"
},
{
"category": "self",
"summary": "SUSE Bug 1255325",
"url": "https://bugzilla.suse.com/1255325"
},
{
"category": "self",
"summary": "SUSE Bug 1255329",
"url": "https://bugzilla.suse.com/1255329"
},
{
"category": "self",
"summary": "SUSE Bug 1255346",
"url": "https://bugzilla.suse.com/1255346"
},
{
"category": "self",
"summary": "SUSE Bug 1255349",
"url": "https://bugzilla.suse.com/1255349"
},
{
"category": "self",
"summary": "SUSE Bug 1255351",
"url": "https://bugzilla.suse.com/1255351"
},
{
"category": "self",
"summary": "SUSE Bug 1255354",
"url": "https://bugzilla.suse.com/1255354"
},
{
"category": "self",
"summary": "SUSE Bug 1255357",
"url": "https://bugzilla.suse.com/1255357"
},
{
"category": "self",
"summary": "SUSE Bug 1255377",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "self",
"summary": "SUSE Bug 1255379",
"url": "https://bugzilla.suse.com/1255379"
},
{
"category": "self",
"summary": "SUSE Bug 1255380",
"url": "https://bugzilla.suse.com/1255380"
},
{
"category": "self",
"summary": "SUSE Bug 1255395",
"url": "https://bugzilla.suse.com/1255395"
},
{
"category": "self",
"summary": "SUSE Bug 1255401",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "self",
"summary": "SUSE Bug 1255415",
"url": "https://bugzilla.suse.com/1255415"
},
{
"category": "self",
"summary": "SUSE Bug 1255428",
"url": "https://bugzilla.suse.com/1255428"
},
{
"category": "self",
"summary": "SUSE Bug 1255433",
"url": "https://bugzilla.suse.com/1255433"
},
{
"category": "self",
"summary": "SUSE Bug 1255434",
"url": "https://bugzilla.suse.com/1255434"
},
{
"category": "self",
"summary": "SUSE Bug 1255480",
"url": "https://bugzilla.suse.com/1255480"
},
{
"category": "self",
"summary": "SUSE Bug 1255483",
"url": "https://bugzilla.suse.com/1255483"
},
{
"category": "self",
"summary": "SUSE Bug 1255488",
"url": "https://bugzilla.suse.com/1255488"
},
{
"category": "self",
"summary": "SUSE Bug 1255489",
"url": "https://bugzilla.suse.com/1255489"
},
{
"category": "self",
"summary": "SUSE Bug 1255493",
"url": "https://bugzilla.suse.com/1255493"
},
{
"category": "self",
"summary": "SUSE Bug 1255495",
"url": "https://bugzilla.suse.com/1255495"
},
{
"category": "self",
"summary": "SUSE Bug 1255505",
"url": "https://bugzilla.suse.com/1255505"
},
{
"category": "self",
"summary": "SUSE Bug 1255507",
"url": "https://bugzilla.suse.com/1255507"
},
{
"category": "self",
"summary": "SUSE Bug 1255508",
"url": "https://bugzilla.suse.com/1255508"
},
{
"category": "self",
"summary": "SUSE Bug 1255509",
"url": "https://bugzilla.suse.com/1255509"
},
{
"category": "self",
"summary": "SUSE Bug 1255533",
"url": "https://bugzilla.suse.com/1255533"
},
{
"category": "self",
"summary": "SUSE Bug 1255541",
"url": "https://bugzilla.suse.com/1255541"
},
{
"category": "self",
"summary": "SUSE Bug 1255550",
"url": "https://bugzilla.suse.com/1255550"
},
{
"category": "self",
"summary": "SUSE Bug 1255552",
"url": "https://bugzilla.suse.com/1255552"
},
{
"category": "self",
"summary": "SUSE Bug 1255553",
"url": "https://bugzilla.suse.com/1255553"
},
{
"category": "self",
"summary": "SUSE Bug 1255567",
"url": "https://bugzilla.suse.com/1255567"
},
{
"category": "self",
"summary": "SUSE Bug 1255580",
"url": "https://bugzilla.suse.com/1255580"
},
{
"category": "self",
"summary": "SUSE Bug 1255601",
"url": "https://bugzilla.suse.com/1255601"
},
{
"category": "self",
"summary": "SUSE Bug 1255603",
"url": "https://bugzilla.suse.com/1255603"
},
{
"category": "self",
"summary": "SUSE Bug 1255611",
"url": "https://bugzilla.suse.com/1255611"
},
{
"category": "self",
"summary": "SUSE Bug 1255614",
"url": "https://bugzilla.suse.com/1255614"
},
{
"category": "self",
"summary": "SUSE Bug 1255672",
"url": "https://bugzilla.suse.com/1255672"
},
{
"category": "self",
"summary": "SUSE Bug 1255688",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "self",
"summary": "SUSE Bug 1255698",
"url": "https://bugzilla.suse.com/1255698"
},
{
"category": "self",
"summary": "SUSE Bug 1255706",
"url": "https://bugzilla.suse.com/1255706"
},
{
"category": "self",
"summary": "SUSE Bug 1255707",
"url": "https://bugzilla.suse.com/1255707"
},
{
"category": "self",
"summary": "SUSE Bug 1255709",
"url": "https://bugzilla.suse.com/1255709"
},
{
"category": "self",
"summary": "SUSE Bug 1255722",
"url": "https://bugzilla.suse.com/1255722"
},
{
"category": "self",
"summary": "SUSE Bug 1255723",
"url": "https://bugzilla.suse.com/1255723"
},
{
"category": "self",
"summary": "SUSE Bug 1255724",
"url": "https://bugzilla.suse.com/1255724"
},
{
"category": "self",
"summary": "SUSE Bug 1255812",
"url": "https://bugzilla.suse.com/1255812"
},
{
"category": "self",
"summary": "SUSE Bug 1255813",
"url": "https://bugzilla.suse.com/1255813"
},
{
"category": "self",
"summary": "SUSE Bug 1255814",
"url": "https://bugzilla.suse.com/1255814"
},
{
"category": "self",
"summary": "SUSE Bug 1255816",
"url": "https://bugzilla.suse.com/1255816"
},
{
"category": "self",
"summary": "SUSE Bug 1255931",
"url": "https://bugzilla.suse.com/1255931"
},
{
"category": "self",
"summary": "SUSE Bug 1255932",
"url": "https://bugzilla.suse.com/1255932"
},
{
"category": "self",
"summary": "SUSE Bug 1255934",
"url": "https://bugzilla.suse.com/1255934"
},
{
"category": "self",
"summary": "SUSE Bug 1255943",
"url": "https://bugzilla.suse.com/1255943"
},
{
"category": "self",
"summary": "SUSE Bug 1255944",
"url": "https://bugzilla.suse.com/1255944"
},
{
"category": "self",
"summary": "SUSE Bug 1256238",
"url": "https://bugzilla.suse.com/1256238"
},
{
"category": "self",
"summary": "SUSE Bug 1256495",
"url": "https://bugzilla.suse.com/1256495"
},
{
"category": "self",
"summary": "SUSE Bug 1256606",
"url": "https://bugzilla.suse.com/1256606"
},
{
"category": "self",
"summary": "SUSE Bug 1256794",
"url": "https://bugzilla.suse.com/1256794"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-38704 page",
"url": "https://www.suse.com/security/cve/CVE-2025-38704/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39880 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39880/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-39977 page",
"url": "https://www.suse.com/security/cve/CVE-2025-39977/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40042 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40123 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40123/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40130 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40130/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40160 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40160/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40167 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40170 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40179 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40179/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40211 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40211/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40212 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40212/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40213 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40214 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40214/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40218 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40218/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40219 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40219/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40220 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40220/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40221 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40221/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40223 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40225 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40225/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40226 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40226/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40231 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40231/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40235 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40237 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40239 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40240 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40240/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40242 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40246 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40246/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40248 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40250 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40250/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40251 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40255 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40262 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40263 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40263/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40266 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40266/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40268 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40268/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40269 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40269/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40271 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40271/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40272 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40272/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40273 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40273/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40274 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40274/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40275 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40275/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40276 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40276/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40277 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40277/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40278 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40278/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40279 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40279/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40280 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40280/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40282 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40282/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40283 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40288 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40292 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40292/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40293 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40294 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40294/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40297 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40297/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40302 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40303 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40304 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40304/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40309 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40309/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40310 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40310/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40311 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40314 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40314/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40315 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40316 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40316/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40317 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40318 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40318/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40319 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40319/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40320 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40321 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40322 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40323 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40323/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40324 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40329 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40329/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40330 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40332 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40337 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40338 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40338/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40340 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40342 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40343 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40344 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40344/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40350 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40350/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40353 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40354 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40355 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40355/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40357 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40357/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40359 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40359/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40360 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40360/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-40362 page",
"url": "https://www.suse.com/security/cve/CVE-2025-40362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68167 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68170 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68170/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68171 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68171/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68172 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68172/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68176 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68176/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68180 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68180/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68183 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68183/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68184 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68185 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68185/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68192 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68192/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68194 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68194/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68195 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68197 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68198 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68201 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68202 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68206 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68206/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68207 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68207/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68208 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68208/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68209 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68209/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68210 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68210/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68213 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68215 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68215/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68217 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68217/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68222 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68222/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68223 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68223/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68230 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68230/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68233 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68233/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68235 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68235/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68237 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68237/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68238 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68239 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68242 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68242/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68244 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68244/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68249 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68252 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68252/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68254 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68255 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68256 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68256/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68257 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68257/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68258 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68258/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68259 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68264 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68264/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68283 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68283/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68284 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68284/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68285 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68285/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68286 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68286/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68287 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68287/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68289 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68289/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68290 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68290/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68293 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68293/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68298 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68298/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68301 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68301/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68302 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68302/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68303 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68305 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68305/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68306 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68306/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68307 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68307/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68308 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68308/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68311 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68311/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68312 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68312/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68313 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68313/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68317 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68317/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68327 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68327/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68328 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68328/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68330 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68330/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68331 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68331/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68332 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68332/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68335 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68335/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68339 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68340 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68342 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68342/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68343 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68344 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68344/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68345 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68345/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68346 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68346/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68347 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68347/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68351 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68351/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68352 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68352/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68353 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68353/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68354 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68354/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68362 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68362/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68363 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68363/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68378 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68378/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68380 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68380/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68724 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68724/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68732 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68732/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68736 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68736/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68740 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68740/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68742 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68744 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68746 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68746/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68747 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68747/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68748 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68748/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68749 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68749/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68750 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68750/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68753 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68753/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68757 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68757/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68758 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68758/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68759 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68759/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68765 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68765/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-68766 page",
"url": "https://www.suse.com/security/cve/CVE-2025-68766/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-71096 page",
"url": "https://www.suse.com/security/cve/CVE-2025-71096/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2026-02-02T10:12:16Z",
"generator": {
"date": "2026-02-02T10:12:16Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20207-1",
"initial_release_date": "2026-02-02T10:12:16Z",
"revision_history": [
{
"date": "2026-02-02T10:12:16Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-64kb-6.12.0-160000.9.1.aarch64",
"product": {
"name": "kernel-64kb-6.12.0-160000.9.1.aarch64",
"product_id": "kernel-64kb-6.12.0-160000.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"product": {
"name": "kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"product_id": "kernel-64kb-devel-6.12.0-160000.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.9.1.aarch64",
"product": {
"name": "kernel-default-6.12.0-160000.9.1.aarch64",
"product_id": "kernel-default-6.12.0-160000.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"product": {
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"product_id": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.9.1.aarch64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.9.1.aarch64",
"product_id": "kernel-default-devel-6.12.0-160000.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.9.1.aarch64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.9.1.aarch64",
"product_id": "kernel-default-extra-6.12.0-160000.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.12.0-160000.9.1.aarch64",
"product": {
"name": "kernel-rt-6.12.0-160000.9.1.aarch64",
"product_id": "kernel-rt-6.12.0-160000.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"product": {
"name": "kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"product_id": "kernel-rt-devel-6.12.0-160000.9.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-6.12.0-160000.9.1.noarch",
"product": {
"name": "kernel-devel-6.12.0-160000.9.1.noarch",
"product_id": "kernel-devel-6.12.0-160000.9.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-macros-6.12.0-160000.9.1.noarch",
"product": {
"name": "kernel-macros-6.12.0-160000.9.1.noarch",
"product_id": "kernel-macros-6.12.0-160000.9.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-6.12.0-160000.9.1.noarch",
"product": {
"name": "kernel-source-6.12.0-160000.9.1.noarch",
"product_id": "kernel-source-6.12.0-160000.9.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.9.1.ppc64le",
"product": {
"name": "kernel-default-6.12.0-160000.9.1.ppc64le",
"product_id": "kernel-default-6.12.0-160000.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"product": {
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"product_id": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"product": {
"name": "kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"product_id": "kernel-default-devel-6.12.0-160000.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"product": {
"name": "kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"product_id": "kernel-default-extra-6.12.0-160000.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"product_id": "kernel-default-livepatch-6.12.0-160000.9.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.9.1.s390x",
"product": {
"name": "kernel-default-6.12.0-160000.9.1.s390x",
"product_id": "kernel-default-6.12.0-160000.9.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.9.1.s390x",
"product": {
"name": "kernel-default-devel-6.12.0-160000.9.1.s390x",
"product_id": "kernel-default-devel-6.12.0-160000.9.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.9.1.s390x",
"product": {
"name": "kernel-default-extra-6.12.0-160000.9.1.s390x",
"product_id": "kernel-default-extra-6.12.0-160000.9.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"product_id": "kernel-default-livepatch-6.12.0-160000.9.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-default-6.12.0-160000.9.1.x86_64",
"product": {
"name": "kernel-default-6.12.0-160000.9.1.x86_64",
"product_id": "kernel-default-6.12.0-160000.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"product": {
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"product_id": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-devel-6.12.0-160000.9.1.x86_64",
"product": {
"name": "kernel-default-devel-6.12.0-160000.9.1.x86_64",
"product_id": "kernel-default-devel-6.12.0-160000.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-extra-6.12.0-160000.9.1.x86_64",
"product": {
"name": "kernel-default-extra-6.12.0-160000.9.1.x86_64",
"product_id": "kernel-default-extra-6.12.0-160000.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"product": {
"name": "kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"product_id": "kernel-default-livepatch-6.12.0-160000.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-6.12.0-160000.9.1.x86_64",
"product": {
"name": "kernel-rt-6.12.0-160000.9.1.x86_64",
"product_id": "kernel-rt-6.12.0-160000.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"product": {
"name": "kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"product_id": "kernel-rt-devel-6.12.0-160000.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"product": {
"name": "kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"product_id": "kernel-rt-livepatch-6.12.0-160000.9.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.2",
"product": {
"name": "SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:transactional"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-6.12.0-160000.9.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64"
},
"product_reference": "kernel-64kb-6.12.0-160000.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-64kb-devel-6.12.0-160000.9.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64"
},
"product_reference": "kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.9.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64"
},
"product_reference": "kernel-default-6.12.0-160000.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.9.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le"
},
"product_reference": "kernel-default-6.12.0-160000.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.9.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x"
},
"product_reference": "kernel-default-6.12.0-160000.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-6.12.0-160000.9.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64"
},
"product_reference": "kernel-default-6.12.0-160000.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64"
},
"product_reference": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le"
},
"product_reference": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64"
},
"product_reference": "kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.9.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.9.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le"
},
"product_reference": "kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.9.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x"
},
"product_reference": "kernel-default-devel-6.12.0-160000.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-devel-6.12.0-160000.9.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64"
},
"product_reference": "kernel-default-devel-6.12.0-160000.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.9.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.9.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le"
},
"product_reference": "kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.9.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x"
},
"product_reference": "kernel-default-extra-6.12.0-160000.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-extra-6.12.0-160000.9.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64"
},
"product_reference": "kernel-default-extra-6.12.0-160000.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.9.1.ppc64le as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.9.1.s390x as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-default-livepatch-6.12.0-160000.9.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64"
},
"product_reference": "kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-6.12.0-160000.9.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch"
},
"product_reference": "kernel-devel-6.12.0-160000.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-macros-6.12.0-160000.9.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch"
},
"product_reference": "kernel-macros-6.12.0-160000.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.12.0-160000.9.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64"
},
"product_reference": "kernel-rt-6.12.0-160000.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-6.12.0-160000.9.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64"
},
"product_reference": "kernel-rt-6.12.0-160000.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.12.0-160000.9.1.aarch64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64"
},
"product_reference": "kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-6.12.0-160000.9.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64"
},
"product_reference": "kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-livepatch-6.12.0-160000.9.1.x86_64 as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64"
},
"product_reference": "kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-6.12.0-160000.9.1.noarch as component of SUSE Linux Micro 6.2",
"product_id": "SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
},
"product_reference": "kernel-source-6.12.0-160000.9.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-38704",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-38704"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nrcu/nocb: Fix possible invalid rdp\u0027s-\u003enocb_cb_kthread pointer access\n\nIn the preparation stage of CPU online, if the corresponding\nthe rdp\u0027s-\u003enocb_cb_kthread does not exist, will be created,\nthere is a situation where the rdp\u0027s rcuop kthreads creation fails,\nand then de-offload this CPU\u0027s rdp, does not assign this CPU\u0027s\nrdp-\u003enocb_cb_kthread pointer, but this rdp\u0027s-\u003enocb_gp_rdp and\nrdp\u0027s-\u003erdp_gp-\u003enocb_gp_kthread is still valid.\n\nThis will cause the subsequent re-offload operation of this offline\nCPU, which will pass the conditional check and the kthread_unpark()\nwill access invalid rdp\u0027s-\u003enocb_cb_kthread pointer.\n\nThis commit therefore use rdp\u0027s-\u003enocb_gp_kthread instead of\nrdp_gp\u0027s-\u003enocb_gp_kthread for safety check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-38704",
"url": "https://www.suse.com/security/cve/CVE-2025-38704"
},
{
"category": "external",
"summary": "SUSE Bug 1254408 for CVE-2025-38704",
"url": "https://bugzilla.suse.com/1254408"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-38704"
},
{
"cve": "CVE-2025-39880",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39880"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix invalid accesses to ceph_connection_v1_info\n\nThere is a place where generic code in messenger.c is reading and\nanother place where it is writing to con-\u003ev1 union member without\nchecking that the union member is active (i.e. msgr1 is in use).\n\nOn 64-bit systems, con-\u003ev1.auth_retry overlaps with con-\u003ev2.out_iter,\nso such a read is almost guaranteed to return a bogus value instead of\n0 when msgr2 is in use. This ends up being fairly benign because the\nside effect is just the invalidation of the authorizer and successive\nfetching of new tickets.\n\ncon-\u003ev1.connect_seq overlaps with con-\u003ev2.conn_bufs and the fact that\nit\u0027s being written to can cause more serious consequences, but luckily\nit\u0027s not something that happens often.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39880",
"url": "https://www.suse.com/security/cve/CVE-2025-39880"
},
{
"category": "external",
"summary": "SUSE Bug 1250388 for CVE-2025-39880",
"url": "https://bugzilla.suse.com/1250388"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-39880"
},
{
"cve": "CVE-2025-39977",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-39977"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfutex: Prevent use-after-free during requeue-PI\n\nsyzbot managed to trigger the following race:\n\n T1 T2\n\n futex_wait_requeue_pi()\n futex_do_wait()\n schedule()\n futex_requeue()\n futex_proxy_trylock_atomic()\n futex_requeue_pi_prepare()\n requeue_pi_wake_futex()\n futex_requeue_pi_complete()\n /* preempt */\n\n * timeout/ signal wakes T1 *\n\n futex_requeue_pi_wakeup_sync() // Q_REQUEUE_PI_LOCKED\n futex_hash_put()\n // back to userland, on stack futex_q is garbage\n\n /* back */\n wake_up_state(q-\u003etask, TASK_NORMAL);\n\nIn this scenario futex_wait_requeue_pi() is able to leave without using\nfutex_q::lock_ptr for synchronization.\n\nThis can be prevented by reading futex_q::task before updating the\nfutex_q::requeue_state. A reference on the task_struct is not needed\nbecause requeue_pi_wake_futex() is invoked with a spinlock_t held which\nimplies a RCU read section.\n\nEven if T1 terminates immediately after, the task_struct will remain valid\nduring T2\u0027s wake_up_state(). A READ_ONCE on futex_q::task before\nfutex_requeue_pi_complete() is enough because it ensures that the variable\nis read before the state is updated.\n\nRead futex_q::task before updating the requeue state, use it for the\nfollowing wakeup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-39977",
"url": "https://www.suse.com/security/cve/CVE-2025-39977"
},
{
"category": "external",
"summary": "SUSE Bug 1252046 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252046"
},
{
"category": "external",
"summary": "SUSE Bug 1252048 for CVE-2025-39977",
"url": "https://bugzilla.suse.com/1252048"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-39977"
},
{
"cve": "CVE-2025-40042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40042"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntracing: Fix race condition in kprobe initialization causing NULL pointer dereference\n\nThere is a critical race condition in kprobe initialization that can lead to\nNULL pointer dereference and kernel crash.\n\n[1135630.084782] Unable to handle kernel paging request at virtual address 0000710a04630000\n...\n[1135630.260314] pstate: 404003c9 (nZcv DAIF +PAN -UAO)\n[1135630.269239] pc : kprobe_perf_func+0x30/0x260\n[1135630.277643] lr : kprobe_dispatcher+0x44/0x60\n[1135630.286041] sp : ffffaeff4977fa40\n[1135630.293441] x29: ffffaeff4977fa40 x28: ffffaf015340e400\n[1135630.302837] x27: 0000000000000000 x26: 0000000000000000\n[1135630.312257] x25: ffffaf029ed108a8 x24: ffffaf015340e528\n[1135630.321705] x23: ffffaeff4977fc50 x22: ffffaeff4977fc50\n[1135630.331154] x21: 0000000000000000 x20: ffffaeff4977fc50\n[1135630.340586] x19: ffffaf015340e400 x18: 0000000000000000\n[1135630.349985] x17: 0000000000000000 x16: 0000000000000000\n[1135630.359285] x15: 0000000000000000 x14: 0000000000000000\n[1135630.368445] x13: 0000000000000000 x12: 0000000000000000\n[1135630.377473] x11: 0000000000000000 x10: 0000000000000000\n[1135630.386411] x9 : 0000000000000000 x8 : 0000000000000000\n[1135630.395252] x7 : 0000000000000000 x6 : 0000000000000000\n[1135630.403963] x5 : 0000000000000000 x4 : 0000000000000000\n[1135630.412545] x3 : 0000710a04630000 x2 : 0000000000000006\n[1135630.421021] x1 : ffffaeff4977fc50 x0 : 0000710a04630000\n[1135630.429410] Call trace:\n[1135630.434828] kprobe_perf_func+0x30/0x260\n[1135630.441661] kprobe_dispatcher+0x44/0x60\n[1135630.448396] aggr_pre_handler+0x70/0xc8\n[1135630.454959] kprobe_breakpoint_handler+0x140/0x1e0\n[1135630.462435] brk_handler+0xbc/0xd8\n[1135630.468437] do_debug_exception+0x84/0x138\n[1135630.475074] el1_dbg+0x18/0x8c\n[1135630.480582] security_file_permission+0x0/0xd0\n[1135630.487426] vfs_write+0x70/0x1c0\n[1135630.493059] ksys_write+0x5c/0xc8\n[1135630.498638] __arm64_sys_write+0x24/0x30\n[1135630.504821] el0_svc_common+0x78/0x130\n[1135630.510838] el0_svc_handler+0x38/0x78\n[1135630.516834] el0_svc+0x8/0x1b0\n\nkernel/trace/trace_kprobe.c: 1308\n0xffff3df8995039ec \u003ckprobe_perf_func+0x2c\u003e: ldr x21, [x24,#120]\ninclude/linux/compiler.h: 294\n0xffff3df8995039f0 \u003ckprobe_perf_func+0x30\u003e: ldr x1, [x21,x0]\n\nkernel/trace/trace_kprobe.c\n1308: head = this_cpu_ptr(call-\u003eperf_events);\n1309: if (hlist_empty(head))\n1310: \treturn 0;\n\ncrash\u003e struct trace_event_call -o\nstruct trace_event_call {\n ...\n [120] struct hlist_head *perf_events; //(call-\u003eperf_event)\n ...\n}\n\ncrash\u003e struct trace_event_call ffffaf015340e528\nstruct trace_event_call {\n ...\n perf_events = 0xffff0ad5fa89f088, //this value is correct, but x21 = 0\n ...\n}\n\nRace Condition Analysis:\n\nThe race occurs between kprobe activation and perf_events initialization:\n\n CPU0 CPU1\n ==== ====\n perf_kprobe_init\n perf_trace_event_init\n tp_event-\u003eperf_events = list;(1)\n tp_event-\u003eclass-\u003ereg (2)\u003c- KPROBE ACTIVE\n Debug exception triggers\n ...\n kprobe_dispatcher\n kprobe_perf_func (tk-\u003etp.flags \u0026 TP_FLAG_PROFILE)\n head = this_cpu_ptr(call-\u003eperf_events)(3)\n (perf_events is still NULL)\n\nProblem:\n1. CPU0 executes (1) assigning tp_event-\u003eperf_events = list\n2. CPU0 executes (2) enabling kprobe functionality via class-\u003ereg()\n3. CPU1 triggers and reaches kprobe_dispatcher\n4. CPU1 checks TP_FLAG_PROFILE - condition passes (step 2 completed)\n5. CPU1 calls kprobe_perf_func() and crashes at (3) because\n call-\u003eperf_events is still NULL\n\nCPU1 sees that kprobe functionality is enabled but does not see that\nperf_events has been assigned.\n\nAdd pairing read an\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40042",
"url": "https://www.suse.com/security/cve/CVE-2025-40042"
},
{
"category": "external",
"summary": "SUSE Bug 1252861 for CVE-2025-40042",
"url": "https://bugzilla.suse.com/1252861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40042"
},
{
"cve": "CVE-2025-40123",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40123"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Enforce expected_attach_type for tailcall compatibility\n\nYinhao et al. recently reported:\n\n Our fuzzer tool discovered an uninitialized pointer issue in the\n bpf_prog_test_run_xdp() function within the Linux kernel\u0027s BPF subsystem.\n This leads to a NULL pointer dereference when a BPF program attempts to\n deference the txq member of struct xdp_buff object.\n\nThe test initializes two programs of BPF_PROG_TYPE_XDP: progA acts as the\nentry point for bpf_prog_test_run_xdp() and its expected_attach_type can\nneither be of be BPF_XDP_DEVMAP nor BPF_XDP_CPUMAP. progA calls into a slot\nof a tailcall map it owns. progB\u0027s expected_attach_type must be BPF_XDP_DEVMAP\nto pass xdp_is_valid_access() validation. The program returns struct xdp_md\u0027s\negress_ifindex, and the latter is only allowed to be accessed under mentioned\nexpected_attach_type. progB is then inserted into the tailcall which progA\ncalls.\n\nThe underlying issue goes beyond XDP though. Another example are programs\nof type BPF_PROG_TYPE_CGROUP_SOCK_ADDR. sock_addr_is_valid_access() as well\nas sock_addr_func_proto() have different logic depending on the programs\u0027\nexpected_attach_type. Similarly, a program attached to BPF_CGROUP_INET4_GETPEERNAME\nshould not be allowed doing a tailcall into a program which calls bpf_bind()\nout of BPF which is only enabled for BPF_CGROUP_INET4_CONNECT.\n\nIn short, specifying expected_attach_type allows to open up additional\nfunctionality or restrictions beyond what the basic bpf_prog_type enables.\nThe use of tailcalls must not violate these constraints. Fix it by enforcing\nexpected_attach_type in __bpf_prog_map_compatible().\n\nNote that we only enforce this for tailcall maps, but not for BPF devmaps or\ncpumaps: There, the programs are invoked through dev_map_bpf_prog_run*() and\ncpu_map_bpf_prog_run*() which set up a new environment / context and therefore\nthese situations are not prone to this issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40123",
"url": "https://www.suse.com/security/cve/CVE-2025-40123"
},
{
"category": "external",
"summary": "SUSE Bug 1253365 for CVE-2025-40123",
"url": "https://bugzilla.suse.com/1253365"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40123"
},
{
"cve": "CVE-2025-40130",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40130"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Fix data race in CPU latency PM QoS request handling\n\nThe cpu_latency_qos_add/remove/update_request interfaces lack internal\nsynchronization by design, requiring the caller to ensure thread safety.\nThe current implementation relies on the \u0027pm_qos_enabled\u0027 flag, which is\ninsufficient to prevent concurrent access and cannot serve as a proper\nsynchronization mechanism. This has led to data races and list\ncorruption issues.\n\nA typical race condition call trace is:\n\n[Thread A]\nufshcd_pm_qos_exit()\n --\u003e cpu_latency_qos_remove_request()\n --\u003e cpu_latency_qos_apply();\n --\u003e pm_qos_update_target()\n --\u003e plist_del \u003c--(1) delete plist node\n --\u003e memset(req, 0, sizeof(*req));\n --\u003e hba-\u003epm_qos_enabled = false;\n\n[Thread B]\nufshcd_devfreq_target\n --\u003e ufshcd_devfreq_scale\n --\u003e ufshcd_scale_clks\n --\u003e ufshcd_pm_qos_update \u003c--(2) pm_qos_enabled is true\n --\u003e cpu_latency_qos_update_request\n --\u003e pm_qos_update_target\n --\u003e plist_del \u003c--(3) plist node use-after-free\n\nIntroduces a dedicated mutex to serialize PM QoS operations, preventing\ndata races and ensuring safe access to PM QoS resources, including sysfs\ninterface reads.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40130",
"url": "https://www.suse.com/security/cve/CVE-2025-40130"
},
{
"category": "external",
"summary": "SUSE Bug 1253414 for CVE-2025-40130",
"url": "https://bugzilla.suse.com/1253414"
},
{
"category": "external",
"summary": "SUSE Bug 1253415 for CVE-2025-40130",
"url": "https://bugzilla.suse.com/1253415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40130"
},
{
"cve": "CVE-2025-40160",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40160"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/events: Return -EEXIST for bound VIRQs\n\nChange find_virq() to return -EEXIST when a VIRQ is bound to a\ndifferent CPU than the one passed in. With that, remove the BUG_ON()\nfrom bind_virq_to_irq() to propogate the error upwards.\n\nSome VIRQs are per-cpu, but others are per-domain or global. Those must\nbe bound to CPU0 and can then migrate elsewhere. The lookup for\nper-domain and global will probably fail when migrated off CPU 0,\nespecially when the current CPU is tracked. This now returns -EEXIST\ninstead of BUG_ON().\n\nA second call to bind a per-domain or global VIRQ is not expected, but\nmake it non-fatal to avoid trying to look up the irq, since we don\u0027t\nknow which per_cpu(virq_to_irq) it will be in.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40160",
"url": "https://www.suse.com/security/cve/CVE-2025-40160"
},
{
"category": "external",
"summary": "SUSE Bug 1253400 for CVE-2025-40160",
"url": "https://bugzilla.suse.com/1253400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "low"
}
],
"title": "CVE-2025-40160"
},
{
"cve": "CVE-2025-40167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: detect invalid INLINE_DATA + EXTENTS flag combination\n\nsyzbot reported a BUG_ON in ext4_es_cache_extent() when opening a verity\nfile on a corrupted ext4 filesystem mounted without a journal.\n\nThe issue is that the filesystem has an inode with both the INLINE_DATA\nand EXTENTS flags set:\n\n EXT4-fs error (device loop0): ext4_cache_extents:545: inode #15:\n comm syz.0.17: corrupted extent tree: lblk 0 \u003c prev 66\n\nInvestigation revealed that the inode has both flags set:\n DEBUG: inode 15 - flag=1, i_inline_off=164, has_inline=1, extents_flag=1\n\nThis is an invalid combination since an inode should have either:\n- INLINE_DATA: data stored directly in the inode\n- EXTENTS: data stored in extent-mapped blocks\n\nHaving both flags causes ext4_has_inline_data() to return true, skipping\nextent tree validation in __ext4_iget(). The unvalidated out-of-order\nextents then trigger a BUG_ON in ext4_es_cache_extent() due to integer\nunderflow when calculating hole sizes.\n\nFix this by detecting this invalid flag combination early in ext4_iget()\nand rejecting the corrupted inode.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40167",
"url": "https://www.suse.com/security/cve/CVE-2025-40167"
},
{
"category": "external",
"summary": "SUSE Bug 1253458 for CVE-2025-40167",
"url": "https://bugzilla.suse.com/1253458"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40167"
},
{
"cve": "CVE-2025-40170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: use dst_dev_rcu() in sk_setup_caps()\n\nUse RCU to protect accesses to dst-\u003edev from sk_setup_caps()\nand sk_dst_gso_max_size().\n\nAlso use dst_dev_rcu() in ip6_dst_mtu_maybe_forward(),\nand ip_dst_mtu_maybe_forward().\n\nip4_dst_hoplimit() can use dst_dev_net_rcu().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40170",
"url": "https://www.suse.com/security/cve/CVE-2025-40170"
},
{
"category": "external",
"summary": "SUSE Bug 1253413 for CVE-2025-40170",
"url": "https://bugzilla.suse.com/1253413"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40170"
},
{
"cve": "CVE-2025-40179",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40179"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: verify orphan file size is not too big\n\nIn principle orphan file can be arbitrarily large. However orphan replay\nneeds to traverse it all and we also pin all its buffers in memory. Thus\nfilesystems with absurdly large orphan files can lead to big amounts of\nmemory consumed. Limit orphan file size to a sane value and also use\nkvmalloc() for allocating array of block descriptor structures to avoid\nlarge order allocations for sane but large orphan files.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40179",
"url": "https://www.suse.com/security/cve/CVE-2025-40179"
},
{
"category": "external",
"summary": "SUSE Bug 1253442 for CVE-2025-40179",
"url": "https://bugzilla.suse.com/1253442"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40179"
},
{
"cve": "CVE-2025-40190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: guard against EA inode refcount underflow in xattr update\n\nsyzkaller found a path where ext4_xattr_inode_update_ref() reads an EA\ninode refcount that is already \u003c= 0 and then applies ref_change (often\n-1). That lets the refcount underflow and we proceed with a bogus value,\ntriggering errors like:\n\n EXT4-fs error: EA inode \u003cn\u003e ref underflow: ref_count=-1 ref_change=-1\n EXT4-fs warning: ea_inode dec ref err=-117\n\nMake the invariant explicit: if the current refcount is non-positive,\ntreat this as on-disk corruption, emit ext4_error_inode(), and fail the\noperation with -EFSCORRUPTED instead of updating the refcount. Delete the\nWARN_ONCE() as negative refcounts are now impossible; keep error reporting\nin ext4_error_inode().\n\nThis prevents the underflow and the follow-on orphan/cleanup churn.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40190",
"url": "https://www.suse.com/security/cve/CVE-2025-40190"
},
{
"category": "external",
"summary": "SUSE Bug 1253623 for CVE-2025-40190",
"url": "https://bugzilla.suse.com/1253623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40190"
},
{
"cve": "CVE-2025-40209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix memory leak of qgroup_list in btrfs_add_qgroup_relation\n\nWhen btrfs_add_qgroup_relation() is called with invalid qgroup levels\n(src \u003e= dst), the function returns -EINVAL directly without freeing the\npreallocated qgroup_list structure passed by the caller. This causes a\nmemory leak because the caller unconditionally sets the pointer to NULL\nafter the call, preventing any cleanup.\n\nThe issue occurs because the level validation check happens before the\nmutex is acquired and before any error handling path that would free\nthe prealloc pointer. On this early return, the cleanup code at the\n\u0027out\u0027 label (which includes kfree(prealloc)) is never reached.\n\nIn btrfs_ioctl_qgroup_assign(), the code pattern is:\n\n prealloc = kzalloc(sizeof(*prealloc), GFP_KERNEL);\n ret = btrfs_add_qgroup_relation(trans, sa-\u003esrc, sa-\u003edst, prealloc);\n prealloc = NULL; // Always set to NULL regardless of return value\n ...\n kfree(prealloc); // This becomes kfree(NULL), does nothing\n\nWhen the level check fails, \u0027prealloc\u0027 is never freed by either the\ncallee or the caller, resulting in a 64-byte memory leak per failed\noperation. This can be triggered repeatedly by an unprivileged user\nwith access to a writable btrfs mount, potentially exhausting kernel\nmemory.\n\nFix this by freeing prealloc before the early return, ensuring prealloc\nis always freed on all error paths.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40209",
"url": "https://www.suse.com/security/cve/CVE-2025-40209"
},
{
"category": "external",
"summary": "SUSE Bug 1254128 for CVE-2025-40209",
"url": "https://bugzilla.suse.com/1254128"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40209"
},
{
"cve": "CVE-2025-40211",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40211"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: video: Fix use-after-free in acpi_video_switch_brightness()\n\nThe switch_brightness_work delayed work accesses device-\u003ebrightness\nand device-\u003ebacklight, freed by acpi_video_dev_unregister_backlight()\nduring device removal.\n\nIf the work executes after acpi_video_bus_unregister_backlight()\nfrees these resources, it causes a use-after-free when\nacpi_video_switch_brightness() dereferences device-\u003ebrightness or\ndevice-\u003ebacklight.\n\nFix this by calling cancel_delayed_work_sync() for each device\u0027s\nswitch_brightness_work in acpi_video_bus_remove_notify_handler()\nafter removing the notify handler that queues the work. This ensures\nthe work completes before the memory is freed.\n\n[ rjw: Changelog edit ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40211",
"url": "https://www.suse.com/security/cve/CVE-2025-40211"
},
{
"category": "external",
"summary": "SUSE Bug 1254126 for CVE-2025-40211",
"url": "https://bugzilla.suse.com/1254126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40211"
},
{
"cve": "CVE-2025-40212",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40212"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfsd: fix refcount leak in nfsd_set_fh_dentry()\n\nnfsd exports a \"pseudo root filesystem\" which is used by NFSv4 to find\nthe various exported filesystems using LOOKUP requests from a known root\nfilehandle. NFSv3 uses the MOUNT protocol to find those exported\nfilesystems and so is not given access to the pseudo root filesystem.\n\nIf a v3 (or v2) client uses a filehandle from that filesystem,\nnfsd_set_fh_dentry() will report an error, but still stores the export\nin \"struct svc_fh\" even though it also drops the reference (exp_put()).\nThis means that when fh_put() is called an extra reference will be dropped\nwhich can lead to use-after-free and possible denial of service.\n\nNormal NFS usage will not provide a pseudo-root filehandle to a v3\nclient. This bug can only be triggered by the client synthesising an\nincorrect filehandle.\n\nTo fix this we move the assignments to the svc_fh later, after all\npossible error cases have been detected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40212",
"url": "https://www.suse.com/security/cve/CVE-2025-40212"
},
{
"category": "external",
"summary": "SUSE Bug 1254195 for CVE-2025-40212",
"url": "https://bugzilla.suse.com/1254195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40212"
},
{
"cve": "CVE-2025-40213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: fix crash in set_mesh_sync and set_mesh_complete\n\nThere is a BUG: KASAN: stack-out-of-bounds in set_mesh_sync due to\nmemcpy from badly declared on-stack flexible array.\n\nAnother crash is in set_mesh_complete() due to double list_del via\nmgmt_pending_valid + mgmt_pending_remove.\n\nUse DEFINE_FLEX to declare the flexible array right, and don\u0027t memcpy\noutside bounds.\n\nAs mgmt_pending_valid removes the cmd from list, use mgmt_pending_free,\nand also report status on error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40213",
"url": "https://www.suse.com/security/cve/CVE-2025-40213"
},
{
"category": "external",
"summary": "SUSE Bug 1253674 for CVE-2025-40213",
"url": "https://bugzilla.suse.com/1253674"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40213"
},
{
"cve": "CVE-2025-40214",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40214"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naf_unix: Initialise scc_index in unix_add_edge().\n\nQuang Le reported that the AF_UNIX GC could garbage-collect a\nreceive queue of an alive in-flight socket, with a nice repro.\n\nThe repro consists of three stages.\n\n 1)\n 1-a. Create a single cyclic reference with many sockets\n 1-b. close() all sockets\n 1-c. Trigger GC\n\n 2)\n 2-a. Pass sk-A to an embryo sk-B\n 2-b. Pass sk-X to sk-X\n 2-c. Trigger GC\n\n 3)\n 3-a. accept() the embryo sk-B\n 3-b. Pass sk-B to sk-C\n 3-c. close() the in-flight sk-A\n 3-d. Trigger GC\n\nAs of 2-c, sk-A and sk-X are linked to unix_unvisited_vertices,\nand unix_walk_scc() groups them into two different SCCs:\n\n unix_sk(sk-A)-\u003evertex-\u003escc_index = 2 (UNIX_VERTEX_INDEX_START)\n unix_sk(sk-X)-\u003evertex-\u003escc_index = 3\n\nOnce GC completes, unix_graph_grouped is set to true.\nAlso, unix_graph_maybe_cyclic is set to true due to sk-X\u0027s\ncyclic self-reference, which makes close() trigger GC.\n\nAt 3-b, unix_add_edge() allocates unix_sk(sk-B)-\u003evertex and\nlinks it to unix_unvisited_vertices.\n\nunix_update_graph() is called at 3-a. and 3-b., but neither\nunix_graph_grouped nor unix_graph_maybe_cyclic is changed\nbecause both sk-B\u0027s listener and sk-C are not in-flight.\n\n3-c decrements sk-A\u0027s file refcnt to 1.\n\nSince unix_graph_grouped is true at 3-d, unix_walk_scc_fast()\nis finally called and iterates 3 sockets sk-A, sk-B, and sk-X:\n\n sk-A -\u003e sk-B (-\u003e sk-C)\n sk-X -\u003e sk-X\n\nThis is totally fine. All of them are not yet close()d and\nshould be grouped into different SCCs.\n\nHowever, unix_vertex_dead() misjudges that sk-A and sk-B are\nin the same SCC and sk-A is dead.\n\n unix_sk(sk-A)-\u003escc_index == unix_sk(sk-B)-\u003escc_index \u003c-- Wrong!\n \u0026\u0026\n sk-A\u0027s file refcnt == unix_sk(sk-A)-\u003evertex-\u003eout_degree\n ^-- 1 in-flight count for sk-B\n -\u003e sk-A is dead !?\n\nThe problem is that unix_add_edge() does not initialise scc_index.\n\nStage 1) is used for heap spraying, making a newly allocated\nvertex have vertex-\u003escc_index == 2 (UNIX_VERTEX_INDEX_START)\nset by unix_walk_scc() at 1-c.\n\nLet\u0027s track the max SCC index from the previous unix_walk_scc()\ncall and assign the max + 1 to a new vertex\u0027s scc_index.\n\nThis way, we can continue to avoid Tarjan\u0027s algorithm while\npreventing misjudgments.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40214",
"url": "https://www.suse.com/security/cve/CVE-2025-40214"
},
{
"category": "external",
"summary": "SUSE Bug 1254961 for CVE-2025-40214",
"url": "https://bugzilla.suse.com/1254961"
},
{
"category": "external",
"summary": "SUSE Bug 1255052 for CVE-2025-40214",
"url": "https://bugzilla.suse.com/1255052"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40214"
},
{
"cve": "CVE-2025-40215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: delete x-\u003etunnel as we delete x\n\nThe ipcomp fallback tunnels currently get deleted (from the various\nlists and hashtables) as the last user state that needed that fallback\nis destroyed (not deleted). If a reference to that user state still\nexists, the fallback state will remain on the hashtables/lists,\ntriggering the WARN in xfrm_state_fini. Because of those remaining\nreferences, the fix in commit f75a2804da39 (\"xfrm: destroy xfrm_state\nsynchronously on net exit path\") is not complete.\n\nWe recently fixed one such situation in TCP due to defered freeing of\nskbs (commit 9b6412e6979f (\"tcp: drop secpath at the same time as we\ncurrently drop dst\")). This can also happen due to IP reassembly: skbs\nwith a secpath remain on the reassembly queue until netns\ndestruction. If we can\u0027t guarantee that the queues are flushed by the\ntime xfrm_state_fini runs, there may still be references to a (user)\nxfrm_state, preventing the timely deletion of the corresponding\nfallback state.\n\nInstead of chasing each instance of skbs holding a secpath one by one,\nthis patch fixes the issue directly within xfrm, by deleting the\nfallback state as soon as the last user state depending on it has been\ndeleted. Destruction will still happen when the final reference is\ndropped.\n\nA separate lockdep class for the fallback state is required since\nwe\u0027re going to lock x-\u003etunnel while x is locked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40215",
"url": "https://www.suse.com/security/cve/CVE-2025-40215"
},
{
"category": "external",
"summary": "SUSE Bug 1254959 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1254959"
},
{
"category": "external",
"summary": "SUSE Bug 1255054 for CVE-2025-40215",
"url": "https://bugzilla.suse.com/1255054"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40215"
},
{
"cve": "CVE-2025-40218",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40218"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/damon/vaddr: do not repeat pte_offset_map_lock() until success\n\nDAMON\u0027s virtual address space operation set implementation (vaddr) calls\npte_offset_map_lock() inside the page table walk callback function. This\nis for reading and writing page table accessed bits. If\npte_offset_map_lock() fails, it retries by returning the page table walk\ncallback function with ACTION_AGAIN.\n\npte_offset_map_lock() can continuously fail if the target is a pmd\nmigration entry, though. Hence it could cause an infinite page table walk\nif the migration cannot be done until the page table walk is finished. \nThis indeed caused a soft lockup when CPU hotplugging and DAMON were\nrunning in parallel.\n\nAvoid the infinite loop by simply not retrying the page table walk. DAMON\nis promising only a best-effort accuracy, so missing access to such pages\nis no problem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40218",
"url": "https://www.suse.com/security/cve/CVE-2025-40218"
},
{
"category": "external",
"summary": "SUSE Bug 1254964 for CVE-2025-40218",
"url": "https://bugzilla.suse.com/1254964"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40218"
},
{
"cve": "CVE-2025-40219",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40219"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV\n\nBefore disabling SR-IOV via config space accesses to the parent PF,\nsriov_disable() first removes the PCI devices representing the VFs.\n\nSince commit 9d16947b7583 (\"PCI: Add global pci_lock_rescan_remove()\")\nsuch removal operations are serialized against concurrent remove and\nrescan using the pci_rescan_remove_lock. No such locking was ever added\nin sriov_disable() however. In particular when commit 18f9e9d150fc\n(\"PCI/IOV: Factor out sriov_add_vfs()\") factored out the PCI device\nremoval into sriov_del_vfs() there was still no locking around the\npci_iov_remove_virtfn() calls.\n\nOn s390 the lack of serialization in sriov_disable() may cause double\nremove and list corruption with the below (amended) trace being observed:\n\n PSW: 0704c00180000000 0000000c914e4b38 (klist_put+56)\n GPRS: 000003800313fb48 0000000000000000 0000000100000001 0000000000000001\n\t00000000f9b520a8 0000000000000000 0000000000002fbd 00000000f4cc9480\n\t0000000000000001 0000000000000000 0000000000000000 0000000180692828\n\t00000000818e8000 000003800313fe2c 000003800313fb20 000003800313fad8\n #0 [3800313fb20] device_del at c9158ad5c\n #1 [3800313fb88] pci_remove_bus_device at c915105ba\n #2 [3800313fbd0] pci_iov_remove_virtfn at c9152f198\n #3 [3800313fc28] zpci_iov_remove_virtfn at c90fb67c0\n #4 [3800313fc60] zpci_bus_remove_device at c90fb6104\n #5 [3800313fca0] __zpci_event_availability at c90fb3dca\n #6 [3800313fd08] chsc_process_sei_nt0 at c918fe4a2\n #7 [3800313fd60] crw_collect_info at c91905822\n #8 [3800313fe10] kthread at c90feb390\n #9 [3800313fe68] __ret_from_fork at c90f6aa64\n #10 [3800313fe98] ret_from_fork at c9194f3f2.\n\nThis is because in addition to sriov_disable() removing the VFs, the\nplatform also generates hot-unplug events for the VFs. This being the\nreverse operation to the hotplug events generated by sriov_enable() and\nhandled via pdev-\u003eno_vf_scan. And while the event processing takes\npci_rescan_remove_lock and checks whether the struct pci_dev still exists,\nthe lack of synchronization makes this checking racy.\n\nOther races may also be possible of course though given that this lack of\nlocking persisted so long observable races seem very rare. Even on s390 the\nlist corruption was only observed with certain devices since the platform\nevents are only triggered by config accesses after the removal, so as long\nas the removal finished synchronously they would not race. Either way the\nlocking is missing so fix this by adding it to the sriov_del_vfs() helper.\n\nJust like PCI rescan-remove, locking is also missing in sriov_add_vfs()\nincluding for the error case where pci_stop_and_remove_bus_device() is\ncalled without the PCI rescan-remove lock being held. Even in the non-error\ncase, adding new PCI devices and buses should be serialized via the PCI\nrescan-remove lock. Add the necessary locking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40219",
"url": "https://www.suse.com/security/cve/CVE-2025-40219"
},
{
"category": "external",
"summary": "SUSE Bug 1254518 for CVE-2025-40219",
"url": "https://bugzilla.suse.com/1254518"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40219"
},
{
"cve": "CVE-2025-40220",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40220"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfuse: fix livelock in synchronous file put from fuseblk workers\n\nI observed a hang when running generic/323 against a fuseblk server.\nThis test opens a file, initiates a lot of AIO writes to that file\ndescriptor, and closes the file descriptor before the writes complete.\nUnsurprisingly, the AIO exerciser threads are mostly stuck waiting for\nresponses from the fuseblk server:\n\n# cat /proc/372265/task/372313/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_do_getattr+0xfc/0x1f0 [fuse]\n[\u003c0\u003e] fuse_file_read_iter+0xbe/0x1c0 [fuse]\n[\u003c0\u003e] aio_read+0x130/0x1e0\n[\u003c0\u003e] io_submit_one+0x542/0x860\n[\u003c0\u003e] __x64_sys_io_submit+0x98/0x1a0\n[\u003c0\u003e] do_syscall_64+0x37/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nBut the /weird/ part is that the fuseblk server threads are waiting for\nresponses from itself:\n\n# cat /proc/372210/task/372232/stack\n[\u003c0\u003e] request_wait_answer+0x1fe/0x2a0 [fuse]\n[\u003c0\u003e] __fuse_simple_request+0xd3/0x2b0 [fuse]\n[\u003c0\u003e] fuse_file_put+0x9a/0xd0 [fuse]\n[\u003c0\u003e] fuse_release+0x36/0x50 [fuse]\n[\u003c0\u003e] __fput+0xec/0x2b0\n[\u003c0\u003e] task_work_run+0x55/0x90\n[\u003c0\u003e] syscall_exit_to_user_mode+0xe9/0x100\n[\u003c0\u003e] do_syscall_64+0x43/0xf0\n[\u003c0\u003e] entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nThe fuseblk server is fuse2fs so there\u0027s nothing all that exciting in\nthe server itself. So why is the fuse server calling fuse_file_put?\nThe commit message for the fstest sheds some light on that:\n\n\"By closing the file descriptor before calling io_destroy, you pretty\nmuch guarantee that the last put on the ioctx will be done in interrupt\ncontext (during I/O completion).\n\nAha. AIO fgets a new struct file from the fd when it queues the ioctx.\nThe completion of the FUSE_WRITE command from userspace causes the fuse\nserver to call the AIO completion function. The completion puts the\nstruct file, queuing a delayed fput to the fuse server task. When the\nfuse server task returns to userspace, it has to run the delayed fput,\nwhich in the case of a fuseblk server, it does synchronously.\n\nSending the FUSE_RELEASE command sychronously from fuse server threads\nis a bad idea because a client program can initiate enough simultaneous\nAIOs such that all the fuse server threads end up in delayed_fput, and\nnow there aren\u0027t any threads left to handle the queued fuse commands.\n\nFix this by only using asynchronous fputs when closing files, and leave\na comment explaining why.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40220",
"url": "https://www.suse.com/security/cve/CVE-2025-40220"
},
{
"category": "external",
"summary": "SUSE Bug 1254520 for CVE-2025-40220",
"url": "https://bugzilla.suse.com/1254520"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40220"
},
{
"cve": "CVE-2025-40221",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40221"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: pci: mg4b: fix uninitialized iio scan data\n\nFix potential leak of uninitialized stack data to userspace by ensuring\nthat the `scan` structure is zeroed before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40221",
"url": "https://www.suse.com/security/cve/CVE-2025-40221"
},
{
"category": "external",
"summary": "SUSE Bug 1254519 for CVE-2025-40221",
"url": "https://bugzilla.suse.com/1254519"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40221"
},
{
"cve": "CVE-2025-40223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: Fix use-after-free in hdm_disconnect\n\nhdm_disconnect() calls most_deregister_interface(), which eventually\nunregisters the MOST interface device with device_unregister(iface-\u003edev).\nIf that drops the last reference, the device core may call release_mdev()\nimmediately while hdm_disconnect() is still executing.\n\nThe old code also freed several mdev-owned allocations in\nhdm_disconnect() and then performed additional put_device() calls.\nDepending on refcount order, this could lead to use-after-free or\ndouble-free when release_mdev() ran (or when unregister paths also\nperformed puts).\n\nFix by moving the frees of mdev-owned allocations into release_mdev(),\nso they happen exactly once when the device is truly released, and by\ndropping the extra put_device() calls in hdm_disconnect() that are\nredundant after device_unregister() and most_deregister_interface().\n\nThis addresses the KASAN slab-use-after-free reported by syzbot in\nhdm_disconnect(). See report and stack traces in the bug link below.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40223",
"url": "https://www.suse.com/security/cve/CVE-2025-40223"
},
{
"category": "external",
"summary": "SUSE Bug 1254957 for CVE-2025-40223",
"url": "https://bugzilla.suse.com/1254957"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40223"
},
{
"cve": "CVE-2025-40225",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40225"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix kernel panic on partial unmap of a GPU VA region\n\nThis commit address a kernel panic issue that can happen if Userspace\ntries to partially unmap a GPU virtual region (aka drm_gpuva).\nThe VM_BIND interface allows partial unmapping of a BO.\n\nPanthor driver pre-allocates memory for the new drm_gpuva structures\nthat would be needed for the map/unmap operation, done using drm_gpuvm\nlayer. It expected that only one new drm_gpuva would be needed on umap\nbut a partial unmap can require 2 new drm_gpuva and that\u0027s why it\nended up doing a NULL pointer dereference causing a kernel panic.\n\nFollowing dump was seen when partial unmap was exercised.\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000078\n Mem abort info:\n ESR = 0x0000000096000046\n EC = 0x25: DABT (current EL), IL = 32 bits\n SET = 0, FnV = 0\n EA = 0, S1PTW = 0\n FSC = 0x06: level 2 translation fault\n Data abort info:\n ISV = 0, ISS = 0x00000046, ISS2 = 0x00000000\n CM = 0, WnR = 1, TnD = 0, TagAccess = 0\n GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n user pgtable: 4k pages, 48-bit VAs, pgdp=000000088a863000\n [000000000000078] pgd=080000088a842003, p4d=080000088a842003, pud=0800000884bf5003, pmd=0000000000000000\n Internal error: Oops: 0000000096000046 [#1] PREEMPT SMP\n \u003csnip\u003e\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : panthor_gpuva_sm_step_remap+0xe4/0x330 [panthor]\n lr : panthor_gpuva_sm_step_remap+0x6c/0x330 [panthor]\n sp : ffff800085d43970\n x29: ffff800085d43970 x28: ffff00080363e440 x27: ffff0008090c6000\n x26: 0000000000000030 x25: ffff800085d439f8 x24: ffff00080d402000\n x23: ffff800085d43b60 x22: ffff800085d439e0 x21: ffff00080abdb180\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000010\n x17: 6e656c202c303030 x16: 3666666666646466 x15: 393d61766f69202c\n x14: 312d3d7361203a70 x13: 303030323d6e656c x12: ffff80008324bf58\n x11: 0000000000000003 x10: 0000000000000002 x9 : ffff8000801a6a9c\n x8 : ffff00080360b300 x7 : 0000000000000000 x6 : 000000088aa35fc7\n x5 : fff1000080000000 x4 : ffff8000842ddd30 x3 : 0000000000000001\n x2 : 0000000100000000 x1 : 0000000000000001 x0 : 0000000000000078\n Call trace:\n panthor_gpuva_sm_step_remap+0xe4/0x330 [panthor]\n op_remap_cb.isra.22+0x50/0x80\n __drm_gpuvm_sm_unmap+0x10c/0x1c8\n drm_gpuvm_sm_unmap+0x40/0x60\n panthor_vm_exec_op+0xb4/0x3d0 [panthor]\n panthor_vm_bind_exec_sync_op+0x154/0x278 [panthor]\n panthor_ioctl_vm_bind+0x160/0x4a0 [panthor]\n drm_ioctl_kernel+0xbc/0x138\n drm_ioctl+0x240/0x500\n __arm64_sys_ioctl+0xb0/0xf8\n invoke_syscall+0x4c/0x110\n el0_svc_common.constprop.1+0x98/0xf8\n do_el0_svc+0x24/0x38\n el0_svc+0x40/0xf8\n el0t_64_sync_handler+0xa0/0xc8\n el0t_64_sync+0x174/0x178",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40225",
"url": "https://www.suse.com/security/cve/CVE-2025-40225"
},
{
"category": "external",
"summary": "SUSE Bug 1254827 for CVE-2025-40225",
"url": "https://bugzilla.suse.com/1254827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40225"
},
{
"cve": "CVE-2025-40226",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40226"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Account for failed debug initialization\n\nWhen the SCMI debug subsystem fails to initialize, the related debug root\nwill be missing, and the underlying descriptor will be NULL.\n\nHandle this fault condition in the SCMI debug helpers that maintain\nmetrics counters.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40226",
"url": "https://www.suse.com/security/cve/CVE-2025-40226"
},
{
"category": "external",
"summary": "SUSE Bug 1254821 for CVE-2025-40226",
"url": "https://bugzilla.suse.com/1254821"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40226"
},
{
"cve": "CVE-2025-40231",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40231"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: fix lock inversion in vsock_assign_transport()\n\nSyzbot reported a potential lock inversion deadlock between\nvsock_register_mutex and sk_lock-AF_VSOCK when vsock_linger() is called.\n\nThe issue was introduced by commit 687aa0c5581b (\"vsock: Fix\ntransport_* TOCTOU\") which added vsock_register_mutex locking in\nvsock_assign_transport() around the transport-\u003erelease() call, that can\ncall vsock_linger(). vsock_assign_transport() can be called with sk_lock\nheld. vsock_linger() calls sk_wait_event() that temporarily releases and\nre-acquires sk_lock. During this window, if another thread hold\nvsock_register_mutex while trying to acquire sk_lock, a circular\ndependency is created.\n\nFix this by releasing vsock_register_mutex before calling\ntransport-\u003erelease() and vsock_deassign_transport(). This is safe\nbecause we don\u0027t need to hold vsock_register_mutex while releasing the\nold transport, and we ensure the new transport won\u0027t disappear by\nobtaining a module reference first via try_module_get().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40231",
"url": "https://www.suse.com/security/cve/CVE-2025-40231"
},
{
"category": "external",
"summary": "SUSE Bug 1254815 for CVE-2025-40231",
"url": "https://bugzilla.suse.com/1254815"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40231"
},
{
"cve": "CVE-2025-40233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: clear extent cache after moving/defragmenting extents\n\nThe extent map cache can become stale when extents are moved or\ndefragmented, causing subsequent operations to see outdated extent flags. \nThis triggers a BUG_ON in ocfs2_refcount_cal_cow_clusters().\n\nThe problem occurs when:\n1. copy_file_range() creates a reflinked extent with OCFS2_EXT_REFCOUNTED\n2. ioctl(FITRIM) triggers ocfs2_move_extents()\n3. __ocfs2_move_extents_range() reads and caches the extent (flags=0x2)\n4. ocfs2_move_extent()/ocfs2_defrag_extent() calls __ocfs2_move_extent()\n which clears OCFS2_EXT_REFCOUNTED flag on disk (flags=0x0)\n5. The extent map cache is not invalidated after the move\n6. Later write() operations read stale cached flags (0x2) but disk has\n updated flags (0x0), causing a mismatch\n7. BUG_ON(!(rec-\u003ee_flags \u0026 OCFS2_EXT_REFCOUNTED)) triggers\n\nFix by clearing the extent map cache after each extent move/defrag\noperation in __ocfs2_move_extents_range(). This ensures subsequent\noperations read fresh extent data from disk.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40233",
"url": "https://www.suse.com/security/cve/CVE-2025-40233"
},
{
"category": "external",
"summary": "SUSE Bug 1254813 for CVE-2025-40233",
"url": "https://bugzilla.suse.com/1254813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40233"
},
{
"cve": "CVE-2025-40235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots()\n\nIf fs_info-\u003esuper_copy or fs_info-\u003esuper_for_commit allocated failed in\nbtrfs_get_tree_subvol(), then no need to call btrfs_free_fs_info().\nOtherwise btrfs_check_leaked_roots() would access NULL pointer because\nfs_info-\u003eallocated_roots had not been initialised.\n\nsyzkaller reported the following information:\n ------------[ cut here ]------------\n BUG: unable to handle page fault for address: fffffffffffffbb0\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 64c9067 P4D 64c9067 PUD 64cb067 PMD 0\n Oops: Oops: 0000 [#1] SMP KASAN PTI\n CPU: 0 UID: 0 PID: 1402 Comm: syz.1.35 Not tainted 6.15.8 #4 PREEMPT(lazy)\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), (...)\n RIP: 0010:arch_atomic_read arch/x86/include/asm/atomic.h:23 [inline]\n RIP: 0010:raw_atomic_read include/linux/atomic/atomic-arch-fallback.h:457 [inline]\n RIP: 0010:atomic_read include/linux/atomic/atomic-instrumented.h:33 [inline]\n RIP: 0010:refcount_read include/linux/refcount.h:170 [inline]\n RIP: 0010:btrfs_check_leaked_roots+0x18f/0x2c0 fs/btrfs/disk-io.c:1230\n [...]\n Call Trace:\n \u003cTASK\u003e\n btrfs_free_fs_info+0x310/0x410 fs/btrfs/disk-io.c:1280\n btrfs_get_tree_subvol+0x592/0x6b0 fs/btrfs/super.c:2029\n btrfs_get_tree+0x63/0x80 fs/btrfs/super.c:2097\n vfs_get_tree+0x98/0x320 fs/super.c:1759\n do_new_mount+0x357/0x660 fs/namespace.c:3899\n path_mount+0x716/0x19c0 fs/namespace.c:4226\n do_mount fs/namespace.c:4239 [inline]\n __do_sys_mount fs/namespace.c:4450 [inline]\n __se_sys_mount fs/namespace.c:4427 [inline]\n __x64_sys_mount+0x28c/0x310 fs/namespace.c:4427\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0x92/0x180 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n RIP: 0033:0x7f032eaffa8d\n [...]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40235",
"url": "https://www.suse.com/security/cve/CVE-2025-40235"
},
{
"category": "external",
"summary": "SUSE Bug 1254808 for CVE-2025-40235",
"url": "https://bugzilla.suse.com/1254808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40235"
},
{
"cve": "CVE-2025-40237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/notify: call exportfs_encode_fid with s_umount\n\nCalling intotify_show_fdinfo() on fd watching an overlayfs inode, while\nthe overlayfs is being unmounted, can lead to dereferencing NULL ptr.\n\nThis issue was found by syzkaller.\n\nRace Condition Diagram:\n\nThread 1 Thread 2\n-------- --------\n\ngeneric_shutdown_super()\n shrink_dcache_for_umount\n sb-\u003es_root = NULL\n\n |\n | vfs_read()\n | inotify_fdinfo()\n | * inode get from mark *\n | show_mark_fhandle(m, inode)\n | exportfs_encode_fid(inode, ..)\n | ovl_encode_fh(inode, ..)\n | ovl_check_encode_origin(inode)\n | * deref i_sb-\u003es_root *\n |\n |\n v\n fsnotify_sb_delete(sb)\n\nWhich then leads to:\n\n[ 32.133461] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP DEBUG_PAGEALLOC KASAN NOPTI\n[ 32.134438] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]\n[ 32.135032] CPU: 1 UID: 0 PID: 4468 Comm: systemd-coredum Not tainted 6.17.0-rc6 #22 PREEMPT(none)\n\n\u003csnip registers, unreliable trace\u003e\n\n[ 32.143353] Call Trace:\n[ 32.143732] ovl_encode_fh+0xd5/0x170\n[ 32.144031] exportfs_encode_inode_fh+0x12f/0x300\n[ 32.144425] show_mark_fhandle+0xbe/0x1f0\n[ 32.145805] inotify_fdinfo+0x226/0x2d0\n[ 32.146442] inotify_show_fdinfo+0x1c5/0x350\n[ 32.147168] seq_show+0x530/0x6f0\n[ 32.147449] seq_read_iter+0x503/0x12a0\n[ 32.148419] seq_read+0x31f/0x410\n[ 32.150714] vfs_read+0x1f0/0x9e0\n[ 32.152297] ksys_read+0x125/0x240\n\nIOW ovl_check_encode_origin derefs inode-\u003ei_sb-\u003es_root, after it was set\nto NULL in the unmount path.\n\nFix it by protecting calling exportfs_encode_fid() from\nshow_mark_fhandle() with s_umount lock.\n\nThis form of fix was suggested by Amir in [1].\n\n[1]: https://lore.kernel.org/all/CAOQ4uxhbDwhb+2Brs1UdkoF0a3NSdBAOQPNfEHjahrgoKJpLEw@mail.gmail.com/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40237",
"url": "https://www.suse.com/security/cve/CVE-2025-40237"
},
{
"category": "external",
"summary": "SUSE Bug 1254809 for CVE-2025-40237",
"url": "https://bugzilla.suse.com/1254809"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40237"
},
{
"cve": "CVE-2025-40238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Fix IPsec cleanup over MPV device\n\nWhen we do mlx5e_detach_netdev() we eventually disable blocking events\nnotifier, among those events are IPsec MPV events from IB to core.\n\nSo before disabling those blocking events, make sure to also unregister\nthe devcom device and mark all this device operations as complete,\nin order to prevent the other device from using invalid netdev\nduring future devcom events which could cause the trace below.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000010\nPGD 146427067 P4D 146427067 PUD 146488067 PMD 0\nOops: Oops: 0000 [#1] SMP\nCPU: 1 UID: 0 PID: 7735 Comm: devlink Tainted: GW 6.12.0-rc6_for_upstream_min_debug_2024_11_08_00_46 #1\nTainted: [W]=WARN\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\nCode: 00 01 48 83 05 23 32 1e 00 01 41 b8 ed ff ff ff e9 60 ff ff ff 48 83 05 00 32 1e 00 01 eb e3 66 0f 1f 44 00 00 0f 1f 44 00 00 \u003c48\u003e 8b 47 10 48 83 05 5f 32 1e 00 01 48 8b 50 40 48 85 d2 74 05 40\nRSP: 0018:ffff88811a5c35f8 EFLAGS: 00010206\nRAX: ffff888106e8ab80 RBX: ffff888107d7e200 RCX: ffff88810d6f0a00\nRDX: ffff88810d6f0a00 RSI: 0000000000000001 RDI: 0000000000000000\nRBP: ffff88811a17e620 R08: 0000000000000040 R09: 0000000000000000\nR10: ffff88811a5c3618 R11: 0000000de85d51bd R12: ffff88811a17e600\nR13: ffff88810d6f0a00 R14: 0000000000000000 R15: ffff8881034bda80\nFS: 00007f27bdf89180(0000) GS:ffff88852c880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000010 CR3: 000000010f159005 CR4: 0000000000372eb0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x60\n ? page_fault_oops+0x150/0x3e0\n ? exc_page_fault+0x74/0x130\n ? asm_exc_page_fault+0x22/0x30\n ? mlx5_devcom_comp_set_ready+0x5/0x40 [mlx5_core]\n mlx5e_devcom_event_mpv+0x42/0x60 [mlx5_core]\n mlx5_devcom_send_event+0x8c/0x170 [mlx5_core]\n blocking_event+0x17b/0x230 [mlx5_core]\n notifier_call_chain+0x35/0xa0\n blocking_notifier_call_chain+0x3d/0x60\n mlx5_blocking_notifier_call_chain+0x22/0x30 [mlx5_core]\n mlx5_core_mp_event_replay+0x12/0x20 [mlx5_core]\n mlx5_ib_bind_slave_port+0x228/0x2c0 [mlx5_ib]\n mlx5_ib_stage_init_init+0x664/0x9d0 [mlx5_ib]\n ? idr_alloc_cyclic+0x50/0xb0\n ? __kmalloc_cache_noprof+0x167/0x340\n ? __kmalloc_noprof+0x1a7/0x430\n __mlx5_ib_add+0x34/0xd0 [mlx5_ib]\n mlx5r_probe+0xe9/0x310 [mlx5_ib]\n ? kernfs_add_one+0x107/0x150\n ? __mlx5_ib_add+0xd0/0xd0 [mlx5_ib]\n auxiliary_bus_probe+0x3e/0x90\n really_probe+0xc5/0x3a0\n ? driver_probe_device+0x90/0x90\n __driver_probe_device+0x80/0x160\n driver_probe_device+0x1e/0x90\n __device_attach_driver+0x7d/0x100\n bus_for_each_drv+0x80/0xd0\n __device_attach+0xbc/0x1f0\n bus_probe_device+0x86/0xa0\n device_add+0x62d/0x830\n __auxiliary_device_add+0x3b/0xa0\n ? auxiliary_device_init+0x41/0x90\n add_adev+0xd1/0x150 [mlx5_core]\n mlx5_rescan_drivers_locked+0x21c/0x300 [mlx5_core]\n esw_mode_change+0x6c/0xc0 [mlx5_core]\n mlx5_devlink_eswitch_mode_set+0x21e/0x640 [mlx5_core]\n devlink_nl_eswitch_set_doit+0x60/0xe0\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x180/0x2b0\n ? devlink_get_from_attrs_lock+0x170/0x170\n ? devlink_nl_eswitch_get_doit+0x290/0x290\n ? devlink_nl_pre_doit_port_optional+0x50/0x50\n ? genl_family_rcv_msg_dumpit+0xf0/0xf0\n netlink_rcv_skb+0x54/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x1fc/0x2d0\n netlink_sendmsg+0x1e4/0x410\n __sock_sendmsg+0x38/0x60\n ? sockfd_lookup_light+0x12/0x60\n __sys_sendto+0x105/0x160\n ? __sys_recvmsg+0x4e/0x90\n __x64_sys_sendto+0x20/0x30\n do_syscall_64+0x4c/0x100\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\nRIP: 0033:0x7f27bc91b13a\nCode: bb 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 8b 05 fa 96 2c 00 45 89 c9 4c 63 d1 48 63 ff 85 c0 75 15 b8 2c 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40238",
"url": "https://www.suse.com/security/cve/CVE-2025-40238"
},
{
"category": "external",
"summary": "SUSE Bug 1254871 for CVE-2025-40238",
"url": "https://bugzilla.suse.com/1254871"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40238"
},
{
"cve": "CVE-2025-40239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: phy: micrel: always set shared-\u003ephydev for LAN8814\n\nCurrently, during the LAN8814 PTP probe shared-\u003ephydev is only set if PTP\nclock gets actually set, otherwise the function will return before setting\nit.\n\nThis is an issue as shared-\u003ephydev is unconditionally being used when IRQ\nis being handled, especially in lan8814_gpio_process_cap and since it was\nnot set it will cause a NULL pointer exception and crash the kernel.\n\nSo, simply always set shared-\u003ephydev to avoid the NULL pointer exception.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40239",
"url": "https://www.suse.com/security/cve/CVE-2025-40239"
},
{
"category": "external",
"summary": "SUSE Bug 1254868 for CVE-2025-40239",
"url": "https://bugzilla.suse.com/1254868"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40239"
},
{
"cve": "CVE-2025-40240",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40240"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: avoid NULL dereference when chunk data buffer is missing\n\nchunk-\u003eskb pointer is dereferenced in the if-block where it\u0027s supposed\nto be NULL only.\n\nchunk-\u003eskb can only be NULL if chunk-\u003ehead_skb is not. Check for frag_list\ninstead and do it just before replacing chunk-\u003eskb. We\u0027re sure that\notherwise chunk-\u003eskb is non-NULL because of outer if() condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40240",
"url": "https://www.suse.com/security/cve/CVE-2025-40240"
},
{
"category": "external",
"summary": "SUSE Bug 1254869 for CVE-2025-40240",
"url": "https://bugzilla.suse.com/1254869"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40240"
},
{
"cve": "CVE-2025-40242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40242"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix unlikely race in gdlm_put_lock\n\nIn gdlm_put_lock(), there is a small window of time in which the\nDFL_UNMOUNT flag has been set but the lockspace hasn\u0027t been released,\nyet. In that window, dlm may still call gdlm_ast() and gdlm_bast().\nTo prevent it from dereferencing freed glock objects, only free the\nglock if the lockspace has actually been released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40242",
"url": "https://www.suse.com/security/cve/CVE-2025-40242"
},
{
"category": "external",
"summary": "SUSE Bug 1255075 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255075"
},
{
"category": "external",
"summary": "SUSE Bug 1255076 for CVE-2025-40242",
"url": "https://bugzilla.suse.com/1255076"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40242"
},
{
"cve": "CVE-2025-40246",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40246"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfs: fix out of bounds memory read error in symlink repair\n\nxfs/286 produced this report on my test fleet:\n\n ==================================================================\n BUG: KFENCE: out-of-bounds read in memcpy_orig+0x54/0x110\n\n Out-of-bounds read at 0xffff88843fe9e038 (184B right of kfence-#184):\n memcpy_orig+0x54/0x110\n xrep_symlink_salvage_inline+0xb3/0xf0 [xfs]\n xrep_symlink_salvage+0x100/0x110 [xfs]\n xrep_symlink+0x2e/0x80 [xfs]\n xrep_attempt+0x61/0x1f0 [xfs]\n xfs_scrub_metadata+0x34f/0x5c0 [xfs]\n xfs_ioc_scrubv_metadata+0x387/0x560 [xfs]\n xfs_file_ioctl+0xe23/0x10e0 [xfs]\n __x64_sys_ioctl+0x76/0xc0\n do_syscall_64+0x4e/0x1e0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n kfence-#184: 0xffff88843fe9df80-0xffff88843fe9dfea, size=107, cache=kmalloc-128\n\n allocated by task 3470 on cpu 1 at 263329.131592s (192823.508886s ago):\n xfs_init_local_fork+0x79/0xe0 [xfs]\n xfs_iformat_local+0xa4/0x170 [xfs]\n xfs_iformat_data_fork+0x148/0x180 [xfs]\n xfs_inode_from_disk+0x2cd/0x480 [xfs]\n xfs_iget+0x450/0xd60 [xfs]\n xfs_bulkstat_one_int+0x6b/0x510 [xfs]\n xfs_bulkstat_iwalk+0x1e/0x30 [xfs]\n xfs_iwalk_ag_recs+0xdf/0x150 [xfs]\n xfs_iwalk_run_callbacks+0xb9/0x190 [xfs]\n xfs_iwalk_ag+0x1dc/0x2f0 [xfs]\n xfs_iwalk_args.constprop.0+0x6a/0x120 [xfs]\n xfs_iwalk+0xa4/0xd0 [xfs]\n xfs_bulkstat+0xfa/0x170 [xfs]\n xfs_ioc_fsbulkstat.isra.0+0x13a/0x230 [xfs]\n xfs_file_ioctl+0xbf2/0x10e0 [xfs]\n __x64_sys_ioctl+0x76/0xc0\n do_syscall_64+0x4e/0x1e0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n CPU: 1 UID: 0 PID: 1300113 Comm: xfs_scrub Not tainted 6.18.0-rc4-djwx #rc4 PREEMPT(lazy) 3d744dd94e92690f00a04398d2bd8631dcef1954\n Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.0-4.module+el8.8.0+21164+ed375313 04/01/2014\n ==================================================================\n\nOn further analysis, I realized that the second parameter to min() is\nnot correct. xfs_ifork::if_bytes is the size of the xfs_ifork::if_data\nbuffer. if_bytes can be smaller than the data fork size because:\n\n(a) the forkoff code tries to keep the data area as large as possible\n(b) for symbolic links, if_bytes is the ondisk file size + 1\n(c) forkoff is always a multiple of 8.\n\nCase in point: for a single-byte symlink target, forkoff will be\n8 but the buffer will only be 2 bytes long.\n\nIn other words, the logic here is wrong and we walk off the end of the\nincore buffer. Fix that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40246",
"url": "https://www.suse.com/security/cve/CVE-2025-40246"
},
{
"category": "external",
"summary": "SUSE Bug 1254861 for CVE-2025-40246",
"url": "https://bugzilla.suse.com/1254861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40246"
},
{
"cve": "CVE-2025-40248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40248"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvsock: Ignore signal/timeout on connect() if already established\n\nDuring connect(), acting on a signal/timeout by disconnecting an already\nestablished socket leads to several issues:\n\n1. connect() invoking vsock_transport_cancel_pkt() -\u003e\n virtio_transport_purge_skbs() may race with sendmsg() invoking\n virtio_transport_get_credit(). This results in a permanently elevated\n `vvs-\u003ebytes_unsent`. Which, in turn, confuses the SOCK_LINGER handling.\n\n2. connect() resetting a connected socket\u0027s state may race with socket\n being placed in a sockmap. A disconnected socket remaining in a sockmap\n breaks sockmap\u0027s assumptions. And gives rise to WARNs.\n\n3. connect() transitioning SS_CONNECTED -\u003e SS_UNCONNECTED allows for a\n transport change/drop after TCP_ESTABLISHED. Which poses a problem for\n any simultaneous sendmsg() or connect() and may result in a\n use-after-free/null-ptr-deref.\n\nDo not disconnect socket on signal/timeout. Keep the logic for unconnected\nsockets: they don\u0027t linger, can\u0027t be placed in a sockmap, are rejected by\nsendmsg().\n\n[1]: https://lore.kernel.org/netdev/e07fd95c-9a38-4eea-9638-133e38c2ec9b@rbox.co/\n[2]: https://lore.kernel.org/netdev/20250317-vsock-trans-signal-race-v4-0-fc8837f3f1d4@rbox.co/\n[3]: https://lore.kernel.org/netdev/60f1b7db-3099-4f6a-875e-af9f6ef194f6@rbox.co/",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40248",
"url": "https://www.suse.com/security/cve/CVE-2025-40248"
},
{
"category": "external",
"summary": "SUSE Bug 1254864 for CVE-2025-40248",
"url": "https://bugzilla.suse.com/1254864"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40248"
},
{
"cve": "CVE-2025-40250",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40250"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Clean up only new IRQ glue on request_irq() failure\n\nThe mlx5_irq_alloc() function can inadvertently free the entire rmap\nand end up in a crash[1] when the other threads tries to access this,\nwhen request_irq() fails due to exhausted IRQ vectors. This commit\nmodifies the cleanup to remove only the specific IRQ mapping that was\njust added.\n\nThis prevents removal of other valid mappings and ensures precise\ncleanup of the failed IRQ allocation\u0027s associated glue object.\n\nNote: This error is observed when both fwctl and rds configs are enabled.\n\n[1]\nmlx5_core 0000:05:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:05:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:06:00.0: Successfully registered panic handler for port 1\nmlx5_core 0000:06:00.0: mlx5_irq_alloc:293:(pid 66740): Failed to\nrequest irq. err = -28\ninfiniband mlx5_0: mlx5_ib_test_wc:290:(pid 66740): Error -28 while\ntrying to test write-combining support\nmlx5_core 0000:06:00.0: Successfully unregistered panic handler for port 1\nmlx5_core 0000:03:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\nmlx5_core 0000:05:00.0: mlx5_irq_alloc:293:(pid 28895): Failed to\nrequest irq. err = -28\ngeneral protection fault, probably for non-canonical address\n0xe277a58fde16f291: 0000 [#1] SMP NOPTI\n\nRIP: 0010:free_irq_cpu_rmap+0x23/0x7d\nCall Trace:\n \u003cTASK\u003e\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? show_trace_log_lvl+0x1d6/0x2f9\n ? mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n ? __die_body.cold+0x8/0xa\n ? die_addr+0x39/0x53\n ? exc_general_protection+0x1c4/0x3e9\n ? dev_vprintk_emit+0x5f/0x90\n ? asm_exc_general_protection+0x22/0x27\n ? free_irq_cpu_rmap+0x23/0x7d\n mlx5_irq_alloc.cold+0x5d/0xf3 [mlx5_core]\n irq_pool_request_vector+0x7d/0x90 [mlx5_core]\n mlx5_irq_request+0x2e/0xe0 [mlx5_core]\n mlx5_irq_request_vector+0xad/0xf7 [mlx5_core]\n comp_irq_request_pci+0x64/0xf0 [mlx5_core]\n create_comp_eq+0x71/0x385 [mlx5_core]\n ? mlx5e_open_xdpsq+0x11c/0x230 [mlx5_core]\n mlx5_comp_eqn_get+0x72/0x90 [mlx5_core]\n ? xas_load+0x8/0x91\n mlx5_comp_irqn_get+0x40/0x90 [mlx5_core]\n mlx5e_open_channel+0x7d/0x3c7 [mlx5_core]\n mlx5e_open_channels+0xad/0x250 [mlx5_core]\n mlx5e_open_locked+0x3e/0x110 [mlx5_core]\n mlx5e_open+0x23/0x70 [mlx5_core]\n __dev_open+0xf1/0x1a5\n __dev_change_flags+0x1e1/0x249\n dev_change_flags+0x21/0x5c\n do_setlink+0x28b/0xcc4\n ? __nla_parse+0x22/0x3d\n ? inet6_validate_link_af+0x6b/0x108\n ? cpumask_next+0x1f/0x35\n ? __snmp6_fill_stats64.constprop.0+0x66/0x107\n ? __nla_validate_parse+0x48/0x1e6\n __rtnl_newlink+0x5ff/0xa57\n ? kmem_cache_alloc_trace+0x164/0x2ce\n rtnl_newlink+0x44/0x6e\n rtnetlink_rcv_msg+0x2bb/0x362\n ? __netlink_sendskb+0x4c/0x6c\n ? netlink_unicast+0x28f/0x2ce\n ? rtnl_calcit.isra.0+0x150/0x146\n netlink_rcv_skb+0x5f/0x112\n netlink_unicast+0x213/0x2ce\n netlink_sendmsg+0x24f/0x4d9\n __sock_sendmsg+0x65/0x6a\n ____sys_sendmsg+0x28f/0x2c9\n ? import_iovec+0x17/0x2b\n ___sys_sendmsg+0x97/0xe0\n __sys_sendmsg+0x81/0xd8\n do_syscall_64+0x35/0x87\n entry_SYSCALL_64_after_hwframe+0x6e/0x0\nRIP: 0033:0x7fc328603727\nCode: c3 66 90 41 54 41 89 d4 55 48 89 f5 53 89 fb 48 83 ec 10 e8 0b ed\nff ff 44 89 e2 48 89 ee 89 df 41 89 c0 b8 2e 00 00 00 0f 05 \u003c48\u003e 3d 00\nf0 ff ff 77 35 44 89 c7 48 89 44 24 08 e8 44 ed ff ff 48\nRSP: 002b:00007ffe8eb3f1a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 000000000000000d RCX: 00007fc328603727\nRDX: 0000000000000000 RSI: 00007ffe8eb3f1f0 RDI: 000000000000000d\nRBP: 00007ffe8eb3f1f0 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000\nR13: 00000000000\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40250",
"url": "https://www.suse.com/security/cve/CVE-2025-40250"
},
{
"category": "external",
"summary": "SUSE Bug 1254854 for CVE-2025-40250",
"url": "https://bugzilla.suse.com/1254854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40250"
},
{
"cve": "CVE-2025-40251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40251"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndevlink: rate: Unset parent pointer in devl_rate_nodes_destroy\n\nThe function devl_rate_nodes_destroy is documented to \"Unset parent for\nall rate objects\". However, it was only calling the driver-specific\n`rate_leaf_parent_set` or `rate_node_parent_set` ops and decrementing\nthe parent\u0027s refcount, without actually setting the\n`devlink_rate-\u003eparent` pointer to NULL.\n\nThis leaves a dangling pointer in the `devlink_rate` struct, which cause\nrefcount error in netdevsim[1] and mlx5[2]. In addition, this is\ninconsistent with the behavior of `devlink_nl_rate_parent_node_set`,\nwhere the parent pointer is correctly cleared.\n\nThis patch fixes the issue by explicitly setting `devlink_rate-\u003eparent`\nto NULL after notifying the driver, thus fulfilling the function\u0027s\ndocumented behavior for all rate objects.\n\n[1]\nrepro steps:\necho 1 \u003e /sys/bus/netdevsim/new_device\ndevlink dev eswitch set netdevsim/netdevsim1 mode switchdev\necho 1 \u003e /sys/bus/netdevsim/devices/netdevsim1/sriov_numvfs\ndevlink port function rate add netdevsim/netdevsim1/test_node\ndevlink port function rate set netdevsim/netdevsim1/128 parent test_node\necho 1 \u003e /sys/bus/netdevsim/del_device\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 8 PID: 1530 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 8 UID: 0 PID: 1530 Comm: bash Not tainted 6.18.0-rc4+ #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n __nsim_dev_port_del+0x6c/0x70 [netdevsim]\n nsim_dev_reload_destroy+0x11c/0x140 [netdevsim]\n nsim_drv_remove+0x2b/0xb0 [netdevsim]\n device_release_driver_internal+0x194/0x1f0\n bus_remove_device+0xc6/0x130\n device_del+0x159/0x3c0\n device_unregister+0x1a/0x60\n del_device_store+0x111/0x170 [netdevsim]\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x55/0x10f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\n[2]\ndevlink dev eswitch set pci/0000:08:00.0 mode switchdev\ndevlink port add pci/0000:08:00.0 flavour pcisf pfnum 0 sfnum 1000\ndevlink port function rate add pci/0000:08:00.0/group1\ndevlink port function rate set pci/0000:08:00.0/32768 parent group1\nmodprobe -r mlx5_ib mlx5_fwctl mlx5_core\n\ndmesg:\nrefcount_t: decrement hit 0; leaking memory.\nWARNING: CPU: 7 PID: 16151 at lib/refcount.c:31 refcount_warn_saturate+0x42/0xe0\nCPU: 7 UID: 0 PID: 16151 Comm: bash Not tainted 6.17.0-rc7_for_upstream_min_debug_2025_10_02_12_44 #1 NONE\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.16.3-0-ga6ed6b701f0a-prebuilt.qemu.org 04/01/2014\nRIP: 0010:refcount_warn_saturate+0x42/0xe0\nCall Trace:\n \u003cTASK\u003e\n devl_rate_leaf_destroy+0x8d/0x90\n mlx5_esw_offloads_devlink_port_unregister+0x33/0x60 [mlx5_core]\n mlx5_esw_offloads_unload_rep+0x3f/0x50 [mlx5_core]\n mlx5_eswitch_unload_sf_vport+0x40/0x90 [mlx5_core]\n mlx5_sf_esw_event+0xc4/0x120 [mlx5_core]\n notifier_call_chain+0x33/0xa0\n blocking_notifier_call_chain+0x3b/0x50\n mlx5_eswitch_disable_locked+0x50/0x110 [mlx5_core]\n mlx5_eswitch_disable+0x63/0x90 [mlx5_core]\n mlx5_unload+0x1d/0x170 [mlx5_core]\n mlx5_uninit_one+0xa2/0x130 [mlx5_core]\n remove_one+0x78/0xd0 [mlx5_core]\n pci_device_remove+0x39/0xa0\n device_release_driver_internal+0x194/0x1f0\n unbind_store+0x99/0xa0\n kernfs_fop_write_iter+0x12e/0x1e0\n vfs_write+0x215/0x3d0\n ksys_write+0x5f/0xd0\n do_syscall_64+0x53/0x1f0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40251",
"url": "https://www.suse.com/security/cve/CVE-2025-40251"
},
{
"category": "external",
"summary": "SUSE Bug 1254856 for CVE-2025-40251",
"url": "https://bugzilla.suse.com/1254856"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40251"
},
{
"cve": "CVE-2025-40252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()\n\nThe loops in \u0027qede_tpa_cont()\u0027 and \u0027qede_tpa_end()\u0027, iterate\nover \u0027cqe-\u003elen_list[]\u0027 using only a zero-length terminator as\nthe stopping condition. If the terminator was missing or\nmalformed, the loop could run past the end of the fixed-size array.\n\nAdd an explicit bound check using ARRAY_SIZE() in both loops to prevent\na potential out-of-bounds access.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40252",
"url": "https://www.suse.com/security/cve/CVE-2025-40252"
},
{
"category": "external",
"summary": "SUSE Bug 1254849 for CVE-2025-40252",
"url": "https://bugzilla.suse.com/1254849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40252"
},
{
"cve": "CVE-2025-40254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: openvswitch: remove never-working support for setting nsh fields\n\nThe validation of the set(nsh(...)) action is completely wrong.\nIt runs through the nsh_key_put_from_nlattr() function that is the\nsame function that validates NSH keys for the flow match and the\npush_nsh() action. However, the set(nsh(...)) has a very different\nmemory layout. Nested attributes in there are doubled in size in\ncase of the masked set(). That makes proper validation impossible.\n\nThere is also confusion in the code between the \u0027masked\u0027 flag, that\nsays that the nested attributes are doubled in size containing both\nthe value and the mask, and the \u0027is_mask\u0027 that says that the value\nwe\u0027re parsing is the mask. This is causing kernel crash on trying to\nwrite into mask part of the match with SW_FLOW_KEY_PUT() during\nvalidation, while validate_nsh() doesn\u0027t allocate any memory for it:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000018\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 1c2383067 P4D 1c2383067 PUD 20b703067 PMD 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 8 UID: 0 Kdump: loaded Not tainted 6.17.0-rc4+ #107 PREEMPT(voluntary)\n RIP: 0010:nsh_key_put_from_nlattr+0x19d/0x610 [openvswitch]\n Call Trace:\n \u003cTASK\u003e\n validate_nsh+0x60/0x90 [openvswitch]\n validate_set.constprop.0+0x270/0x3c0 [openvswitch]\n __ovs_nla_copy_actions+0x477/0x860 [openvswitch]\n ovs_nla_copy_actions+0x8d/0x100 [openvswitch]\n ovs_packet_cmd_execute+0x1cc/0x310 [openvswitch]\n genl_family_rcv_msg_doit+0xdb/0x130\n genl_family_rcv_msg+0x14b/0x220\n genl_rcv_msg+0x47/0xa0\n netlink_rcv_skb+0x53/0x100\n genl_rcv+0x24/0x40\n netlink_unicast+0x280/0x3b0\n netlink_sendmsg+0x1f7/0x430\n ____sys_sendmsg+0x36b/0x3a0\n ___sys_sendmsg+0x87/0xd0\n __sys_sendmsg+0x6d/0xd0\n do_syscall_64+0x7b/0x2c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nThe third issue with this process is that while trying to convert\nthe non-masked set into masked one, validate_set() copies and doubles\nthe size of the OVS_KEY_ATTR_NSH as if it didn\u0027t have any nested\nattributes. It should be copying each nested attribute and doubling\nthem in size independently. And the process must be properly reversed\nduring the conversion back from masked to a non-masked variant during\nthe flow dump.\n\nIn the end, the only two outcomes of trying to use this action are\neither validation failure or a kernel crash. And if somehow someone\nmanages to install a flow with such an action, it will most definitely\nnot do what it is supposed to, since all the keys and the masks are\nmixed up.\n\nFixing all the issues is a complex task as it requires re-writing\nmost of the validation code.\n\nGiven that and the fact that this functionality never worked since\nintroduction, let\u0027s just remove it altogether. It\u0027s better to\nre-introduce it later with a proper implementation instead of trying\nto fix it in stable releases.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40254",
"url": "https://www.suse.com/security/cve/CVE-2025-40254"
},
{
"category": "external",
"summary": "SUSE Bug 1254852 for CVE-2025-40254",
"url": "https://bugzilla.suse.com/1254852"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40254"
},
{
"cve": "CVE-2025-40255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: core: prevent NULL deref in generic_hwtstamp_ioctl_lower()\n\nThe ethtool tsconfig Netlink path can trigger a null pointer\ndereference. A call chain such as:\n\n tsconfig_prepare_data() -\u003e\n dev_get_hwtstamp_phylib() -\u003e\n vlan_hwtstamp_get() -\u003e\n generic_hwtstamp_get_lower() -\u003e\n generic_hwtstamp_ioctl_lower()\n\nresults in generic_hwtstamp_ioctl_lower() being called with\nkernel_cfg-\u003eifr as NULL.\n\nThe generic_hwtstamp_ioctl_lower() function does not expect\na NULL ifr and dereferences it, leading to a system crash.\n\nFix this by adding a NULL check for kernel_cfg-\u003eifr in\ngeneric_hwtstamp_ioctl_lower(). If ifr is NULL, return -EINVAL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40255",
"url": "https://www.suse.com/security/cve/CVE-2025-40255"
},
{
"category": "external",
"summary": "SUSE Bug 1255156 for CVE-2025-40255",
"url": "https://bugzilla.suse.com/1255156"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40255"
},
{
"cve": "CVE-2025-40256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: also call xfrm_state_delete_tunnel at destroy time for states that were never added\n\nIn commit b441cf3f8c4b (\"xfrm: delete x-\u003etunnel as we delete x\"), I\nmissed the case where state creation fails between full\ninitialization (-\u003einit_state has been called) and being inserted on\nthe lists.\n\nIn this situation, -\u003einit_state has been called, so for IPcomp\ntunnels, the fallback tunnel has been created and added onto the\nlists, but the user state never gets added, because we fail before\nthat. The user state doesn\u0027t go through __xfrm_state_delete, so we\ndon\u0027t call xfrm_state_delete_tunnel for those states, and we end up\nleaking the FB tunnel.\n\nThere are several codepaths affected by this: the add/update paths, in\nboth net/key and xfrm, and the migrate code (xfrm_migrate,\nxfrm_state_migrate). A \"proper\" rollback of the init_state work would\nprobably be doable in the add/update code, but for migrate it gets\nmore complicated as multiple states may be involved.\n\nAt some point, the new (not-inserted) state will be destroyed, so call\nxfrm_state_delete_tunnel during xfrm_state_gc_destroy. Most states\nwill have their fallback tunnel cleaned up during __xfrm_state_delete,\nwhich solves the issue that b441cf3f8c4b (and other patches before it)\naimed at. All states (including FB tunnels) will be removed from the\nlists once xfrm_state_fini has called flush_work(\u0026xfrm_state_gc_work).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40256",
"url": "https://www.suse.com/security/cve/CVE-2025-40256"
},
{
"category": "external",
"summary": "SUSE Bug 1254851 for CVE-2025-40256",
"url": "https://bugzilla.suse.com/1254851"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40256"
},
{
"cve": "CVE-2025-40258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmptcp: fix race condition in mptcp_schedule_work()\n\nsyzbot reported use-after-free in mptcp_schedule_work() [1]\n\nIssue here is that mptcp_schedule_work() schedules a work,\nthen gets a refcount on sk-\u003esk_refcnt if the work was scheduled.\nThis refcount will be released by mptcp_worker().\n\n[A] if (schedule_work(...)) {\n[B] sock_hold(sk);\n return true;\n }\n\nProblem is that mptcp_worker() can run immediately and complete before [B]\n\nWe need instead :\n\n sock_hold(sk);\n if (schedule_work(...))\n return true;\n sock_put(sk);\n\n[1]\nrefcount_t: addition on 0; use-after-free.\n WARNING: CPU: 1 PID: 29 at lib/refcount.c:25 refcount_warn_saturate+0xfa/0x1d0 lib/refcount.c:25\nCall Trace:\n \u003cTASK\u003e\n __refcount_add include/linux/refcount.h:-1 [inline]\n __refcount_inc include/linux/refcount.h:366 [inline]\n refcount_inc include/linux/refcount.h:383 [inline]\n sock_hold include/net/sock.h:816 [inline]\n mptcp_schedule_work+0x164/0x1a0 net/mptcp/protocol.c:943\n mptcp_tout_timer+0x21/0xa0 net/mptcp/protocol.c:2316\n call_timer_fn+0x17e/0x5f0 kernel/time/timer.c:1747\n expire_timers kernel/time/timer.c:1798 [inline]\n __run_timers kernel/time/timer.c:2372 [inline]\n __run_timer_base+0x648/0x970 kernel/time/timer.c:2384\n run_timer_base kernel/time/timer.c:2393 [inline]\n run_timer_softirq+0xb7/0x180 kernel/time/timer.c:2403\n handle_softirqs+0x22f/0x710 kernel/softirq.c:622\n __do_softirq kernel/softirq.c:656 [inline]\n run_ktimerd+0xcf/0x190 kernel/softirq.c:1138\n smpboot_thread_fn+0x542/0xa60 kernel/smpboot.c:160\n kthread+0x711/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x4bc/0x870 arch/x86/kernel/process.c:158\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40258",
"url": "https://www.suse.com/security/cve/CVE-2025-40258"
},
{
"category": "external",
"summary": "SUSE Bug 1254843 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1254843"
},
{
"category": "external",
"summary": "SUSE Bug 1255053 for CVE-2025-40258",
"url": "https://bugzilla.suse.com/1255053"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40258"
},
{
"cve": "CVE-2025-40262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40262"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: imx_sc_key - fix memory corruption on unload\n\nThis is supposed to be \"priv\" but we accidentally pass \"\u0026priv\" which is\nan address in the stack and so it will lead to memory corruption when\nthe imx_sc_key_action() function is called. Remove the \u0026.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40262",
"url": "https://www.suse.com/security/cve/CVE-2025-40262"
},
{
"category": "external",
"summary": "SUSE Bug 1254840 for CVE-2025-40262",
"url": "https://bugzilla.suse.com/1254840"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40262"
},
{
"cve": "CVE-2025-40263",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40263"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: cros_ec_keyb - fix an invalid memory access\n\nIf cros_ec_keyb_register_matrix() isn\u0027t called (due to\n`buttons_switches_only`) in cros_ec_keyb_probe(), `ckdev-\u003eidev` remains\nNULL. An invalid memory access is observed in cros_ec_keyb_process()\nwhen receiving an EC_MKBP_EVENT_KEY_MATRIX event in cros_ec_keyb_work()\nin such case.\n\n Unable to handle kernel read from unreadable memory at virtual address 0000000000000028\n ...\n x3 : 0000000000000000 x2 : 0000000000000000\n x1 : 0000000000000000 x0 : 0000000000000000\n Call trace:\n input_event\n cros_ec_keyb_work\n blocking_notifier_call_chain\n ec_irq_thread\n\nIt\u0027s still unknown about why the kernel receives such malformed event,\nin any cases, the kernel shouldn\u0027t access `ckdev-\u003eidev` and friends if\nthe driver doesn\u0027t intend to initialize them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40263",
"url": "https://www.suse.com/security/cve/CVE-2025-40263"
},
{
"category": "external",
"summary": "SUSE Bug 1255077 for CVE-2025-40263",
"url": "https://bugzilla.suse.com/1255077"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40263"
},
{
"cve": "CVE-2025-40264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbe2net: pass wrb_params in case of OS2BMC\n\nbe_insert_vlan_in_pkt() is called with the wrb_params argument being NULL\nat be_send_pkt_to_bmc() call site. This may lead to dereferencing a NULL\npointer when processing a workaround for specific packet, as commit\nbc0c3405abbb (\"be2net: fix a Tx stall bug caused by a specific ipv6\npacket\") states.\n\nThe correct way would be to pass the wrb_params from be_xmit().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40264",
"url": "https://www.suse.com/security/cve/CVE-2025-40264"
},
{
"category": "external",
"summary": "SUSE Bug 1254835 for CVE-2025-40264",
"url": "https://bugzilla.suse.com/1254835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40264"
},
{
"cve": "CVE-2025-40266",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40266"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: Check the untrusted offset in FF-A memory share\n\nVerify the offset to prevent OOB access in the hypervisor\nFF-A buffer in case an untrusted large enough value\n[U32_MAX - sizeof(struct ffa_composite_mem_region) + 1, U32_MAX]\nis set from the host kernel.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40266",
"url": "https://www.suse.com/security/cve/CVE-2025-40266"
},
{
"category": "external",
"summary": "SUSE Bug 1255040 for CVE-2025-40266",
"url": "https://bugzilla.suse.com/1255040"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40266"
},
{
"cve": "CVE-2025-40268",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40268"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncifs: client: fix memory leak in smb3_fs_context_parse_param\n\nThe user calls fsconfig twice, but when the program exits, free() only\nfrees ctx-\u003esource for the second fsconfig, not the first.\nRegarding fc-\u003esource, there is no code in the fs context related to its\nmemory reclamation.\n\nTo fix this memory leak, release the source memory corresponding to ctx\nor fc before each parsing.\n\nsyzbot reported:\nBUG: memory leak\nunreferenced object 0xffff888128afa360 (size 96):\n backtrace (crc 79c9c7ba):\n kstrdup+0x3c/0x80 mm/util.c:84\n smb3_fs_context_parse_param+0x229b/0x36c0 fs/smb/client/fs_context.c:1444\n\nBUG: memory leak\nunreferenced object 0xffff888112c7d900 (size 96):\n backtrace (crc 79c9c7ba):\n smb3_fs_context_fullpath+0x70/0x1b0 fs/smb/client/fs_context.c:629\n smb3_fs_context_parse_param+0x2266/0x36c0 fs/smb/client/fs_context.c:1438",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40268",
"url": "https://www.suse.com/security/cve/CVE-2025-40268"
},
{
"category": "external",
"summary": "SUSE Bug 1255082 for CVE-2025-40268",
"url": "https://bugzilla.suse.com/1255082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40268"
},
{
"cve": "CVE-2025-40269",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40269"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix potential overflow of PCM transfer buffer\n\nThe PCM stream data in USB-audio driver is transferred over USB URB\npacket buffers, and each packet size is determined dynamically. The\npacket sizes are limited by some factors such as wMaxPacketSize USB\ndescriptor. OTOH, in the current code, the actually used packet sizes\nare determined only by the rate and the PPS, which may be bigger than\nthe size limit above. This results in a buffer overflow, as reported\nby syzbot.\n\nBasically when the limit is smaller than the calculated packet size,\nit implies that something is wrong, most likely a weird USB\ndescriptor. So the best option would be just to return an error at\nthe parameter setup time before doing any further operations.\n\nThis patch introduces such a sanity check, and returns -EINVAL when\nthe packet size is greater than maxpacksize. The comparison with\nep-\u003epacksize[1] alone should suffice since it\u0027s always equal or\ngreater than ep-\u003epacksize[0].",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40269",
"url": "https://www.suse.com/security/cve/CVE-2025-40269"
},
{
"category": "external",
"summary": "SUSE Bug 1255035 for CVE-2025-40269",
"url": "https://bugzilla.suse.com/1255035"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40269"
},
{
"cve": "CVE-2025-40271",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40271"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/proc: fix uaf in proc_readdir_de()\n\nPde is erased from subdir rbtree through rb_erase(), but not set the node\nto EMPTY, which may result in uaf access. We should use RB_CLEAR_NODE()\nset the erased node to EMPTY, then pde_subdir_next() will return NULL to\navoid uaf access.\n\nWe found an uaf issue while using stress-ng testing, need to run testcase\ngetdent and tun in the same time. The steps of the issue is as follows:\n\n1) use getdent to traverse dir /proc/pid/net/dev_snmp6/, and current\n pde is tun3;\n\n2) in the [time windows] unregister netdevice tun3 and tun2, and erase\n them from rbtree. erase tun3 first, and then erase tun2. the\n pde(tun2) will be released to slab;\n\n3) continue to getdent process, then pde_subdir_next() will return\n pde(tun2) which is released, it will case uaf access.\n\nCPU 0 | CPU 1\n-------------------------------------------------------------------------\ntraverse dir /proc/pid/net/dev_snmp6/ | unregister_netdevice(tun-\u003edev) //tun3 tun2\nsys_getdents64() |\n iterate_dir() |\n proc_readdir() |\n proc_readdir_de() | snmp6_unregister_dev()\n pde_get(de); | proc_remove()\n read_unlock(\u0026proc_subdir_lock); | remove_proc_subtree()\n | write_lock(\u0026proc_subdir_lock);\n [time window] | rb_erase(\u0026root-\u003esubdir_node, \u0026parent-\u003esubdir);\n | write_unlock(\u0026proc_subdir_lock);\n read_lock(\u0026proc_subdir_lock); |\n next = pde_subdir_next(de); |\n pde_put(de); |\n de = next; //UAF |\n\nrbtree of dev_snmp6\n |\n pde(tun3)\n / \\\n NULL pde(tun2)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40271",
"url": "https://www.suse.com/security/cve/CVE-2025-40271"
},
{
"category": "external",
"summary": "SUSE Bug 1255297 for CVE-2025-40271",
"url": "https://bugzilla.suse.com/1255297"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40271"
},
{
"cve": "CVE-2025-40272",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40272"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/secretmem: fix use-after-free race in fault handler\n\nWhen a page fault occurs in a secret memory file created with\n`memfd_secret(2)`, the kernel will allocate a new folio for it, mark the\nunderlying page as not-present in the direct map, and add it to the file\nmapping.\n\nIf two tasks cause a fault in the same page concurrently, both could end\nup allocating a folio and removing the page from the direct map, but only\none would succeed in adding the folio to the file mapping. The task that\nfailed undoes the effects of its attempt by (a) freeing the folio again\nand (b) putting the page back into the direct map. However, by doing\nthese two operations in this order, the page becomes available to the\nallocator again before it is placed back in the direct mapping.\n\nIf another task attempts to allocate the page between (a) and (b), and the\nkernel tries to access it via the direct map, it would result in a\nsupervisor not-present page fault.\n\nFix the ordering to restore the direct map before the folio is freed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40272",
"url": "https://www.suse.com/security/cve/CVE-2025-40272"
},
{
"category": "external",
"summary": "SUSE Bug 1254832 for CVE-2025-40272",
"url": "https://bugzilla.suse.com/1254832"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40272"
},
{
"cve": "CVE-2025-40273",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40273"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: free copynotify stateid in nfs4_free_ol_stateid()\n\nTypically copynotify stateid is freed either when parent\u0027s stateid\nis being close/freed or in nfsd4_laundromat if the stateid hasn\u0027t\nbeen used in a lease period.\n\nHowever, in case when the server got an OPEN (which created\na parent stateid), followed by a COPY_NOTIFY using that stateid,\nfollowed by a client reboot. New client instance while doing\nCREATE_SESSION would force expire previous state of this client.\nIt leads to the open state being freed thru release_openowner-\u003e\nnfs4_free_ol_stateid() and it finds that it still has copynotify\nstateid associated with it. We currently print a warning and is\ntriggerred\n\nWARNING: CPU: 1 PID: 8858 at fs/nfsd/nfs4state.c:1550 nfs4_free_ol_stateid+0xb0/0x100 [nfsd]\n\nThis patch, instead, frees the associated copynotify stateid here.\n\nIf the parent stateid is freed (without freeing the copynotify\nstateids associated with it), it leads to the list corruption\nwhen laundromat ends up freeing the copynotify state later.\n\n[ 1626.839430] Internal error: Oops - BUG: 00000000f2000800 [#1] SMP\n[ 1626.842828] Modules linked in: nfnetlink_queue nfnetlink_log bluetooth cfg80211 rpcrdma rdma_cm iw_cm ib_cm ib_core nfsd nfs_acl lockd grace nfs_localio ext4 crc16 mbcache jbd2 overlay uinput snd_seq_dummy snd_hrtimer qrtr rfkill vfat fat uvcvideo snd_hda_codec_generic videobuf2_vmalloc videobuf2_memops snd_hda_intel uvc snd_intel_dspcfg videobuf2_v4l2 videobuf2_common snd_hda_codec snd_hda_core videodev snd_hwdep snd_seq mc snd_seq_device snd_pcm snd_timer snd soundcore sg loop auth_rpcgss vsock_loopback vmw_vsock_virtio_transport_common vmw_vsock_vmci_transport vmw_vmci vsock xfs 8021q garp stp llc mrp nvme ghash_ce e1000e nvme_core sr_mod nvme_keyring nvme_auth cdrom vmwgfx drm_ttm_helper ttm sunrpc dm_mirror dm_region_hash dm_log iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi fuse dm_multipath dm_mod nfnetlink\n[ 1626.855594] CPU: 2 UID: 0 PID: 199 Comm: kworker/u24:33 Kdump: loaded Tainted: G B W 6.17.0-rc7+ #22 PREEMPT(voluntary)\n[ 1626.857075] Tainted: [B]=BAD_PAGE, [W]=WARN\n[ 1626.857573] Hardware name: VMware, Inc. VMware20,1/VBSA, BIOS VMW201.00V.24006586.BA64.2406042154 06/04/2024\n[ 1626.858724] Workqueue: nfsd4 laundromat_main [nfsd]\n[ 1626.859304] pstate: 61400005 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n[ 1626.860010] pc : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.860601] lr : __list_del_entry_valid_or_report+0x148/0x200\n[ 1626.861182] sp : ffff8000881d7a40\n[ 1626.861521] x29: ffff8000881d7a40 x28: 0000000000000018 x27: ffff0000c2a98200\n[ 1626.862260] x26: 0000000000000600 x25: 0000000000000000 x24: ffff8000881d7b20\n[ 1626.862986] x23: ffff0000c2a981e8 x22: 1fffe00012410e7d x21: ffff0000920873e8\n[ 1626.863701] x20: ffff0000920873e8 x19: ffff000086f22998 x18: 0000000000000000\n[ 1626.864421] x17: 20747562202c3839 x16: 3932326636383030 x15: 3030666666662065\n[ 1626.865092] x14: 6220646c756f6873 x13: 0000000000000001 x12: ffff60004fd9e4a3\n[ 1626.865713] x11: 1fffe0004fd9e4a2 x10: ffff60004fd9e4a2 x9 : dfff800000000000\n[ 1626.866320] x8 : 00009fffb0261b5e x7 : ffff00027ecf2513 x6 : 0000000000000001\n[ 1626.866938] x5 : ffff00027ecf2510 x4 : ffff60004fd9e4a3 x3 : 0000000000000000\n[ 1626.867553] x2 : 0000000000000000 x1 : ffff000096069640 x0 : 000000000000006d\n[ 1626.868167] Call trace:\n[ 1626.868382] __list_del_entry_valid_or_report+0x148/0x200 (P)\n[ 1626.868876] _free_cpntf_state_locked+0xd0/0x268 [nfsd]\n[ 1626.869368] nfs4_laundromat+0x6f8/0x1058 [nfsd]\n[ 1626.869813] laundromat_main+0x24/0x60 [nfsd]\n[ 1626.870231] process_one_work+0x584/0x1050\n[ 1626.870595] worker_thread+0x4c4/0xc60\n[ 1626.870893] kthread+0x2f8/0x398\n[ 1626.871146] ret_from_fork+0x10/0x20\n[ 1626.871422] Code: aa1303e1 aa1403e3 910e8000 97bc55d7 (d4210000)\n[ 1626.871892] SMP: stopping secondary CPUs",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40273",
"url": "https://www.suse.com/security/cve/CVE-2025-40273"
},
{
"category": "external",
"summary": "SUSE Bug 1254828 for CVE-2025-40273",
"url": "https://bugzilla.suse.com/1254828"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40273"
},
{
"cve": "CVE-2025-40274",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40274"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: guest_memfd: Remove bindings on memslot deletion when gmem is dying\n\nWhen unbinding a memslot from a guest_memfd instance, remove the bindings\neven if the guest_memfd file is dying, i.e. even if its file refcount has\ngone to zero. If the memslot is freed before the file is fully released,\nnullifying the memslot side of the binding in kvm_gmem_release() will\nwrite to freed memory, as detected by syzbot+KASAN:\n\n ==================================================================\n BUG: KASAN: slab-use-after-free in kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n Write of size 8 at addr ffff88807befa508 by task syz.0.17/6022\n\n CPU: 0 UID: 0 PID: 6022 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n kvm_gmem_release+0x176/0x440 virt/kvm/guest_memfd.c:353\n __fput+0x44c/0xa70 fs/file_table.c:468\n task_work_run+0x1d4/0x260 kernel/task_work.c:227\n resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]\n exit_to_user_mode_loop+0xe9/0x130 kernel/entry/common.c:43\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n syscall_exit_to_user_mode_work include/linux/entry-common.h:175 [inline]\n syscall_exit_to_user_mode include/linux/entry-common.h:210 [inline]\n do_syscall_64+0x2bd/0xfa0 arch/x86/entry/syscall_64.c:100\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n RIP: 0033:0x7fbeeff8efc9\n \u003c/TASK\u003e\n\n Allocated by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n poison_kmalloc_redzone mm/kasan/common.c:397 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:414\n kasan_kmalloc include/linux/kasan.h:262 [inline]\n __kmalloc_cache_noprof+0x3e2/0x700 mm/slub.c:5758\n kmalloc_noprof include/linux/slab.h:957 [inline]\n kzalloc_noprof include/linux/slab.h:1094 [inline]\n kvm_set_memory_region+0x747/0xb90 virt/kvm/kvm_main.c:2104\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\n Freed by task 6023:\n kasan_save_stack mm/kasan/common.c:56 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:77\n kasan_save_free_info+0x46/0x50 mm/kasan/generic.c:584\n poison_slab_object mm/kasan/common.c:252 [inline]\n __kasan_slab_free+0x5c/0x80 mm/kasan/common.c:284\n kasan_slab_free include/linux/kasan.h:234 [inline]\n slab_free_hook mm/slub.c:2533 [inline]\n slab_free mm/slub.c:6622 [inline]\n kfree+0x19a/0x6d0 mm/slub.c:6829\n kvm_set_memory_region+0x9c4/0xb90 virt/kvm/kvm_main.c:2130\n kvm_vm_ioctl_set_memory_region+0x6f/0xd0 virt/kvm/kvm_main.c:2154\n kvm_vm_ioctl+0x957/0xc60 virt/kvm/kvm_main.c:5201\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0xfa0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nDeliberately don\u0027t acquire filemap invalid lock when the file is dying as\nthe lifecycle of f_mapping is outside the purview of KVM. Dereferencing\nthe mapping is *probably* fine, but there\u0027s no need to invalidate anything\nas memslot deletion is responsible for zapping SPTEs, and the only code\nthat can access the dying file is kvm_gmem_release(), whose core code is\nmutual\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40274",
"url": "https://www.suse.com/security/cve/CVE-2025-40274"
},
{
"category": "external",
"summary": "SUSE Bug 1254830 for CVE-2025-40274",
"url": "https://bugzilla.suse.com/1254830"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40274"
},
{
"cve": "CVE-2025-40275",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40275"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd\n\nIn snd_usb_create_streams(), for UAC version 3 devices, the Interface\nAssociation Descriptor (IAD) is retrieved via usb_ifnum_to_if(). If this\ncall fails, a fallback routine attempts to obtain the IAD from the next\ninterface and sets a BADD profile. However, snd_usb_mixer_controls_badd()\nassumes that the IAD retrieved from usb_ifnum_to_if() is always valid,\nwithout performing a NULL check. This can lead to a NULL pointer\ndereference when usb_ifnum_to_if() fails to find the interface descriptor.\n\nThis patch adds a NULL pointer check after calling usb_ifnum_to_if() in\nsnd_usb_mixer_controls_badd() to prevent the dereference.\n\nThis issue was discovered by syzkaller, which triggered the bug by sending\na crafted USB device descriptor.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40275",
"url": "https://www.suse.com/security/cve/CVE-2025-40275"
},
{
"category": "external",
"summary": "SUSE Bug 1254829 for CVE-2025-40275",
"url": "https://bugzilla.suse.com/1254829"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40275"
},
{
"cve": "CVE-2025-40276",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40276"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Flush shmem writes before mapping buffers CPU-uncached\n\nThe shmem layer zeroes out the new pages using cached mappings, and if\nwe don\u0027t CPU-flush we might leave dirty cachelines behind, leading to\npotential data leaks and/or asynchronous buffer corruption when dirty\ncachelines are evicted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40276",
"url": "https://www.suse.com/security/cve/CVE-2025-40276"
},
{
"category": "external",
"summary": "SUSE Bug 1254824 for CVE-2025-40276",
"url": "https://bugzilla.suse.com/1254824"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40276"
},
{
"cve": "CVE-2025-40277",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40277"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE\n\nThis data originates from userspace and is used in buffer offset\ncalculations which could potentially overflow causing an out-of-bounds\naccess.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40277",
"url": "https://www.suse.com/security/cve/CVE-2025-40277"
},
{
"category": "external",
"summary": "SUSE Bug 1254894 for CVE-2025-40277",
"url": "https://bugzilla.suse.com/1254894"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40277"
},
{
"cve": "CVE-2025-40278",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40278"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_ife: initialize struct tc_ife to fix KMSAN kernel-infoleak\n\nFix a KMSAN kernel-infoleak detected by the syzbot .\n\n[net?] KMSAN: kernel-infoleak in __skb_datagram_iter\n\nIn tcf_ife_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.\n\nThis change silences the KMSAN report and prevents potential information\nleaks from the kernel memory.\n\nThis fix has been tested and validated by syzbot. This patch closes the\nbug reported at the following syzkaller link and ensures no infoleak.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40278",
"url": "https://www.suse.com/security/cve/CVE-2025-40278"
},
{
"category": "external",
"summary": "SUSE Bug 1254825 for CVE-2025-40278",
"url": "https://bugzilla.suse.com/1254825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40278"
},
{
"cve": "CVE-2025-40279",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40279"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: act_connmark: initialize struct tc_ife to fix kernel leak\n\nIn tcf_connmark_dump(), the variable \u0027opt\u0027 was partially initialized using a\ndesignatied initializer. While the padding bytes are reamined\nuninitialized. nla_put() copies the entire structure into a\nnetlink message, these uninitialized bytes leaked to userspace.\n\nInitialize the structure with memset before assigning its fields\nto ensure all members and padding are cleared prior to beign copied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40279",
"url": "https://www.suse.com/security/cve/CVE-2025-40279"
},
{
"category": "external",
"summary": "SUSE Bug 1254846 for CVE-2025-40279",
"url": "https://bugzilla.suse.com/1254846"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40279"
},
{
"cve": "CVE-2025-40280",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40280"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntipc: Fix use-after-free in tipc_mon_reinit_self().\n\nsyzbot reported use-after-free of tipc_net(net)-\u003emonitors[]\nin tipc_mon_reinit_self(). [0]\n\nThe array is protected by RTNL, but tipc_mon_reinit_self()\niterates over it without RTNL.\n\ntipc_mon_reinit_self() is called from tipc_net_finalize(),\nwhich is always under RTNL except for tipc_net_finalize_work().\n\nLet\u0027s hold RTNL in tipc_net_finalize_work().\n\n[0]:\nBUG: KASAN: slab-use-after-free in __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\nBUG: KASAN: slab-use-after-free in _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\nRead of size 1 at addr ffff88805eae1030 by task kworker/0:7/5989\n\nCPU: 0 UID: 0 PID: 5989 Comm: kworker/0:7 Not tainted syzkaller #0 PREEMPT_{RT,(full)}\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nWorkqueue: events tipc_net_finalize_work\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x189/0x250 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0xca/0x240 mm/kasan/report.c:482\n kasan_report+0x118/0x150 mm/kasan/report.c:595\n __kasan_check_byte+0x2a/0x40 mm/kasan/common.c:568\n kasan_check_byte include/linux/kasan.h:399 [inline]\n lock_acquire+0x8d/0x360 kernel/locking/lockdep.c:5842\n __raw_spin_lock_irqsave include/linux/spinlock_api_smp.h:110 [inline]\n _raw_spin_lock_irqsave+0xa7/0xf0 kernel/locking/spinlock.c:162\n rtlock_slowlock kernel/locking/rtmutex.c:1894 [inline]\n rwbase_rtmutex_lock_state kernel/locking/spinlock_rt.c:160 [inline]\n rwbase_write_lock+0xd3/0x7e0 kernel/locking/rwbase_rt.c:244\n rt_write_lock+0x76/0x110 kernel/locking/spinlock_rt.c:243\n write_lock_bh include/linux/rwlock_rt.h:99 [inline]\n tipc_mon_reinit_self+0x79/0x430 net/tipc/monitor.c:718\n tipc_net_finalize+0x115/0x190 net/tipc/net.c:140\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0xade/0x17b0 kernel/workqueue.c:3319\n worker_thread+0x8a0/0xda0 kernel/workqueue.c:3400\n kthread+0x70e/0x8a0 kernel/kthread.c:463\n ret_from_fork+0x439/0x7d0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 6089:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x3e/0x80 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x93/0xb0 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __kmalloc_cache_noprof+0x1a8/0x320 mm/slub.c:4407\n kmalloc_noprof include/linux/slab.h:905 [inline]\n kzalloc_noprof include/linux/slab.h:1039 [inline]\n tipc_mon_create+0xc3/0x4d0 net/tipc/monitor.c:657\n tipc_enable_bearer net/tipc/bearer.c:357 [inline]\n __tipc_nl_bearer_enable+0xe16/0x13f0 net/tipc/bearer.c:1047\n __tipc_nl_compat_doit net/tipc/netlink_compat.c:371 [inline]\n tipc_nl_compat_doit+0x3bc/0x5f0 net/tipc/netlink_compat.c:393\n tipc_nl_compat_handle net/tipc/netlink_compat.c:-1 [inline]\n tipc_nl_compat_recv+0x83c/0xbe0 net/tipc/netlink_compat.c:1321\n genl_family_rcv_msg_doit+0x215/0x300 net/netlink/genetlink.c:1115\n genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]\n genl_rcv_msg+0x60e/0x790 net/netlink/genetlink.c:1210\n netlink_rcv_skb+0x208/0x470 net/netlink/af_netlink.c:2552\n genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x846/0xa10 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x805/0xb30 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:729\n ____sys_sendmsg+0x508/0x820 net/socket.c:2614\n ___sys_sendmsg+0x21f/0x2a0 net/socket.c:2668\n __sys_sendmsg net/socket.c:2700 [inline]\n __do_sys_sendmsg net/socket.c:2705 [inline]\n __se_sys_sendmsg net/socket.c:2703 [inline]\n __x64_sys_sendmsg+0x1a1/0x260 net/socket.c:2703\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40280",
"url": "https://www.suse.com/security/cve/CVE-2025-40280"
},
{
"category": "external",
"summary": "SUSE Bug 1254847 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254847"
},
{
"category": "external",
"summary": "SUSE Bug 1254951 for CVE-2025-40280",
"url": "https://bugzilla.suse.com/1254951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40280"
},
{
"cve": "CVE-2025-40282",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40282"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: 6lowpan: reset link-local header on ipv6 recv path\n\nBluetooth 6lowpan.c netdev has header_ops, so it must set link-local\nheader for RX skb, otherwise things crash, eg. with AF_PACKET SOCK_RAW\n\nAdd missing skb_reset_mac_header() for uncompressed ipv6 RX path.\n\nFor the compressed one, it is done in lowpan_header_decompress().\n\nLog: (BlueZ 6lowpan-tester Client Recv Raw - Success)\n------\nkernel BUG at net/core/skbuff.c:212!\nCall Trace:\n\u003cIRQ\u003e\n...\npacket_rcv (net/packet/af_packet.c:2152)\n...\n\u003cTASK\u003e\n__local_bh_enable_ip (kernel/softirq.c:407)\nnetif_rx (net/core/dev.c:5648)\nchan_recv_cb (net/bluetooth/6lowpan.c:294 net/bluetooth/6lowpan.c:359)\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40282",
"url": "https://www.suse.com/security/cve/CVE-2025-40282"
},
{
"category": "external",
"summary": "SUSE Bug 1254850 for CVE-2025-40282",
"url": "https://bugzilla.suse.com/1254850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40282"
},
{
"cve": "CVE-2025-40283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF\n\nThere is a KASAN: slab-use-after-free read in btusb_disconnect().\nCalling \"usb_driver_release_interface(\u0026btusb_driver, data-\u003eintf)\" will\nfree the btusb data associated with the interface. The same data is\nthen used later in the function, hence the UAF.\n\nFix by moving the accesses to btusb data to before the data is free\u0027d.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40283",
"url": "https://www.suse.com/security/cve/CVE-2025-40283"
},
{
"category": "external",
"summary": "SUSE Bug 1254858 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254858"
},
{
"category": "external",
"summary": "SUSE Bug 1254859 for CVE-2025-40283",
"url": "https://bugzilla.suse.com/1254859"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40283"
},
{
"cve": "CVE-2025-40284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: cancel mesh send timer when hdev removed\n\nmesh_send_done timer is not canceled when hdev is removed, which causes\ncrash if the timer triggers after hdev is gone.\n\nCancel the timer when MGMT removes the hdev, like other MGMT timers.\n\nShould fix the BUG: sporadically seen by BlueZ test bot\n(in \"Mesh - Send cancel - 1\" test).\n\nLog:\n------\nBUG: KASAN: slab-use-after-free in run_timer_softirq+0x76b/0x7d0\n...\nFreed by task 36:\n kasan_save_stack+0x24/0x50\n kasan_save_track+0x14/0x30\n __kasan_save_free_info+0x3a/0x60\n __kasan_slab_free+0x43/0x70\n kfree+0x103/0x500\n device_release+0x9a/0x210\n kobject_put+0x100/0x1e0\n vhci_release+0x18b/0x240\n------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40284",
"url": "https://www.suse.com/security/cve/CVE-2025-40284"
},
{
"category": "external",
"summary": "SUSE Bug 1254860 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1254860"
},
{
"category": "external",
"summary": "SUSE Bug 1257669 for CVE-2025-40284",
"url": "https://bugzilla.suse.com/1257669"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40284"
},
{
"cve": "CVE-2025-40287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix improper check of dentry.stream.valid_size\n\nWe found an infinite loop bug in the exFAT file system that can lead to a\nDenial-of-Service (DoS) condition. When a dentry in an exFAT filesystem is\nmalformed, the following system calls - SYS_openat, SYS_ftruncate, and\nSYS_pwrite64 - can cause the kernel to hang.\n\nRoot cause analysis shows that the size validation code in exfat_find()\ndoes not check whether dentry.stream.valid_size is negative. As a result,\nthe system calls mentioned above can succeed and eventually trigger the DoS\nissue.\n\nThis patch adds a check for negative dentry.stream.valid_size to prevent\nthis vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40287",
"url": "https://www.suse.com/security/cve/CVE-2025-40287"
},
{
"category": "external",
"summary": "SUSE Bug 1255030 for CVE-2025-40287",
"url": "https://bugzilla.suse.com/1255030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40287"
},
{
"cve": "CVE-2025-40288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40288"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices\n\nPreviously, APU platforms (and other scenarios with uninitialized VRAM managers)\ntriggered a NULL pointer dereference in `ttm_resource_manager_usage()`. The root\ncause is not that the `struct ttm_resource_manager *man` pointer itself is NULL,\nbut that `man-\u003ebdev` (the backing device pointer within the manager) remains\nuninitialized (NULL) on APUs-since APUs lack dedicated VRAM and do not fully\nset up VRAM manager structures. When `ttm_resource_manager_usage()` attempts to\nacquire `man-\u003ebdev-\u003elru_lock`, it dereferences the NULL `man-\u003ebdev`, leading to\na kernel OOPS.\n\n1. **amdgpu_cs.c**: Extend the existing bandwidth control check in\n `amdgpu_cs_get_threshold_for_moves()` to include a check for\n `ttm_resource_manager_used()`. If the manager is not used (uninitialized\n `bdev`), return 0 for migration thresholds immediately-skipping VRAM-specific\n logic that would trigger the NULL dereference.\n\n2. **amdgpu_kms.c**: Update the `AMDGPU_INFO_VRAM_USAGE` ioctl and memory info\n reporting to use a conditional: if the manager is used, return the real VRAM\n usage; otherwise, return 0. This avoids accessing `man-\u003ebdev` when it is\n NULL.\n\n3. **amdgpu_virt.c**: Modify the vf2pf (virtual function to physical function)\n data write path. Use `ttm_resource_manager_used()` to check validity: if the\n manager is usable, calculate `fb_usage` from VRAM usage; otherwise, set\n `fb_usage` to 0 (APUs have no discrete framebuffer to report).\n\nThis approach is more robust than APU-specific checks because it:\n- Works for all scenarios where the VRAM manager is uninitialized (not just APUs),\n- Aligns with TTM\u0027s design by using its native helper function,\n- Preserves correct behavior for discrete GPUs (which have fully initialized\n `man-\u003ebdev` and pass the `ttm_resource_manager_used()` check).\n\nv4: use ttm_resource_manager_used(\u0026adev-\u003emman.vram_mgr.manager) instead of checking the adev-\u003egmc.is_app_apu flag (Christian)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40288",
"url": "https://www.suse.com/security/cve/CVE-2025-40288"
},
{
"category": "external",
"summary": "SUSE Bug 1255057 for CVE-2025-40288",
"url": "https://bugzilla.suse.com/1255057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40288"
},
{
"cve": "CVE-2025-40289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM\n\nOtherwise accessing them can cause a crash.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40289",
"url": "https://www.suse.com/security/cve/CVE-2025-40289"
},
{
"category": "external",
"summary": "SUSE Bug 1255042 for CVE-2025-40289",
"url": "https://bugzilla.suse.com/1255042"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40289"
},
{
"cve": "CVE-2025-40292",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40292"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvirtio-net: fix received length check in big packets\n\nSince commit 4959aebba8c0 (\"virtio-net: use mtu size as buffer length\nfor big packets\"), when guest gso is off, the allocated size for big\npackets is not MAX_SKB_FRAGS * PAGE_SIZE anymore but depends on\nnegotiated MTU. The number of allocated frags for big packets is stored\nin vi-\u003ebig_packets_num_skbfrags.\n\nBecause the host announced buffer length can be malicious (e.g. the host\nvhost_net driver\u0027s get_rx_bufs is modified to announce incorrect\nlength), we need a check in virtio_net receive path. Currently, the\ncheck is not adapted to the new change which can lead to NULL page\npointer dereference in the below while loop when receiving length that\nis larger than the allocated one.\n\nThis commit fixes the received length check corresponding to the new\nchange.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40292",
"url": "https://www.suse.com/security/cve/CVE-2025-40292"
},
{
"category": "external",
"summary": "SUSE Bug 1255175 for CVE-2025-40292",
"url": "https://bugzilla.suse.com/1255175"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40292"
},
{
"cve": "CVE-2025-40293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommufd: Don\u0027t overflow during division for dirty tracking\n\nIf pgshift is 63 then BITS_PER_TYPE(*bitmap-\u003ebitmap) * pgsize will overflow\nto 0 and this triggers divide by 0.\n\nIn this case the index should just be 0, so reorganize things to divide\nby shift and avoid hitting any overflows.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40293",
"url": "https://www.suse.com/security/cve/CVE-2025-40293"
},
{
"category": "external",
"summary": "SUSE Bug 1255179 for CVE-2025-40293",
"url": "https://bugzilla.suse.com/1255179"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40293"
},
{
"cve": "CVE-2025-40294",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40294"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern()\n\nIn the parse_adv_monitor_pattern() function, the value of\nthe \u0027length\u0027 variable is currently limited to HCI_MAX_EXT_AD_LENGTH(251).\nThe size of the \u0027value\u0027 array in the mgmt_adv_pattern structure is 31.\nIf the value of \u0027pattern[i].length\u0027 is set in the user space\nand exceeds 31, the \u0027patterns[i].value\u0027 array can be accessed\nout of bound when copied.\n\nIncreasing the size of the \u0027value\u0027 array in\nthe \u0027mgmt_adv_pattern\u0027 structure will break the userspace.\nConsidering this, and to avoid OOB access revert the limits for \u0027offset\u0027\nand \u0027length\u0027 back to the value of HCI_MAX_AD_LENGTH.\n\nFound by InfoTeCS on behalf of Linux Verification Center\n(linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40294",
"url": "https://www.suse.com/security/cve/CVE-2025-40294"
},
{
"category": "external",
"summary": "SUSE Bug 1255181 for CVE-2025-40294",
"url": "https://bugzilla.suse.com/1255181"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40294"
},
{
"cve": "CVE-2025-40297",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40297"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: bridge: fix use-after-free due to MST port state bypass\n\nsyzbot reported[1] a use-after-free when deleting an expired fdb. It is\ndue to a race condition between learning still happening and a port being\ndeleted, after all its fdbs have been flushed. The port\u0027s state has been\ntoggled to disabled so no learning should happen at that time, but if we\nhave MST enabled, it will bypass the port\u0027s state, that together with VLAN\nfiltering disabled can lead to fdb learning at a time when it shouldn\u0027t\nhappen while the port is being deleted. VLAN filtering must be disabled\nbecause we flush the port VLANs when it\u0027s being deleted which will stop\nlearning. This fix adds a check for the port\u0027s vlan group which is\ninitialized to NULL when the port is getting deleted, that avoids the port\nstate bypass. When MST is enabled there would be a minimal new overhead\nin the fast-path because the port\u0027s vlan group pointer is cache-hot.\n\n[1] https://syzkaller.appspot.com/bug?extid=dd280197f0f7ab3917be",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40297",
"url": "https://www.suse.com/security/cve/CVE-2025-40297"
},
{
"category": "external",
"summary": "SUSE Bug 1255187 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255187"
},
{
"category": "external",
"summary": "SUSE Bug 1255895 for CVE-2025-40297",
"url": "https://bugzilla.suse.com/1255895"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40297"
},
{
"cve": "CVE-2025-40301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_event: validate skb length for unknown CC opcode\n\nIn hci_cmd_complete_evt(), if the command complete event has an unknown\nopcode, we assume the first byte of the remaining skb-\u003edata contains the\nreturn status. However, parameter data has previously been pulled in\nhci_event_func(), which may leave the skb empty. If so, using skb-\u003edata[0]\nfor the return status uses un-init memory.\n\nThe fix is to check skb-\u003elen before using skb-\u003edata.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40301",
"url": "https://www.suse.com/security/cve/CVE-2025-40301"
},
{
"category": "external",
"summary": "SUSE Bug 1255193 for CVE-2025-40301",
"url": "https://bugzilla.suse.com/1255193"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40301"
},
{
"cve": "CVE-2025-40302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40302"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: videobuf2: forbid remove_bufs when legacy fileio is active\n\nvb2_ioctl_remove_bufs() call manipulates queue internal buffer list,\npotentially overwriting some pointers used by the legacy fileio access\nmode. Forbid that ioctl when fileio is active to protect internal queue\nstate between subsequent read/write calls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40302",
"url": "https://www.suse.com/security/cve/CVE-2025-40302"
},
{
"category": "external",
"summary": "SUSE Bug 1255196 for CVE-2025-40302",
"url": "https://bugzilla.suse.com/1255196"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40302"
},
{
"cve": "CVE-2025-40303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: ensure no dirty metadata is written back for an fs with errors\n\n[BUG]\nDuring development of a minor feature (make sure all btrfs_bio::end_io()\nis called in task context), I noticed a crash in generic/388, where\nmetadata writes triggered new works after btrfs_stop_all_workers().\n\nIt turns out that it can even happen without any code modification, just\nusing RAID5 for metadata and the same workload from generic/388 is going\nto trigger the use-after-free.\n\n[CAUSE]\nIf btrfs hits an error, the fs is marked as error, no new\ntransaction is allowed thus metadata is in a frozen state.\n\nBut there are some metadata modifications before that error, and they are\nstill in the btree inode page cache.\n\nSince there will be no real transaction commit, all those dirty folios\nare just kept as is in the page cache, and they can not be invalidated\nby invalidate_inode_pages2() call inside close_ctree(), because they are\ndirty.\n\nAnd finally after btrfs_stop_all_workers(), we call iput() on btree\ninode, which triggers writeback of those dirty metadata.\n\nAnd if the fs is using RAID56 metadata, this will trigger RMW and queue\nnew works into rmw_workers, which is already stopped, causing warning\nfrom queue_work() and use-after-free.\n\n[FIX]\nAdd a special handling for write_one_eb(), that if the fs is already in\nan error state, immediately mark the bbio as failure, instead of really\nsubmitting them.\n\nThen during close_ctree(), iput() will just discard all those dirty\ntree blocks without really writing them back, thus no more new jobs for\nalready stopped-and-freed workqueues.\n\nThe extra discard in write_one_eb() also acts as an extra safenet.\nE.g. the transaction abort is triggered by some extent/free space\ntree corruptions, and since extent/free space tree is already corrupted\nsome tree blocks may be allocated where they shouldn\u0027t be (overwriting\nexisting tree blocks). In that case writing them back will further\ncorrupting the fs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40303",
"url": "https://www.suse.com/security/cve/CVE-2025-40303"
},
{
"category": "external",
"summary": "SUSE Bug 1255058 for CVE-2025-40303",
"url": "https://bugzilla.suse.com/1255058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40303"
},
{
"cve": "CVE-2025-40304",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40304"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds\n\nAdd bounds checking to prevent writes past framebuffer boundaries when\nrendering text near screen edges. Return early if the Y position is off-screen\nand clip image height to screen boundary. Break from the rendering loop if the\nX position is off-screen. When clipping image width to fit the screen, update\nthe character count to match the clipped width to prevent buffer size\nmismatches.\n\nWithout the character count update, bit_putcs_aligned and bit_putcs_unaligned\nreceive mismatched parameters where the buffer is allocated for the clipped\nwidth but cnt reflects the original larger count, causing out-of-bounds writes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40304",
"url": "https://www.suse.com/security/cve/CVE-2025-40304"
},
{
"category": "external",
"summary": "SUSE Bug 1255034 for CVE-2025-40304",
"url": "https://bugzilla.suse.com/1255034"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40304"
},
{
"cve": "CVE-2025-40307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: validate cluster allocation bits of the allocation bitmap\n\nsyzbot created an exfat image with cluster bits not set for the allocation\nbitmap. exfat-fs reads and uses the allocation bitmap without checking\nthis. The problem is that if the start cluster of the allocation bitmap\nis 6, cluster 6 can be allocated when creating a directory with mkdir.\nexfat zeros out this cluster in exfat_mkdir, which can delete existing\nentries. This can reallocate the allocated entries. In addition,\nthe allocation bitmap is also zeroed out, so cluster 6 can be reallocated.\nThis patch adds exfat_test_bitmap_range to validate that clusters used for\nthe allocation bitmap are correctly marked as in-use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40307",
"url": "https://www.suse.com/security/cve/CVE-2025-40307"
},
{
"category": "external",
"summary": "SUSE Bug 1255039 for CVE-2025-40307",
"url": "https://bugzilla.suse.com/1255039"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40307"
},
{
"cve": "CVE-2025-40308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: bcsp: receive data only if registered\n\nCurrently, bcsp_recv() can be called even when the BCSP protocol has not\nbeen registered. This leads to a NULL pointer dereference, as shown in\nthe following stack trace:\n\n KASAN: null-ptr-deref in range [0x0000000000000108-0x000000000000010f]\n RIP: 0010:bcsp_recv+0x13d/0x1740 drivers/bluetooth/hci_bcsp.c:590\n Call Trace:\n \u003cTASK\u003e\n hci_uart_tty_receive+0x194/0x220 drivers/bluetooth/hci_ldisc.c:627\n tiocsti+0x23c/0x2c0 drivers/tty/tty_io.c:2290\n tty_ioctl+0x626/0xde0 drivers/tty/tty_io.c:2706\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:907 [inline]\n __se_sys_ioctl+0xfc/0x170 fs/ioctl.c:893\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xfa/0x3b0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nTo prevent this, ensure that the HCI_UART_REGISTERED flag is set before\nprocessing received data. If the protocol is not registered, return\n-EUNATCH.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40308",
"url": "https://www.suse.com/security/cve/CVE-2025-40308"
},
{
"category": "external",
"summary": "SUSE Bug 1255064 for CVE-2025-40308",
"url": "https://bugzilla.suse.com/1255064"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40308"
},
{
"cve": "CVE-2025-40309",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40309"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: SCO: Fix UAF on sco_conn_free\n\nBUG: KASAN: slab-use-after-free in sco_conn_free net/bluetooth/sco.c:87 [inline]\nBUG: KASAN: slab-use-after-free in kref_put include/linux/kref.h:65 [inline]\nBUG: KASAN: slab-use-after-free in sco_conn_put+0xdd/0x410\nnet/bluetooth/sco.c:107\nWrite of size 8 at addr ffff88811cb96b50 by task kworker/u17:4/352\n\nCPU: 1 UID: 0 PID: 352 Comm: kworker/u17:4 Not tainted\n6.17.0-rc5-g717368f83676 #4 PREEMPT(voluntary)\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.15.0-1 04/01/2014\nWorkqueue: hci13 hci_cmd_sync_work\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:94 [inline]\n dump_stack_lvl+0x10b/0x170 lib/dump_stack.c:120\n print_address_description mm/kasan/report.c:378 [inline]\n print_report+0x191/0x550 mm/kasan/report.c:482\n kasan_report+0xc4/0x100 mm/kasan/report.c:595\n sco_conn_free net/bluetooth/sco.c:87 [inline]\n kref_put include/linux/kref.h:65 [inline]\n sco_conn_put+0xdd/0x410 net/bluetooth/sco.c:107\n sco_connect_cfm+0xb4/0xae0 net/bluetooth/sco.c:1441\n hci_connect_cfm include/net/bluetooth/hci_core.h:2082 [inline]\n hci_conn_failed+0x20a/0x2e0 net/bluetooth/hci_conn.c:1313\n hci_conn_unlink+0x55f/0x810 net/bluetooth/hci_conn.c:1121\n hci_conn_del+0xb6/0x1110 net/bluetooth/hci_conn.c:1147\n hci_abort_conn_sync+0x8c5/0xbb0 net/bluetooth/hci_sync.c:5689\n hci_cmd_sync_work+0x281/0x380 net/bluetooth/hci_sync.c:332\n process_one_work kernel/workqueue.c:3236 [inline]\n process_scheduled_works+0x77e/0x1040 kernel/workqueue.c:3319\n worker_thread+0xbee/0x1200 kernel/workqueue.c:3400\n kthread+0x3c7/0x870 kernel/kthread.c:463\n ret_from_fork+0x13a/0x1e0 arch/x86/kernel/process.c:148\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245\n \u003c/TASK\u003e\n\nAllocated by task 31370:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n poison_kmalloc_redzone mm/kasan/common.c:388 [inline]\n __kasan_kmalloc+0x82/0x90 mm/kasan/common.c:405\n kasan_kmalloc include/linux/kasan.h:260 [inline]\n __do_kmalloc_node mm/slub.c:4382 [inline]\n __kmalloc_noprof+0x22f/0x390 mm/slub.c:4394\n kmalloc_noprof include/linux/slab.h:909 [inline]\n sk_prot_alloc+0xae/0x220 net/core/sock.c:2239\n sk_alloc+0x34/0x5a0 net/core/sock.c:2295\n bt_sock_alloc+0x3c/0x330 net/bluetooth/af_bluetooth.c:151\n sco_sock_alloc net/bluetooth/sco.c:562 [inline]\n sco_sock_create+0xc0/0x350 net/bluetooth/sco.c:593\n bt_sock_create+0x161/0x3b0 net/bluetooth/af_bluetooth.c:135\n __sock_create+0x3ad/0x780 net/socket.c:1589\n sock_create net/socket.c:1647 [inline]\n __sys_socket_create net/socket.c:1684 [inline]\n __sys_socket+0xd5/0x330 net/socket.c:1731\n __do_sys_socket net/socket.c:1745 [inline]\n __se_sys_socket net/socket.c:1743 [inline]\n __x64_sys_socket+0x7a/0x90 net/socket.c:1743\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xc7/0x240 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n\nFreed by task 31374:\n kasan_save_stack mm/kasan/common.c:47 [inline]\n kasan_save_track+0x30/0x70 mm/kasan/common.c:68\n kasan_save_free_info+0x40/0x50 mm/kasan/generic.c:576\n poison_slab_object mm/kasan/common.c:243 [inline]\n __kasan_slab_free+0x3d/0x50 mm/kasan/common.c:275\n kasan_slab_free include/linux/kasan.h:233 [inline]\n slab_free_hook mm/slub.c:2428 [inline]\n slab_free mm/slub.c:4701 [inline]\n kfree+0x199/0x3b0 mm/slub.c:4900\n sk_prot_free net/core/sock.c:2278 [inline]\n __sk_destruct+0x4aa/0x630 net/core/sock.c:2373\n sco_sock_release+0x2ad/0x300 net/bluetooth/sco.c:1333\n __sock_release net/socket.c:649 [inline]\n sock_close+0xb8/0x230 net/socket.c:1439\n __fput+0x3d1/0x9e0 fs/file_table.c:468\n task_work_run+0x206/0x2a0 kernel/task_work.c:227\n get_signal+0x1201/0x1410 kernel/signal.c:2807\n arch_do_signal_or_restart+0x34/0x740 arch/x86/kernel/signal.c:337\n exit_to_user_mode_loop+0x68/0xc0 kernel/entry/common.c:40\n exit_to_user_mode_prepare include/linux/irq-entry-common.h:225 [inline]\n s\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40309",
"url": "https://www.suse.com/security/cve/CVE-2025-40309"
},
{
"category": "external",
"summary": "SUSE Bug 1255065 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255065"
},
{
"category": "external",
"summary": "SUSE Bug 1255066 for CVE-2025-40309",
"url": "https://bugzilla.suse.com/1255066"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40309"
},
{
"cve": "CVE-2025-40310",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40310"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\namd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw\n\nThere is race in amdgpu_amdkfd_device_fini_sw and interrupt.\nif amdgpu_amdkfd_device_fini_sw run in b/w kfd_cleanup_nodes and\n kfree(kfd), and KGD interrupt generated.\n\nkernel panic log:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000098\namdgpu 0000:c8:00.0: amdgpu: Requesting 4 partitions through PSP\n\nPGD d78c68067 P4D d78c68067\n\nkfd kfd: amdgpu: Allocated 3969056 bytes on gart\n\nPUD 1465b8067 PMD @\n\nOops: @002 [#1] SMP NOPTI\n\nkfd kfd: amdgpu: Total number of KFD nodes to be created: 4\nCPU: 115 PID: @ Comm: swapper/115 Kdump: loaded Tainted: G S W OE K\n\nRIP: 0010:_raw_spin_lock_irqsave+0x12/0x40\n\nCode: 89 e@ 41 5c c3 cc cc cc cc 66 66 2e Of 1f 84 00 00 00 00 00 OF 1f 40 00 Of 1f 44% 00 00 41 54 9c 41 5c fa 31 cO ba 01 00 00 00 \u003cfO\u003e OF b1 17 75 Ba 4c 89 e@ 41 Sc\n\n89 c6 e8 07 38 5d\n\nRSP: 0018: ffffc90@1a6b0e28 EFLAGS: 00010046\n\nRAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000018\n0000000000000001 RSI: ffff8883bb623e00 RDI: 0000000000000098\nffff8883bb000000 RO8: ffff888100055020 ROO: ffff888100055020\n0000000000000000 R11: 0000000000000000 R12: 0900000000000002\nffff888F2b97da0@ R14: @000000000000098 R15: ffff8883babdfo00\n\nCS: 010 DS: 0000 ES: 0000 CRO: 0000000080050033\n\nCR2: 0000000000000098 CR3: 0000000e7cae2006 CR4: 0000000002770ce0\n0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n0000000000000000 DR6: 00000000fffeO7FO DR7: 0000000000000400\n\nPKRU: 55555554\n\nCall Trace:\n\n\u003cIRQ\u003e\n\nkgd2kfd_interrupt+@x6b/0x1f@ [amdgpu]\n\n? amdgpu_fence_process+0xa4/0x150 [amdgpu]\n\nkfd kfd: amdgpu: Node: 0, interrupt_bitmap: 3 YcpxFl Rant tErace\n\namdgpu_irq_dispatch+0x165/0x210 [amdgpu]\n\namdgpu_ih_process+0x80/0x100 [amdgpu]\n\namdgpu: Virtual CRAT table created for GPU\n\namdgpu_irq_handler+0x1f/@x60 [amdgpu]\n\n__handle_irq_event_percpu+0x3d/0x170\n\namdgpu: Topology: Add dGPU node [0x74a2:0x1002]\n\nhandle_irq_event+0x5a/@xcO\n\nhandle_edge_irq+0x93/0x240\n\nkfd kfd: amdgpu: KFD node 1 partition @ size 49148M\n\nasm_call_irq_on_stack+0xf/@x20\n\n\u003c/IRQ\u003e\n\ncommon_interrupt+0xb3/0x130\n\nasm_common_interrupt+0x1le/0x40\n\n5.10.134-010.a1i5000.a18.x86_64 #1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40310",
"url": "https://www.suse.com/security/cve/CVE-2025-40310"
},
{
"category": "external",
"summary": "SUSE Bug 1255041 for CVE-2025-40310",
"url": "https://bugzilla.suse.com/1255041"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40310"
},
{
"cve": "CVE-2025-40311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40311"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/habanalabs: support mapping cb with vmalloc-backed coherent memory\n\nWhen IOMMU is enabled, dma_alloc_coherent() with GFP_USER may return\naddresses from the vmalloc range. If such an address is mapped without\nVM_MIXEDMAP, vm_insert_page() will trigger a BUG_ON due to the\nVM_PFNMAP restriction.\n\nFix this by checking for vmalloc addresses and setting VM_MIXEDMAP\nin the VMA before mapping. This ensures safe mapping and avoids kernel\ncrashes. The memory is still driver-allocated and cannot be accessed\ndirectly by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40311",
"url": "https://www.suse.com/security/cve/CVE-2025-40311"
},
{
"category": "external",
"summary": "SUSE Bug 1255068 for CVE-2025-40311",
"url": "https://bugzilla.suse.com/1255068"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "low"
}
],
"title": "CVE-2025-40311"
},
{
"cve": "CVE-2025-40314",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40314"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget\n\nIn the __cdnsp_gadget_init() and cdnsp_gadget_exit() functions, the gadget\nstructure (pdev-\u003egadget) was freed before its endpoints.\nThe endpoints are linked via the ep_list in the gadget structure.\nFreeing the gadget first leaves dangling pointers in the endpoint list.\nWhen the endpoints are subsequently freed, this results in a use-after-free.\n\nFix:\nBy separating the usb_del_gadget_udc() operation into distinct \"del\" and\n\"put\" steps, cdnsp_gadget_free_endpoints() can be executed prior to the\nfinal release of the gadget structure with usb_put_gadget().\n\nA patch similar to bb9c74a5bd14(\"usb: dwc3: gadget: Free gadget structure\n only after freeing endpoints\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40314",
"url": "https://www.suse.com/security/cve/CVE-2025-40314"
},
{
"category": "external",
"summary": "SUSE Bug 1255072 for CVE-2025-40314",
"url": "https://bugzilla.suse.com/1255072"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40314"
},
{
"cve": "CVE-2025-40315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40315"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_fs: Fix epfile null pointer access after ep enable.\n\nA race condition occurs when ffs_func_eps_enable() runs concurrently\nwith ffs_data_reset(). The ffs_data_clear() called in ffs_data_reset()\nsets ffs-\u003eepfiles to NULL before resetting ffs-\u003eeps_count to 0, leading\nto a NULL pointer dereference when accessing epfile-\u003eep in\nffs_func_eps_enable() after successful usb_ep_enable().\n\nThe ffs-\u003eepfiles pointer is set to NULL in both ffs_data_clear() and\nffs_data_close() functions, and its modification is protected by the\nspinlock ffs-\u003eeps_lock. And the whole ffs_func_eps_enable() function\nis also protected by ffs-\u003eeps_lock.\n\nThus, add NULL pointer handling for ffs-\u003eepfiles in the\nffs_func_eps_enable() function to fix issues",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40315",
"url": "https://www.suse.com/security/cve/CVE-2025-40315"
},
{
"category": "external",
"summary": "SUSE Bug 1255083 for CVE-2025-40315",
"url": "https://bugzilla.suse.com/1255083"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40315"
},
{
"cve": "CVE-2025-40316",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40316"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Fix device use-after-free on unbind\n\nA recent change fixed device reference leaks when looking up drm\nplatform device driver data during bind() but failed to remove a partial\nfix which had been added by commit 80805b62ea5b (\"drm/mediatek: Fix\nkobject put for component sub-drivers\").\n\nThis results in a reference imbalance on component bind() failures and\non unbind() which could lead to a user-after-free.\n\nMake sure to only drop the references after retrieving the driver data\nby effectively reverting the previous partial fix.\n\nNote that holding a reference to a device does not prevent its driver\ndata from going away so there is no point in keeping the reference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40316",
"url": "https://www.suse.com/security/cve/CVE-2025-40316"
},
{
"category": "external",
"summary": "SUSE Bug 1254797 for CVE-2025-40316",
"url": "https://bugzilla.suse.com/1254797"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40316"
},
{
"cve": "CVE-2025-40317",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40317"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregmap: slimbus: fix bus_context pointer in regmap init calls\n\nCommit 4e65bda8273c (\"ASoC: wcd934x: fix error handling in\nwcd934x_codec_parse_data()\") revealed the problem in the slimbus regmap.\nThat commit breaks audio playback, for instance, on sdm845 Thundercomm\nDragonboard 845c board:\n\n Unable to handle kernel paging request at virtual address ffff8000847cbad4\n ...\n CPU: 5 UID: 0 PID: 776 Comm: aplay Not tainted 6.18.0-rc1-00028-g7ea30958b305 #11 PREEMPT\n Hardware name: Thundercomm Dragonboard 845c (DT)\n ...\n Call trace:\n slim_xfer_msg+0x24/0x1ac [slimbus] (P)\n slim_read+0x48/0x74 [slimbus]\n regmap_slimbus_read+0x18/0x24 [regmap_slimbus]\n _regmap_raw_read+0xe8/0x174\n _regmap_bus_read+0x44/0x80\n _regmap_read+0x60/0xd8\n _regmap_update_bits+0xf4/0x140\n _regmap_select_page+0xa8/0x124\n _regmap_raw_write_impl+0x3b8/0x65c\n _regmap_bus_raw_write+0x60/0x80\n _regmap_write+0x58/0xc0\n regmap_write+0x4c/0x80\n wcd934x_hw_params+0x494/0x8b8 [snd_soc_wcd934x]\n snd_soc_dai_hw_params+0x3c/0x7c [snd_soc_core]\n __soc_pcm_hw_params+0x22c/0x634 [snd_soc_core]\n dpcm_be_dai_hw_params+0x1d4/0x38c [snd_soc_core]\n dpcm_fe_dai_hw_params+0x9c/0x17c [snd_soc_core]\n snd_pcm_hw_params+0x124/0x464 [snd_pcm]\n snd_pcm_common_ioctl+0x110c/0x1820 [snd_pcm]\n snd_pcm_ioctl+0x34/0x4c [snd_pcm]\n __arm64_sys_ioctl+0xac/0x104\n invoke_syscall+0x48/0x104\n el0_svc_common.constprop.0+0x40/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xec\n el0t_64_sync_handler+0xa0/0xf0\n el0t_64_sync+0x198/0x19c\n\nThe __devm_regmap_init_slimbus() started to be used instead of\n__regmap_init_slimbus() after the commit mentioned above and turns out\nthe incorrect bus_context pointer (3rd argument) was used in\n__devm_regmap_init_slimbus(). It should be just \"slimbus\" (which is equal\nto \u0026slimbus-\u003edev). Correct it. The wcd934x codec seems to be the only or\nthe first user of devm_regmap_init_slimbus() but we should fix it till\nthe point where __devm_regmap_init_slimbus() was introduced therefore\ntwo \"Fixes\" tags.\n\nWhile at this, also correct the same argument in __regmap_init_slimbus().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40317",
"url": "https://www.suse.com/security/cve/CVE-2025-40317"
},
{
"category": "external",
"summary": "SUSE Bug 1254796 for CVE-2025-40317",
"url": "https://bugzilla.suse.com/1254796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40317"
},
{
"cve": "CVE-2025-40318",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40318"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sync: fix race in hci_cmd_sync_dequeue_once\n\nhci_cmd_sync_dequeue_once() does lookup and then cancel\nthe entry under two separate lock sections. Meanwhile,\nhci_cmd_sync_work() can also delete the same entry,\nleading to double list_del() and \"UAF\".\n\nFix this by holding cmd_sync_work_lock across both\nlookup and cancel, so that the entry cannot be removed\nconcurrently.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40318",
"url": "https://www.suse.com/security/cve/CVE-2025-40318"
},
{
"category": "external",
"summary": "SUSE Bug 1254798 for CVE-2025-40318",
"url": "https://bugzilla.suse.com/1254798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40318"
},
{
"cve": "CVE-2025-40319",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40319"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Sync pending IRQ work before freeing ring buffer\n\nFix a race where irq_work can be queued in bpf_ringbuf_commit()\nbut the ring buffer is freed before the work executes.\nIn the syzbot reproducer, a BPF program attached to sched_switch\ntriggers bpf_ringbuf_commit(), queuing an irq_work. If the ring buffer\nis freed before this work executes, the irq_work thread may accesses\nfreed memory.\nCalling `irq_work_sync(\u0026rb-\u003ework)` ensures that all pending irq_work\ncomplete before freeing the buffer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40319",
"url": "https://www.suse.com/security/cve/CVE-2025-40319"
},
{
"category": "external",
"summary": "SUSE Bug 1254794 for CVE-2025-40319",
"url": "https://bugzilla.suse.com/1254794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40319"
},
{
"cve": "CVE-2025-40320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40320"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential cfid UAF in smb2_query_info_compound\n\nWhen smb2_query_info_compound() retries, a previously allocated cfid may\nhave been freed in the first attempt.\nBecause cfid wasn\u0027t reset on replay, later cleanup could act on a stale\npointer, leading to a potential use-after-free.\n\nReinitialize cfid to NULL under the replay label.\n\nExample trace (trimmed):\n\nrefcount_t: underflow; use-after-free.\nWARNING: CPU: 1 PID: 11224 at ../lib/refcount.c:28 refcount_warn_saturate+0x9c/0x110\n[...]\nRIP: 0010:refcount_warn_saturate+0x9c/0x110\n[...]\nCall Trace:\n \u003cTASK\u003e\n smb2_query_info_compound+0x29c/0x5c0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? step_into+0x10d/0x690\n ? __legitimize_path+0x28/0x60\n smb2_queryfs+0x6a/0xf0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n smb311_queryfs+0x12d/0x140 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n ? kmem_cache_alloc+0x18a/0x340\n ? getname_flags+0x46/0x1e0\n cifs_statfs+0x9f/0x2b0 [cifs f90b72658819bd21c94769b6a652029a07a7172f]\n statfs_by_dentry+0x67/0x90\n vfs_statfs+0x16/0xd0\n user_statfs+0x54/0xa0\n __do_sys_statfs+0x20/0x50\n do_syscall_64+0x58/0x80",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40320",
"url": "https://www.suse.com/security/cve/CVE-2025-40320"
},
{
"category": "external",
"summary": "SUSE Bug 1254793 for CVE-2025-40320",
"url": "https://bugzilla.suse.com/1254793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40320"
},
{
"cve": "CVE-2025-40321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40321"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode\n\nCurrently, whenever there is a need to transmit an Action frame,\nthe brcmfmac driver always uses the P2P vif to send the \"actframe\" IOVAR to\nfirmware. The P2P interfaces were available when wpa_supplicant is managing\nthe wlan interface.\n\nHowever, the P2P interfaces are not created/initialized when only hostapd\nis managing the wlan interface. And if hostapd receives an ANQP Query REQ\nAction frame even from an un-associated STA, the brcmfmac driver tries\nto use an uninitialized P2P vif pointer for sending the IOVAR to firmware.\nThis NULL pointer dereferencing triggers a driver crash.\n\n [ 1417.074538] Unable to handle kernel NULL pointer dereference at virtual\n address 0000000000000000\n [...]\n [ 1417.075188] Hardware name: Raspberry Pi 4 Model B Rev 1.5 (DT)\n [...]\n [ 1417.075653] Call trace:\n [ 1417.075662] brcmf_p2p_send_action_frame+0x23c/0xc58 [brcmfmac]\n [ 1417.075738] brcmf_cfg80211_mgmt_tx+0x304/0x5c0 [brcmfmac]\n [ 1417.075810] cfg80211_mlme_mgmt_tx+0x1b0/0x428 [cfg80211]\n [ 1417.076067] nl80211_tx_mgmt+0x238/0x388 [cfg80211]\n [ 1417.076281] genl_family_rcv_msg_doit+0xe0/0x158\n [ 1417.076302] genl_rcv_msg+0x220/0x2a0\n [ 1417.076317] netlink_rcv_skb+0x68/0x140\n [ 1417.076330] genl_rcv+0x40/0x60\n [ 1417.076343] netlink_unicast+0x330/0x3b8\n [ 1417.076357] netlink_sendmsg+0x19c/0x3f8\n [ 1417.076370] __sock_sendmsg+0x64/0xc0\n [ 1417.076391] ____sys_sendmsg+0x268/0x2a0\n [ 1417.076408] ___sys_sendmsg+0xb8/0x118\n [ 1417.076427] __sys_sendmsg+0x90/0xf8\n [ 1417.076445] __arm64_sys_sendmsg+0x2c/0x40\n [ 1417.076465] invoke_syscall+0x50/0x120\n [ 1417.076486] el0_svc_common.constprop.0+0x48/0xf0\n [ 1417.076506] do_el0_svc+0x24/0x38\n [ 1417.076525] el0_svc+0x30/0x100\n [ 1417.076548] el0t_64_sync_handler+0x100/0x130\n [ 1417.076569] el0t_64_sync+0x190/0x198\n [ 1417.076589] Code: f9401e80 aa1603e2 f9403be1 5280e483 (f9400000)\n\nFix this, by always using the vif corresponding to the wdev on which the\nAction frame Transmission request was initiated by the userspace. This way,\neven if P2P vif is not available, the IOVAR is sent to firmware on AP vif\nand the ANQP Query RESP Action frame is transmitted without crashing the\ndriver.\n\nMove init_completion() for \"send_af_done\" from brcmf_p2p_create_p2pdev()\nto brcmf_p2p_attach(). Because the former function would not get executed\nwhen only hostapd is managing wlan interface, and it is not safe to do\nreinit_completion() later in brcmf_p2p_tx_action_frame(), without any prior\ninit_completion().\n\nAnd in the brcmf_p2p_tx_action_frame() function, the condition check for\nP2P Presence response frame is not needed, since the wpa_supplicant is\nproperly sending the P2P Presense Response frame on the P2P-GO vif instead\nof the P2P-Device vif.\n\n[Cc stable]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40321",
"url": "https://www.suse.com/security/cve/CVE-2025-40321"
},
{
"category": "external",
"summary": "SUSE Bug 1254795 for CVE-2025-40321",
"url": "https://bugzilla.suse.com/1254795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40321"
},
{
"cve": "CVE-2025-40322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40322"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbdev: bitblit: bound-check glyph index in bit_putcs*\n\nbit_putcs_aligned()/unaligned() derived the glyph pointer from the\ncharacter value masked by 0xff/0x1ff, which may exceed the actual font\u0027s\nglyph count and read past the end of the built-in font array.\nClamp the index to the actual glyph count before computing the address.\n\nThis fixes a global out-of-bounds read reported by syzbot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40322",
"url": "https://www.suse.com/security/cve/CVE-2025-40322"
},
{
"category": "external",
"summary": "SUSE Bug 1255092 for CVE-2025-40322",
"url": "https://bugzilla.suse.com/1255092"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40322"
},
{
"cve": "CVE-2025-40323",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40323"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfbcon: Set fb_display[i]-\u003emode to NULL when the mode is released\n\nRecently, we discovered the following issue through syzkaller:\n\nBUG: KASAN: slab-use-after-free in fb_mode_is_equal+0x285/0x2f0\nRead of size 4 at addr ff11000001b3c69c by task syz.xxx\n...\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0xab/0xe0\n print_address_description.constprop.0+0x2c/0x390\n print_report+0xb9/0x280\n kasan_report+0xb8/0xf0\n fb_mode_is_equal+0x285/0x2f0\n fbcon_mode_deleted+0x129/0x180\n fb_set_var+0xe7f/0x11d0\n do_fb_ioctl+0x6a0/0x750\n fb_ioctl+0xe0/0x140\n __x64_sys_ioctl+0x193/0x210\n do_syscall_64+0x5f/0x9c0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\nBased on experimentation and analysis, during framebuffer unregistration,\nonly the memory of fb_info-\u003emodelist is freed, without setting the\ncorresponding fb_display[i]-\u003emode to NULL for the freed modes. This leads\nto UAF issues during subsequent accesses. Here\u0027s an example of reproduction\nsteps:\n1. With /dev/fb0 already registered in the system, load a kernel module\n to register a new device /dev/fb1;\n2. Set fb1\u0027s mode to the global fb_display[] array (via FBIOPUT_CON2FBMAP);\n3. Switch console from fb to VGA (to allow normal rmmod of the ko);\n4. Unload the kernel module, at this point fb1\u0027s modelist is freed, leaving\n a wild pointer in fb_display[];\n5. Trigger the bug via system calls through fb0 attempting to delete a mode\n from fb0.\n\nAdd a check in do_unregister_framebuffer(): if the mode to be freed exists\nin fb_display[], set the corresponding mode pointer to NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40323",
"url": "https://www.suse.com/security/cve/CVE-2025-40323"
},
{
"category": "external",
"summary": "SUSE Bug 1255094 for CVE-2025-40323",
"url": "https://bugzilla.suse.com/1255094"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40323"
},
{
"cve": "CVE-2025-40324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40324"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFSD: Fix crash in nfsd4_read_release()\n\nWhen tracing is enabled, the trace_nfsd_read_done trace point\ncrashes during the pynfs read.testNoFh test.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40324",
"url": "https://www.suse.com/security/cve/CVE-2025-40324"
},
{
"category": "external",
"summary": "SUSE Bug 1254791 for CVE-2025-40324",
"url": "https://bugzilla.suse.com/1254791"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40324"
},
{
"cve": "CVE-2025-40328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential UAF in smb2_close_cached_fid()\n\nfind_or_create_cached_dir() could grab a new reference after kref_put()\nhad seen the refcount drop to zero but before cfid_list_lock is acquired\nin smb2_close_cached_fid(), leading to use-after-free.\n\nSwitch to kref_put_lock() so cfid_release() is called with\ncfid_list_lock held, closing that gap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40328",
"url": "https://www.suse.com/security/cve/CVE-2025-40328"
},
{
"category": "external",
"summary": "SUSE Bug 1254624 for CVE-2025-40328",
"url": "https://bugzilla.suse.com/1254624"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40328"
},
{
"cve": "CVE-2025-40329",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40329"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb\n\nThe Mesa issue referenced below pointed out a possible deadlock:\n\n[ 1231.611031] Possible interrupt unsafe locking scenario:\n\n[ 1231.611033] CPU0 CPU1\n[ 1231.611034] ---- ----\n[ 1231.611035] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611038] local_irq_disable();\n[ 1231.611039] lock(\u0026fence-\u003elock);\n[ 1231.611041] lock(\u0026xa-\u003exa_lock#17);\n[ 1231.611044] \u003cInterrupt\u003e\n[ 1231.611045] lock(\u0026fence-\u003elock);\n[ 1231.611047]\n *** DEADLOCK ***\n\nIn this example, CPU0 would be any function accessing job-\u003edependencies\nthrough the xa_* functions that don\u0027t disable interrupts (eg:\ndrm_sched_job_add_dependency(), drm_sched_entity_kill_jobs_cb()).\n\nCPU1 is executing drm_sched_entity_kill_jobs_cb() as a fence signalling\ncallback so in an interrupt context. It will deadlock when trying to\ngrab the xa_lock which is already held by CPU0.\n\nReplacing all xa_* usage by their xa_*_irq counterparts would fix\nthis issue, but Christian pointed out another issue: dma_fence_signal\ntakes fence.lock and so does dma_fence_add_callback.\n\n dma_fence_signal() // locks f1.lock\n -\u003e drm_sched_entity_kill_jobs_cb()\n -\u003e foreach dependencies\n -\u003e dma_fence_add_callback() // locks f2.lock\n\nThis will deadlock if f1 and f2 share the same spinlock.\n\nTo fix both issues, the code iterating on dependencies and re-arming them\nis moved out to drm_sched_entity_kill_jobs_work().\n\n[phasta: commit message nits]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40329",
"url": "https://www.suse.com/security/cve/CVE-2025-40329"
},
{
"category": "external",
"summary": "SUSE Bug 1254621 for CVE-2025-40329",
"url": "https://bugzilla.suse.com/1254621"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40329"
},
{
"cve": "CVE-2025-40330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40330"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Shutdown FW DMA in bnxt_shutdown()\n\nThe netif_close() call in bnxt_shutdown() only stops packet DMA. There\nmay be FW DMA for trace logging (recently added) that will continue. If\nwe kexec to a new kernel, the DMA will corrupt memory in the new kernel.\n\nAdd bnxt_hwrm_func_drv_unrgtr() to unregister the driver from the FW.\nThis will stop the FW DMA. In case the call fails, call pcie_flr() to\nreset the function and stop the DMA.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40330",
"url": "https://www.suse.com/security/cve/CVE-2025-40330"
},
{
"category": "external",
"summary": "SUSE Bug 1254616 for CVE-2025-40330",
"url": "https://bugzilla.suse.com/1254616"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40330"
},
{
"cve": "CVE-2025-40331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsctp: Prevent TOCTOU out-of-bounds write\n\nFor the following path not holding the sock lock,\n\n sctp_diag_dump() -\u003e sctp_for_each_endpoint() -\u003e sctp_ep_dump()\n\nmake sure not to exceed bounds in case the address list has grown\nbetween buffer allocation (time-of-check) and write (time-of-use).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40331",
"url": "https://www.suse.com/security/cve/CVE-2025-40331"
},
{
"category": "external",
"summary": "SUSE Bug 1254615 for CVE-2025-40331",
"url": "https://bugzilla.suse.com/1254615"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40331"
},
{
"cve": "CVE-2025-40332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdkfd: Fix mmap write lock not release\n\nIf mmap write lock is taken while draining retry fault, mmap write lock\nis not released because svm_range_restore_pages calls mmap_read_unlock\nthen returns. This causes deadlock and system hangs later because mmap\nread or write lock cannot be taken.\n\nDowngrade mmap write lock to read lock if draining retry fault fix this\nbug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40332",
"url": "https://www.suse.com/security/cve/CVE-2025-40332"
},
{
"category": "external",
"summary": "SUSE Bug 1255116 for CVE-2025-40332",
"url": "https://bugzilla.suse.com/1255116"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40332"
},
{
"cve": "CVE-2025-40337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40337"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: stmmac: Correctly handle Rx checksum offload errors\n\nThe stmmac_rx function would previously set skb-\u003eip_summed to\nCHECKSUM_UNNECESSARY if hardware checksum offload (CoE) was enabled\nand the packet was of a known IP ethertype.\n\nHowever, this logic failed to check if the hardware had actually\nreported a checksum error. The hardware status, indicating a header or\npayload checksum failure, was being ignored at this stage. This could\ncause corrupt packets to be passed up the network stack as valid.\n\nThis patch corrects the logic by checking the `csum_none` status flag,\nwhich is set when the hardware reports a checksum error. If this flag\nis set, skb-\u003eip_summed is now correctly set to CHECKSUM_NONE,\nensuring the kernel\u0027s network stack will perform its own validation and\nproperly handle the corrupt packet.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40337",
"url": "https://www.suse.com/security/cve/CVE-2025-40337"
},
{
"category": "external",
"summary": "SUSE Bug 1255081 for CVE-2025-40337",
"url": "https://bugzilla.suse.com/1255081"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40337"
},
{
"cve": "CVE-2025-40338",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40338"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: avs: Do not share the name pointer between components\n\nBy sharing \u0027name\u0027 directly, tearing down components may lead to\nuse-after-free errors. Duplicate the name to avoid that.\n\nAt the same time, update the order of operations - since commit\ncee28113db17 (\"ASoC: dmaengine_pcm: Allow passing component name via\nconfig\") the framework does not override component-\u003ename if set before\ninvoking the initializer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40338",
"url": "https://www.suse.com/security/cve/CVE-2025-40338"
},
{
"category": "external",
"summary": "SUSE Bug 1255273 for CVE-2025-40338",
"url": "https://bugzilla.suse.com/1255273"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40338"
},
{
"cve": "CVE-2025-40339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix nullptr err of vm_handle_moved\n\nIf a amdgpu_bo_va is fpriv-\u003eprt_va, the bo of this one is always NULL.\nSo, such kind of amdgpu_bo_va should be updated separately before\namdgpu_vm_handle_moved.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40339",
"url": "https://www.suse.com/security/cve/CVE-2025-40339"
},
{
"category": "external",
"summary": "SUSE Bug 1255428 for CVE-2025-40339",
"url": "https://bugzilla.suse.com/1255428"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40339"
},
{
"cve": "CVE-2025-40340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40340"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe: Fix oops in xe_gem_fault when running core_hotunplug test.\n\nI saw an oops in xe_gem_fault when running the xe-fast-feedback\ntestlist against the realtime kernel without debug options enabled.\n\nThe panic happens after core_hotunplug unbind-rebind finishes.\nPresumably what happens is that a process mmaps, unlocks because\nof the FAULT_FLAG_RETRY_NOWAIT logic, has no process memory left,\ncausing ttm_bo_vm_dummy_page() to return VM_FAULT_NOPAGE, since\nthere was nothing left to populate, and then oopses in\n\"mem_type_is_vram(tbo-\u003eresource-\u003emem_type)\" because tbo-\u003eresource\nis NULL.\n\nIt\u0027s convoluted, but fits the data and explains the oops after\nthe test exits.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40340",
"url": "https://www.suse.com/security/cve/CVE-2025-40340"
},
{
"category": "external",
"summary": "SUSE Bug 1254996 for CVE-2025-40340",
"url": "https://bugzilla.suse.com/1254996"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40340"
},
{
"cve": "CVE-2025-40342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40342"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-fc: use lock accessing port_state and rport state\n\nnvme_fc_unregister_remote removes the remote port on a lport object at\nany point in time when there is no active association. This races with\nwith the reconnect logic, because nvme_fc_create_association is not\ntaking a lock to check the port_state and atomically increase the\nactive count on the rport.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40342",
"url": "https://www.suse.com/security/cve/CVE-2025-40342"
},
{
"category": "external",
"summary": "SUSE Bug 1255274 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255274"
},
{
"category": "external",
"summary": "SUSE Bug 1255275 for CVE-2025-40342",
"url": "https://bugzilla.suse.com/1255275"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40342"
},
{
"cve": "CVE-2025-40343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40343"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet-fc: avoid scheduling association deletion twice\n\nWhen forcefully shutting down a port via the configfs interface,\nnvmet_port_subsys_drop_link() first calls nvmet_port_del_ctrls() and\nthen nvmet_disable_port(). Both functions will eventually schedule all\nremaining associations for deletion.\n\nThe current implementation checks whether an association is about to be\nremoved, but only after the work item has already been scheduled. As a\nresult, it is possible for the first scheduled work item to free all\nresources, and then for the same work item to be scheduled again for\ndeletion.\n\nBecause the association list is an RCU list, it is not possible to take\na lock and remove the list entry directly, so it cannot be looked up\nagain. Instead, a flag (terminating) must be used to determine whether\nthe association is already in the process of being deleted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40343",
"url": "https://www.suse.com/security/cve/CVE-2025-40343"
},
{
"category": "external",
"summary": "SUSE Bug 1255276 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255276"
},
{
"category": "external",
"summary": "SUSE Bug 1255278 for CVE-2025-40343",
"url": "https://bugzilla.suse.com/1255278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40343"
},
{
"cve": "CVE-2025-40344",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40344"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: Intel: avs: Disable periods-elapsed work when closing PCM\n\navs_dai_fe_shutdown() handles the shutdown procedure for HOST HDAudio\nstream while period-elapsed work services its IRQs. As the former\nfrees the DAI\u0027s private context, these two operations shall be\nsynchronized to avoid slab-use-after-free or worse errors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40344",
"url": "https://www.suse.com/security/cve/CVE-2025-40344"
},
{
"category": "external",
"summary": "SUSE Bug 1254618 for CVE-2025-40344",
"url": "https://bugzilla.suse.com/1254618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40344"
},
{
"cve": "CVE-2025-40345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: storage: sddr55: Reject out-of-bound new_pba\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nnew_pba comes from the status packet returned after each write.\nA bogus device could report values beyond the block count derived\nfrom info-\u003ecapacity, letting the driver walk off the end of\npba_to_lba[] and corrupt heap memory.\n\nReject PBAs that exceed the computed block count and fail the\ntransfer so we avoid touching out-of-range mapping entries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40345",
"url": "https://www.suse.com/security/cve/CVE-2025-40345"
},
{
"category": "external",
"summary": "SUSE Bug 1255279 for CVE-2025-40345",
"url": "https://bugzilla.suse.com/1255279"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40345"
},
{
"cve": "CVE-2025-40346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narch_topology: Fix incorrect error check in topology_parse_cpu_capacity()\n\nFix incorrect use of PTR_ERR_OR_ZERO() in topology_parse_cpu_capacity()\nwhich causes the code to proceed with NULL clock pointers. The current\nlogic uses !PTR_ERR_OR_ZERO(cpu_clk) which evaluates to true for both\nvalid pointers and NULL, leading to potential NULL pointer dereference\nin clk_get_rate().\n\nPer include/linux/err.h documentation, PTR_ERR_OR_ZERO(ptr) returns:\n\"The error code within @ptr if it is an error pointer; 0 otherwise.\"\n\nThis means PTR_ERR_OR_ZERO() returns 0 for both valid pointers AND NULL\npointers. Therefore !PTR_ERR_OR_ZERO(cpu_clk) evaluates to true (proceed)\nwhen cpu_clk is either valid or NULL, causing clk_get_rate(NULL) to be\ncalled when of_clk_get() returns NULL.\n\nReplace with !IS_ERR_OR_NULL(cpu_clk) which only proceeds for valid\npointers, preventing potential NULL pointer dereference in clk_get_rate().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40346",
"url": "https://www.suse.com/security/cve/CVE-2025-40346"
},
{
"category": "external",
"summary": "SUSE Bug 1255318 for CVE-2025-40346",
"url": "https://bugzilla.suse.com/1255318"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40346"
},
{
"cve": "CVE-2025-40347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: enetc: fix the deadlock of enetc_mdio_lock\n\nAfter applying the workaround for err050089, the LS1028A platform\nexperiences RCU stalls on RT kernel. This issue is caused by the\nrecursive acquisition of the read lock enetc_mdio_lock. Here list some\nof the call stacks identified under the enetc_poll path that may lead to\na deadlock:\n\nenetc_poll\n -\u003e enetc_lock_mdio\n -\u003e enetc_clean_rx_ring OR napi_complete_done\n -\u003e napi_gro_receive\n -\u003e enetc_start_xmit\n -\u003e enetc_lock_mdio\n -\u003e enetc_map_tx_buffs\n -\u003e enetc_unlock_mdio\n -\u003e enetc_unlock_mdio\n\nAfter enetc_poll acquires the read lock, a higher-priority writer attempts\nto acquire the lock, causing preemption. The writer detects that a\nread lock is already held and is scheduled out. However, readers under\nenetc_poll cannot acquire the read lock again because a writer is already\nwaiting, leading to a thread hang.\n\nCurrently, the deadlock is avoided by adjusting enetc_lock_mdio to prevent\nrecursive lock acquisition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40347",
"url": "https://www.suse.com/security/cve/CVE-2025-40347"
},
{
"category": "external",
"summary": "SUSE Bug 1255262 for CVE-2025-40347",
"url": "https://bugzilla.suse.com/1255262"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40347"
},
{
"cve": "CVE-2025-40350",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40350"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: RX, Fix generating skb from non-linear xdp_buff for striding RQ\n\nXDP programs can change the layout of an xdp_buff through\nbpf_xdp_adjust_tail() and bpf_xdp_adjust_head(). Therefore, the driver\ncannot assume the size of the linear data area nor fragments. Fix the\nbug in mlx5 by generating skb according to xdp_buff after XDP programs\nrun.\n\nCurrently, when handling multi-buf XDP, the mlx5 driver assumes the\nlayout of an xdp_buff to be unchanged. That is, the linear data area\ncontinues to be empty and fragments remain the same. This may cause\nthe driver to generate erroneous skb or triggering a kernel\nwarning. When an XDP program added linear data through\nbpf_xdp_adjust_head(), the linear data will be ignored as\nmlx5e_build_linear_skb() builds an skb without linear data and then\npull data from fragments to fill the linear data area. When an XDP\nprogram has shrunk the non-linear data through bpf_xdp_adjust_tail(),\nthe delta passed to __pskb_pull_tail() may exceed the actual nonlinear\ndata size and trigger the BUG_ON in it.\n\nTo fix the issue, first record the original number of fragments. If the\nnumber of fragments changes after the XDP program runs, rewind the end\nfragment pointer by the difference and recalculate the truesize. Then,\nbuild the skb with the linear data area matching the xdp_buff. Finally,\nonly pull data in if there is non-linear data and fill the linear part\nup to 256 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40350",
"url": "https://www.suse.com/security/cve/CVE-2025-40350"
},
{
"category": "external",
"summary": "SUSE Bug 1255260 for CVE-2025-40350",
"url": "https://bugzilla.suse.com/1255260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40350"
},
{
"cve": "CVE-2025-40353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40353"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: mte: Do not warn if the page is already tagged in copy_highpage()\n\nThe arm64 copy_highpage() assumes that the destination page is newly\nallocated and not MTE-tagged (PG_mte_tagged unset) and warns\naccordingly. However, following commit 060913999d7a (\"mm: migrate:\nsupport poisoned recover from migrate folio\"), folio_mc_copy() is called\nbefore __folio_migrate_mapping(). If the latter fails (-EAGAIN), the\ncopy will be done again to the same destination page. Since\ncopy_highpage() already set the PG_mte_tagged flag, this second copy\nwill warn.\n\nReplace the WARN_ON_ONCE(page already tagged) in the arm64\ncopy_highpage() with a comment.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40353",
"url": "https://www.suse.com/security/cve/CVE-2025-40353"
},
{
"category": "external",
"summary": "SUSE Bug 1255312 for CVE-2025-40353",
"url": "https://bugzilla.suse.com/1255312"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40353"
},
{
"cve": "CVE-2025-40354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: increase max link count and fix link-\u003eenc NULL pointer access\n\n[why]\n1.) dc-\u003elinks[MAX_LINKS] array size smaller than actual requested.\nmax_connector + max_dpia + 4 virtual = 14.\nincrease from 12 to 14.\n\n2.) hw_init() access null LINK_ENC for dpia non display_endpoint.\n\n(cherry picked from commit d7f5a61e1b04ed87b008c8d327649d184dc5bb45)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40354",
"url": "https://www.suse.com/security/cve/CVE-2025-40354"
},
{
"category": "external",
"summary": "SUSE Bug 1255316 for CVE-2025-40354",
"url": "https://bugzilla.suse.com/1255316"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40354"
},
{
"cve": "CVE-2025-40355",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40355"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsysfs: check visibility before changing group attribute ownership\n\nSince commit 0c17270f9b92 (\"net: sysfs: Implement is_visible for\nphys_(port_id, port_name, switch_id)\"), __dev_change_net_namespace() can\nhit WARN_ON() when trying to change owner of a file that isn\u0027t visible.\nSee the trace below:\n\n WARNING: CPU: 6 PID: 2938 at net/core/dev.c:12410 __dev_change_net_namespace+0xb89/0xc30\n CPU: 6 UID: 0 PID: 2938 Comm: incusd Not tainted 6.17.1-1-mainline #1 PREEMPT(full) 4b783b4a638669fb644857f484487d17cb45ed1f\n Hardware name: Framework Laptop 13 (AMD Ryzen 7040Series)/FRANMDCP07, BIOS 03.07 02/19/2025\n RIP: 0010:__dev_change_net_namespace+0xb89/0xc30\n [...]\n Call Trace:\n \u003cTASK\u003e\n ? if6_seq_show+0x30/0x50\n do_setlink.isra.0+0xc7/0x1270\n ? __nla_validate_parse+0x5c/0xcc0\n ? security_capable+0x94/0x1a0\n rtnl_newlink+0x858/0xc20\n ? update_curr+0x8e/0x1c0\n ? update_entity_lag+0x71/0x80\n ? sched_balance_newidle+0x358/0x450\n ? psi_task_switch+0x113/0x2a0\n ? __pfx_rtnl_newlink+0x10/0x10\n rtnetlink_rcv_msg+0x346/0x3e0\n ? sched_clock+0x10/0x30\n ? __pfx_rtnetlink_rcv_msg+0x10/0x10\n netlink_rcv_skb+0x59/0x110\n netlink_unicast+0x285/0x3c0\n ? __alloc_skb+0xdb/0x1a0\n netlink_sendmsg+0x20d/0x430\n ____sys_sendmsg+0x39f/0x3d0\n ? import_iovec+0x2f/0x40\n ___sys_sendmsg+0x99/0xe0\n __sys_sendmsg+0x8a/0xf0\n do_syscall_64+0x81/0x970\n ? __sys_bind+0xe3/0x110\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? sock_alloc_file+0x63/0xc0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? alloc_fd+0x12e/0x190\n ? put_unused_fd+0x2a/0x70\n ? do_sys_openat2+0xa2/0xe0\n ? syscall_exit_work+0x143/0x1b0\n ? do_syscall_64+0x244/0x970\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n [...]\n \u003c/TASK\u003e\n\nFix this by checking is_visible() before trying to touch the attribute.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40355",
"url": "https://www.suse.com/security/cve/CVE-2025-40355"
},
{
"category": "external",
"summary": "SUSE Bug 1255261 for CVE-2025-40355",
"url": "https://bugzilla.suse.com/1255261"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40355"
},
{
"cve": "CVE-2025-40357",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40357"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: fix general protection fault in __smc_diag_dump\n\nThe syzbot report a crash:\n\n Oops: general protection fault, probably for non-canonical address 0xfbd5a5d5a0000003: 0000 [#1] SMP KASAN NOPTI\n KASAN: maybe wild-memory-access in range [0xdead4ead00000018-0xdead4ead0000001f]\n CPU: 1 UID: 0 PID: 6949 Comm: syz.0.335 Not tainted syzkaller #0 PREEMPT(full)\n Hardware name: Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\n RIP: 0010:smc_diag_msg_common_fill net/smc/smc_diag.c:44 [inline]\n RIP: 0010:__smc_diag_dump.constprop.0+0x3ca/0x2550 net/smc/smc_diag.c:89\n Call Trace:\n \u003cTASK\u003e\n smc_diag_dump_proto+0x26d/0x420 net/smc/smc_diag.c:217\n smc_diag_dump+0x27/0x90 net/smc/smc_diag.c:234\n netlink_dump+0x539/0xd30 net/netlink/af_netlink.c:2327\n __netlink_dump_start+0x6d6/0x990 net/netlink/af_netlink.c:2442\n netlink_dump_start include/linux/netlink.h:341 [inline]\n smc_diag_handler_dump+0x1f9/0x240 net/smc/smc_diag.c:251\n __sock_diag_cmd net/core/sock_diag.c:249 [inline]\n sock_diag_rcv_msg+0x438/0x790 net/core/sock_diag.c:285\n netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2552\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0x5a7/0x870 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x8d1/0xdd0 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg net/socket.c:729 [inline]\n ____sys_sendmsg+0xa95/0xc70 net/socket.c:2614\n ___sys_sendmsg+0x134/0x1d0 net/socket.c:2668\n __sys_sendmsg+0x16d/0x220 net/socket.c:2700\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_syscall_64+0xcd/0x4e0 arch/x86/entry/syscall_64.c:94\n entry_SYSCALL_64_after_hwframe+0x77/0x7f\n \u003c/TASK\u003e\n\nThe process like this:\n\n (CPU1) | (CPU2)\n ---------------------------------|-------------------------------\n inet_create() |\n // init clcsock to NULL |\n sk = sk_alloc() |\n |\n // unexpectedly change clcsock |\n inet_init_csk_locks() |\n |\n // add sk to hash table |\n smc_inet_init_sock() |\n smc_sk_init() |\n smc_hash_sk() |\n | // traverse the hash table\n | smc_diag_dump_proto\n | __smc_diag_dump()\n | // visit wrong clcsock\n | smc_diag_msg_common_fill()\n // alloc clcsock |\n smc_create_clcsk |\n sock_create_kern |\n\nWith CONFIG_DEBUG_LOCK_ALLOC=y, the smc-\u003eclcsock is unexpectedly changed\nin inet_init_csk_locks(). The INET_PROTOSW_ICSK flag is no need by smc,\njust remove it.\n\nAfter removing the INET_PROTOSW_ICSK flag, this patch alse revert\ncommit 6fd27ea183c2 (\"net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC\")\nto avoid casting smc_sock to inet_connection_sock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40357",
"url": "https://www.suse.com/security/cve/CVE-2025-40357"
},
{
"category": "external",
"summary": "SUSE Bug 1255097 for CVE-2025-40357",
"url": "https://bugzilla.suse.com/1255097"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40357"
},
{
"cve": "CVE-2025-40359",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40359"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf/x86/intel: Fix KASAN global-out-of-bounds warning\n\nWhen running \"perf mem record\" command on CWF, the below KASAN\nglobal-out-of-bounds warning is seen.\n\n ==================================================================\n BUG: KASAN: global-out-of-bounds in cmt_latency_data+0x176/0x1b0\n Read of size 4 at addr ffffffffb721d000 by task dtlb/9850\n\n Call Trace:\n\n kasan_report+0xb8/0xf0\n cmt_latency_data+0x176/0x1b0\n setup_arch_pebs_sample_data+0xf49/0x2560\n intel_pmu_drain_arch_pebs+0x577/0xb00\n handle_pmi_common+0x6c4/0xc80\n\nThe issue is caused by below code in __grt_latency_data(). The code\ntries to access x86_hybrid_pmu structure which doesn\u0027t exist on\nnon-hybrid platform like CWF.\n\n WARN_ON_ONCE(hybrid_pmu(event-\u003epmu)-\u003epmu_type == hybrid_big)\n\nSo add is_hybrid() check before calling this WARN_ON_ONCE to fix the\nglobal-out-of-bounds access issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40359",
"url": "https://www.suse.com/security/cve/CVE-2025-40359"
},
{
"category": "external",
"summary": "SUSE Bug 1255087 for CVE-2025-40359",
"url": "https://bugzilla.suse.com/1255087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "low"
}
],
"title": "CVE-2025-40359"
},
{
"cve": "CVE-2025-40360",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40360"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/sysfb: Do not dereference NULL pointer in plane reset\n\nThe plane state in __drm_gem_reset_shadow_plane() can be NULL. Do not\nderef that pointer, but forward NULL to the other plane-reset helpers.\nClears plane-\u003estate to NULL.\n\nv2:\n- fix typo in commit description (Javier)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40360",
"url": "https://www.suse.com/security/cve/CVE-2025-40360"
},
{
"category": "external",
"summary": "SUSE Bug 1255095 for CVE-2025-40360",
"url": "https://bugzilla.suse.com/1255095"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-40360"
},
{
"cve": "CVE-2025-40362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-40362"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix multifs mds auth caps issue\n\nThe mds auth caps check should also validate the\nfsname along with the associated caps. Not doing\nso would result in applying the mds auth caps of\none fs on to the other fs in a multifs ceph cluster.\nThe bug causes multiple issues w.r.t user\nauthentication, following is one such example.\n\nSteps to Reproduce (on vstart cluster):\n1. Create two file systems in a cluster, say \u0027fsname1\u0027 and \u0027fsname2\u0027\n2. Authorize read only permission to the user \u0027client.usr\u0027 on fs \u0027fsname1\u0027\n $ceph fs authorize fsname1 client.usr / r\n3. Authorize read and write permission to the same user \u0027client.usr\u0027 on fs \u0027fsname2\u0027\n $ceph fs authorize fsname2 client.usr / rw\n4. Update the keyring\n $ceph auth get client.usr \u003e\u003e ./keyring\n\nWith above permssions for the user \u0027client.usr\u0027, following is the\nexpectation.\n a. The \u0027client.usr\u0027 should be able to only read the contents\n and not allowed to create or delete files on file system \u0027fsname1\u0027.\n b. The \u0027client.usr\u0027 should be able to read/write on file system \u0027fsname2\u0027.\n\nBut, with this bug, the \u0027client.usr\u0027 is allowed to read/write on file\nsystem \u0027fsname1\u0027. See below.\n\n5. Mount the file system \u0027fsname1\u0027 with the user \u0027client.usr\u0027\n $sudo bin/mount.ceph usr@.fsname1=/ /kmnt_fsname1_usr/\n6. Try creating a file on file system \u0027fsname1\u0027 with user \u0027client.usr\u0027. This\n should fail but passes with this bug.\n $touch /kmnt_fsname1_usr/file1\n7. Mount the file system \u0027fsname1\u0027 with the user \u0027client.admin\u0027 and create a\n file.\n $sudo bin/mount.ceph admin@.fsname1=/ /kmnt_fsname1_admin\n $echo \"data\" \u003e /kmnt_fsname1_admin/admin_file1\n8. Try removing an existing file on file system \u0027fsname1\u0027 with the user\n \u0027client.usr\u0027. This shoudn\u0027t succeed but succeeds with the bug.\n $rm -f /kmnt_fsname1_usr/admin_file1\n\nFor more information, please take a look at the corresponding mds/fuse patch\nand tests added by looking into the tracker mentioned below.\n\nv2: Fix a possible null dereference in doutc\nv3: Don\u0027t store fsname from mdsmap, validate against\n ceph_mount_options\u0027s fsname and use it\nv4: Code refactor, better warning message and\n fix possible compiler warning\n\n[ Slava.Dubeyko: \"fsname check failed\" -\u003e \"fsname mismatch\" ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-40362",
"url": "https://www.suse.com/security/cve/CVE-2025-40362"
},
{
"category": "external",
"summary": "SUSE Bug 1255103 for CVE-2025-40362",
"url": "https://bugzilla.suse.com/1255103"
},
{
"category": "external",
"summary": "SUSE Bug 1255104 for CVE-2025-40362",
"url": "https://bugzilla.suse.com/1255104"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-40362"
},
{
"cve": "CVE-2025-68167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68167"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: fix invalid pointer access in debugfs\n\nIf the memory allocation in gpiolib_seq_start() fails, the s-\u003eprivate\nfield remains uninitialized and is later dereferenced without checking\nin gpiolib_seq_stop(). Initialize s-\u003eprivate to NULL before calling\nkzalloc() and check it before dereferencing it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68167",
"url": "https://www.suse.com/security/cve/CVE-2025-68167"
},
{
"category": "external",
"summary": "SUSE Bug 1255099 for CVE-2025-68167",
"url": "https://bugzilla.suse.com/1255099"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68167"
},
{
"cve": "CVE-2025-68170",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68170"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: Do not kfree() devres managed rdev\n\nSince the allocation of the drivers main structure was changed to\ndevm_drm_dev_alloc() rdev is managed by devres and we shouldn\u0027t be calling\nkfree() on it.\n\nThis fixes things exploding if the driver probe fails and devres cleans up\nthe rdev after we already free\u0027d it.\n\n(cherry picked from commit 16c0681617b8a045773d4d87b6140002fa75b03b)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68170",
"url": "https://www.suse.com/security/cve/CVE-2025-68170"
},
{
"category": "external",
"summary": "SUSE Bug 1255256 for CVE-2025-68170",
"url": "https://bugzilla.suse.com/1255256"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68170"
},
{
"cve": "CVE-2025-68171",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68171"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Ensure XFD state on signal delivery\n\nSean reported [1] the following splat when running KVM tests:\n\n WARNING: CPU: 232 PID: 15391 at xfd_validate_state+0x65/0x70\n Call Trace:\n \u003cTASK\u003e\n fpu__clear_user_states+0x9c/0x100\n arch_do_signal_or_restart+0x142/0x210\n exit_to_user_mode_loop+0x55/0x100\n do_syscall_64+0x205/0x2c0\n entry_SYSCALL_64_after_hwframe+0x4b/0x53\n\nChao further identified [2] a reproducible scenario involving signal\ndelivery: a non-AMX task is preempted by an AMX-enabled task which\nmodifies the XFD MSR.\n\nWhen the non-AMX task resumes and reloads XSTATE with init values,\na warning is triggered due to a mismatch between fpstate::xfd and the\nCPU\u0027s current XFD state. fpu__clear_user_states() does not currently\nre-synchronize the XFD state after such preemption.\n\nInvoke xfd_update_state() which detects and corrects the mismatch if\nthere is a dynamic feature.\n\nThis also benefits the sigreturn path, as fpu__restore_sig() may call\nfpu__clear_user_states() when the sigframe is inaccessible.\n\n[ dhansen: minor changelog munging ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68171",
"url": "https://www.suse.com/security/cve/CVE-2025-68171"
},
{
"category": "external",
"summary": "SUSE Bug 1255255 for CVE-2025-68171",
"url": "https://bugzilla.suse.com/1255255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68171"
},
{
"cve": "CVE-2025-68172",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68172"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: aspeed - fix double free caused by devm\n\nThe clock obtained via devm_clk_get_enabled() is automatically managed\nby devres and will be disabled and freed on driver detach. Manually\ncalling clk_disable_unprepare() in error path and remove function\ncauses double free.\n\nRemove the manual clock cleanup in both aspeed_acry_probe()\u0027s error\npath and aspeed_acry_remove().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68172",
"url": "https://www.suse.com/security/cve/CVE-2025-68172"
},
{
"category": "external",
"summary": "SUSE Bug 1255253 for CVE-2025-68172",
"url": "https://bugzilla.suse.com/1255253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68172"
},
{
"cve": "CVE-2025-68176",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68176"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: cadence: Check for the existence of cdns_pcie::ops before using it\n\ncdns_pcie::ops might not be populated by all the Cadence glue drivers. This\nis going to be true for the upcoming Sophgo platform which doesn\u0027t set the\nops.\n\nHence, add a check to prevent NULL pointer dereference.\n\n[mani: reworded subject and description]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68176",
"url": "https://www.suse.com/security/cve/CVE-2025-68176"
},
{
"category": "external",
"summary": "SUSE Bug 1255329 for CVE-2025-68176",
"url": "https://bugzilla.suse.com/1255329"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68176"
},
{
"cve": "CVE-2025-68180",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68180"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix NULL deref in debugfs odm_combine_segments\n\nWhen a connector is connected but inactive (e.g., disabled by desktop\nenvironments), pipe_ctx-\u003estream_res.tg will be destroyed. Then, reading\nodm_combine_segments causes kernel NULL pointer dereference.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 16 UID: 0 PID: 26474 Comm: cat Not tainted 6.17.0+ #2 PREEMPT(lazy) e6a17af9ee6db7c63e9d90dbe5b28ccab67520c6\n Hardware name: LENOVO 21Q4/LNVNB161216, BIOS PXCN25WW 03/27/2025\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n seq_read_iter+0x125/0x490\n ? __alloc_frozen_pages_noprof+0x18f/0x350\n seq_read+0x12c/0x170\n full_proxy_read+0x51/0x80\n vfs_read+0xbc/0x390\n ? __handle_mm_fault+0xa46/0xef0\n ? do_syscall_64+0x71/0x900\n ksys_read+0x73/0xf0\n do_syscall_64+0x71/0x900\n ? count_memcg_events+0xc2/0x190\n ? handle_mm_fault+0x1d7/0x2d0\n ? do_user_addr_fault+0x21a/0x690\n ? exc_page_fault+0x7e/0x1a0\n entry_SYSCALL_64_after_hwframe+0x6c/0x74\n RIP: 0033:0x7f44d4031687\n Code: 48 89 fa 4c 89 df e8 58 b3 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 \u003c5b\u003e c3 0f 1f 80 00 00 00 00\u003e\n RSP: 002b:00007ffdb4b5f0b0 EFLAGS: 00000202 ORIG_RAX: 0000000000000000\n RAX: ffffffffffffffda RBX: 00007f44d3f9f740 RCX: 00007f44d4031687\n RDX: 0000000000040000 RSI: 00007f44d3f5e000 RDI: 0000000000000003\n RBP: 0000000000040000 R08: 0000000000000000 R09: 0000000000000000\n R10: 0000000000000000 R11: 0000000000000202 R12: 00007f44d3f5e000\n R13: 0000000000000003 R14: 0000000000000000 R15: 0000000000040000\n \u003c/TASK\u003e\n Modules linked in: tls tcp_diag inet_diag xt_mark ccm snd_hrtimer snd_seq_dummy snd_seq_midi snd_seq_oss snd_seq_midi_event snd_rawmidi snd_seq snd_seq_device x\u003e\n snd_hda_codec_atihdmi snd_hda_codec_realtek_lib lenovo_wmi_helpers think_lmi snd_hda_codec_generic snd_hda_codec_hdmi snd_soc_core kvm snd_compress uvcvideo sn\u003e\n platform_profile joydev amd_pmc mousedev mac_hid sch_fq_codel uinput i2c_dev parport_pc ppdev lp parport nvme_fabrics loop nfnetlink ip_tables x_tables dm_cryp\u003e\n CR2: 0000000000000000\n ---[ end trace 0000000000000000 ]---\n RIP: 0010:odm_combine_segments_show+0x93/0xf0 [amdgpu]\n Code: 41 83 b8 b0 00 00 00 01 75 6e 48 98 ba a1 ff ff ff 48 c1 e0 0c 48 8d 8c 07 d8 02 00 00 48 85 c9 74 2d 48 8b bc 07 f0 08 00 00 \u003c48\u003e 8b 07 48 8b 80 08 02 00\u003e\n RSP: 0018:ffffd1bf4b953c58 EFLAGS: 00010286\n RAX: 0000000000005000 RBX: ffff8e35976b02d0 RCX: ffff8e3aeed052d8\n RDX: 00000000ffffffa1 RSI: ffff8e35a3120800 RDI: 0000000000000000\n RBP: 0000000000000000 R08: ffff8e3580eb0000 R09: ffff8e35976b02d0\n R10: ffffd1bf4b953c78 R11: 0000000000000000 R12: ffffd1bf4b953d08\n R13: 0000000000040000 R14: 0000000000000001 R15: 0000000000000001\n FS: 00007f44d3f9f740(0000) GS:ffff8e3caa47f000(0000) knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000006485c2000 CR4: 0000000000f50ef0\n PKRU: 55555554\n\nFix this by checking pipe_ctx-\u003e\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68180",
"url": "https://www.suse.com/security/cve/CVE-2025-68180"
},
{
"category": "external",
"summary": "SUSE Bug 1255252 for CVE-2025-68180",
"url": "https://bugzilla.suse.com/1255252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68180"
},
{
"cve": "CVE-2025-68181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68181"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: Remove calls to drm_put_dev()\n\nSince the allocation of the drivers main structure was changed to\ndevm_drm_dev_alloc() drm_put_dev()\u0027ing to trigger it to be free\u0027d\nshould be done by devres.\n\nHowever, drm_put_dev() is still in the probe error and device remove\npaths. When the driver fails to probe warnings like the following are\nshown because devres is trying to drm_put_dev() after the driver\nalready did it.\n\n[ 5.642230] radeon 0000:01:05.0: probe with driver radeon failed with error -22\n[ 5.649605] ------------[ cut here ]------------\n[ 5.649607] refcount_t: underflow; use-after-free.\n[ 5.649620] WARNING: CPU: 0 PID: 357 at lib/refcount.c:28 refcount_warn_saturate+0xbe/0x110\n\n(cherry picked from commit 3eb8c0b4c091da0a623ade0d3ee7aa4a93df1ea4)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68181",
"url": "https://www.suse.com/security/cve/CVE-2025-68181"
},
{
"category": "external",
"summary": "SUSE Bug 1255247 for CVE-2025-68181",
"url": "https://bugzilla.suse.com/1255247"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68181"
},
{
"cve": "CVE-2025-68183",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68183"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: don\u0027t clear IMA_DIGSIG flag when setting or removing non-IMA xattr\n\nCurrently when both IMA and EVM are in fix mode, the IMA signature will\nbe reset to IMA hash if a program first stores IMA signature in\nsecurity.ima and then writes/removes some other security xattr for the\nfile.\n\nFor example, on Fedora, after booting the kernel with \"ima_appraise=fix\nevm=fix ima_policy=appraise_tcb\" and installing rpm-plugin-ima,\ninstalling/reinstalling a package will not make good reference IMA\nsignature generated. Instead IMA hash is generated,\n\n # getfattr -m - -d -e hex /usr/bin/bash\n # file: usr/bin/bash\n security.ima=0x0404...\n\nThis happens because when setting security.selinux, the IMA_DIGSIG flag\nthat had been set early was cleared. As a result, IMA hash is generated\nwhen the file is closed.\n\nSimilarly, IMA signature can be cleared on file close after removing\nsecurity xattr like security.evm or setting/removing ACL.\n\nPrevent replacing the IMA file signature with a file hash, by preventing\nthe IMA_DIGSIG flag from being reset.\n\nHere\u0027s a minimal C reproducer which sets security.selinux as the last\nstep which can also replaced by removing security.evm or setting ACL,\n\n #include \u003cstdio.h\u003e\n #include \u003csys/xattr.h\u003e\n #include \u003cfcntl.h\u003e\n #include \u003cunistd.h\u003e\n #include \u003cstring.h\u003e\n #include \u003cstdlib.h\u003e\n\n int main() {\n const char* file_path = \"/usr/sbin/test_binary\";\n const char* hex_string = \"030204d33204490066306402304\";\n int length = strlen(hex_string);\n char* ima_attr_value;\n int fd;\n\n fd = open(file_path, O_WRONLY|O_CREAT|O_EXCL, 0644);\n if (fd == -1) {\n perror(\"Error opening file\");\n return 1;\n }\n\n ima_attr_value = (char*)malloc(length / 2 );\n for (int i = 0, j = 0; i \u003c length; i += 2, j++) {\n sscanf(hex_string + i, \"%2hhx\", \u0026ima_attr_value[j]);\n }\n\n if (fsetxattr(fd, \"security.ima\", ima_attr_value, length/2, 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n const char* selinux_value= \"system_u:object_r:bin_t:s0\";\n if (fsetxattr(fd, \"security.selinux\", selinux_value, strlen(selinux_value), 0) == -1) {\n perror(\"Error setting extended attribute\");\n close(fd);\n return 1;\n }\n\n close(fd);\n\n return 0;\n }",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68183",
"url": "https://www.suse.com/security/cve/CVE-2025-68183"
},
{
"category": "external",
"summary": "SUSE Bug 1255251 for CVE-2025-68183",
"url": "https://bugzilla.suse.com/1255251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68183"
},
{
"cve": "CVE-2025-68184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68184"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/mediatek: Disable AFBC support on Mediatek DRM driver\n\nCommit c410fa9b07c3 (\"drm/mediatek: Add AFBC support to Mediatek DRM\ndriver\") added AFBC support to Mediatek DRM and enabled the\n32x8/split/sparse modifier.\n\nHowever, this is currently broken on Mediatek MT8188 (Genio 700 EVK\nplatform); tested using upstream Kernel and Mesa (v25.2.1), AFBC is used by\ndefault since Mesa v25.0.\n\nKernel trace reports vblank timeouts constantly, and the render is garbled:\n\n```\n[CRTC:62:crtc-0] vblank wait timed out\nWARNING: CPU: 7 PID: 70 at drivers/gpu/drm/drm_atomic_helper.c:1835 drm_atomic_helper_wait_for_vblanks.part.0+0x24c/0x27c\n[...]\nHardware name: MediaTek Genio-700 EVK (DT)\nWorkqueue: events_unbound commit_work\npstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\npc : drm_atomic_helper_wait_for_vblanks.part.0+0x24c/0x27c\nlr : drm_atomic_helper_wait_for_vblanks.part.0+0x24c/0x27c\nsp : ffff80008337bca0\nx29: ffff80008337bcd0 x28: 0000000000000061 x27: 0000000000000000\nx26: 0000000000000001 x25: 0000000000000000 x24: ffff0000c9dcc000\nx23: 0000000000000001 x22: 0000000000000000 x21: ffff0000c66f2f80\nx20: ffff0000c0d7d880 x19: 0000000000000000 x18: 000000000000000a\nx17: 000000040044ffff x16: 005000f2b5503510 x15: 0000000000000000\nx14: 0000000000000000 x13: 74756f2064656d69 x12: 742074696177206b\nx11: 0000000000000058 x10: 0000000000000018 x9 : ffff800082396a70\nx8 : 0000000000057fa8 x7 : 0000000000000cce x6 : ffff8000823eea70\nx5 : ffff0001fef5f408 x4 : ffff80017ccee000 x3 : ffff0000c12cb480\nx2 : 0000000000000000 x1 : 0000000000000000 x0 : ffff0000c12cb480\nCall trace:\n drm_atomic_helper_wait_for_vblanks.part.0+0x24c/0x27c (P)\n drm_atomic_helper_commit_tail_rpm+0x64/0x80\n commit_tail+0xa4/0x1a4\n commit_work+0x14/0x20\n process_one_work+0x150/0x290\n worker_thread+0x2d0/0x3ec\n kthread+0x12c/0x210\n ret_from_fork+0x10/0x20\n---[ end trace 0000000000000000 ]---\n```\n\nUntil this gets fixed upstream, disable AFBC support on this platform, as\nit\u0027s currently broken with upstream Mesa.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68184",
"url": "https://www.suse.com/security/cve/CVE-2025-68184"
},
{
"category": "external",
"summary": "SUSE Bug 1255220 for CVE-2025-68184",
"url": "https://bugzilla.suse.com/1255220"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68184"
},
{
"cve": "CVE-2025-68185",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68185"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfs4_setup_readdir(): insufficient locking for -\u003ed_parent-\u003ed_inode dereferencing\n\nTheoretically it\u0027s an oopsable race, but I don\u0027t believe one can manage\nto hit it on real hardware; might become doable on a KVM, but it still\nwon\u0027t be easy to attack.\n\nAnyway, it\u0027s easy to deal with - since xdr_encode_hyper() is just a call of\nput_unaligned_be64(), we can put that under -\u003ed_lock and be done with that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68185",
"url": "https://www.suse.com/security/cve/CVE-2025-68185"
},
{
"category": "external",
"summary": "SUSE Bug 1255135 for CVE-2025-68185",
"url": "https://bugzilla.suse.com/1255135"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68185"
},
{
"cve": "CVE-2025-68190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68190"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked()\n\nkcalloc() may fail. When WS is non-zero and allocation fails, ectx.ws\nremains NULL while ectx.ws_size is set, leading to a potential NULL\npointer dereference in atom_get_src_int() when accessing WS entries.\n\nReturn -ENOMEM on allocation failure to avoid the NULL dereference.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68190",
"url": "https://www.suse.com/security/cve/CVE-2025-68190"
},
{
"category": "external",
"summary": "SUSE Bug 1255131 for CVE-2025-68190",
"url": "https://bugzilla.suse.com/1255131"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68190"
},
{
"cve": "CVE-2025-68192",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68192"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup\n\nRaw IP packets have no MAC header, leaving skb-\u003emac_header uninitialized.\nThis can trigger kernel panics on ARM64 when xfrm or other subsystems\naccess the offset due to strict alignment checks.\n\nInitialize the MAC header to prevent such crashes.\n\nThis can trigger kernel panics on ARM when running IPsec over the\nqmimux0 interface.\n\nExample trace:\n\n Internal error: Oops: 000000009600004f [#1] SMP\n CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.34-gbe78e49cb433 #1\n Hardware name: LS1028A RDB Board (DT)\n pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : xfrm_input+0xde8/0x1318\n lr : xfrm_input+0x61c/0x1318\n sp : ffff800080003b20\n Call trace:\n xfrm_input+0xde8/0x1318\n xfrm6_rcv+0x38/0x44\n xfrm6_esp_rcv+0x48/0xa8\n ip6_protocol_deliver_rcu+0x94/0x4b0\n ip6_input_finish+0x44/0x70\n ip6_input+0x44/0xc0\n ipv6_rcv+0x6c/0x114\n __netif_receive_skb_one_core+0x5c/0x8c\n __netif_receive_skb+0x18/0x60\n process_backlog+0x78/0x17c\n __napi_poll+0x38/0x180\n net_rx_action+0x168/0x2f0",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68192",
"url": "https://www.suse.com/security/cve/CVE-2025-68192"
},
{
"category": "external",
"summary": "SUSE Bug 1255246 for CVE-2025-68192",
"url": "https://bugzilla.suse.com/1255246"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68192"
},
{
"cve": "CVE-2025-68194",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68194"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: imon: make send_packet() more robust\n\nsyzbot is reporting that imon has three problems which result in\nhung tasks due to forever holding device lock [1].\n\nFirst problem is that when usb_rx_callback_intf0() once got -EPROTO error\nafter ictx-\u003edev_present_intf0 became true, usb_rx_callback_intf0()\nresubmits urb after printk(), and resubmitted urb causes\nusb_rx_callback_intf0() to again get -EPROTO error. This results in\nprintk() flooding (RCU stalls).\n\nAlan Stern commented [2] that\n\n In theory it\u0027s okay to resubmit _if_ the driver has a robust\n error-recovery scheme (such as giving up after some fixed limit on the\n number of errors or after some fixed time has elapsed, perhaps with a\n time delay to prevent a flood of errors). Most drivers don\u0027t bother to\n do this; they simply give up right away. This makes them more\n vulnerable to short-term noise interference during USB transfers, but in\n reality such interference is quite rare. There\u0027s nothing really wrong\n with giving up right away.\n\nbut imon has a poor error-recovery scheme which just retries forever;\nthis behavior should be fixed.\n\nSince I\u0027m not sure whether it is safe for imon users to give up upon any\nerror code, this patch takes care of only union of error codes chosen from\nmodules in drivers/media/rc/ directory which handle -EPROTO error (i.e.\nir_toy, mceusb and igorplugusb).\n\nSecond problem is that when usb_rx_callback_intf0() once got -EPROTO error\nbefore ictx-\u003edev_present_intf0 becomes true, usb_rx_callback_intf0() always\nresubmits urb due to commit 8791d63af0cf (\"[media] imon: don\u0027t wedge\nhardware after early callbacks\"). Move the ictx-\u003edev_present_intf0 test\nintroduced by commit 6f6b90c9231a (\"[media] imon: don\u0027t parse scancodes\nuntil intf configured\") to immediately before imon_incoming_packet(), or\nthe first problem explained above happens without printk() flooding (i.e.\nhung task).\n\nThird problem is that when usb_rx_callback_intf0() is not called for some\nreason (e.g. flaky hardware; the reproducer for this problem sometimes\nprevents usb_rx_callback_intf0() from being called),\nwait_for_completion_interruptible() in send_packet() never returns (i.e.\nhung task). As a workaround for such situation, change send_packet() to\nwait for completion with timeout of 10 seconds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68194",
"url": "https://www.suse.com/security/cve/CVE-2025-68194"
},
{
"category": "external",
"summary": "SUSE Bug 1255325 for CVE-2025-68194",
"url": "https://bugzilla.suse.com/1255325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68194"
},
{
"cve": "CVE-2025-68195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68195"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode\n\nRunning x86_match_min_microcode_rev() on a Zen5 CPU trips up KASAN for an out\nof bounds access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68195",
"url": "https://www.suse.com/security/cve/CVE-2025-68195"
},
{
"category": "external",
"summary": "SUSE Bug 1255259 for CVE-2025-68195",
"url": "https://bugzilla.suse.com/1255259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68195"
},
{
"cve": "CVE-2025-68197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68197"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt_en: Fix null pointer dereference in bnxt_bs_trace_check_wrap()\n\nWith older FW, we may get the ASYNC_EVENT_CMPL_EVENT_ID_DBG_BUF_PRODUCER\nfor FW trace data type that has not been initialized. This will result\nin a crash in bnxt_bs_trace_type_wrap(). Add a guard to check for a\nvalid magic_byte pointer before proceeding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68197",
"url": "https://www.suse.com/security/cve/CVE-2025-68197"
},
{
"category": "external",
"summary": "SUSE Bug 1255242 for CVE-2025-68197",
"url": "https://bugzilla.suse.com/1255242"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68197"
},
{
"cve": "CVE-2025-68198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68198"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrash: fix crashkernel resource shrink\n\nWhen crashkernel is configured with a high reservation, shrinking its\nvalue below the low crashkernel reservation causes two issues:\n\n1. Invalid crashkernel resource objects\n2. Kernel crash if crashkernel shrinking is done twice\n\nFor example, with crashkernel=200M,high, the kernel reserves 200MB of high\nmemory and some default low memory (say 256MB). The reservation appears\nas:\n\ncat /proc/iomem | grep -i crash\naf000000-beffffff : Crash kernel\n433000000-43f7fffff : Crash kernel\n\nIf crashkernel is then shrunk to 50MB (echo 52428800 \u003e\n/sys/kernel/kexec_crash_size), /proc/iomem still shows 256MB reserved:\naf000000-beffffff : Crash kernel\n\nInstead, it should show 50MB:\naf000000-b21fffff : Crash kernel\n\nFurther shrinking crashkernel to 40MB causes a kernel crash with the\nfollowing trace (x86):\n\nBUG: kernel NULL pointer dereference, address: 0000000000000038\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\n\u003csnip...\u003e\nCall Trace: \u003cTASK\u003e\n? __die_body.cold+0x19/0x27\n? page_fault_oops+0x15a/0x2f0\n? search_module_extables+0x19/0x60\n? search_bpf_extables+0x5f/0x80\n? exc_page_fault+0x7e/0x180\n? asm_exc_page_fault+0x26/0x30\n? __release_resource+0xd/0xb0\nrelease_resource+0x26/0x40\n__crash_shrink_memory+0xe5/0x110\ncrash_shrink_memory+0x12a/0x190\nkexec_crash_size_store+0x41/0x80\nkernfs_fop_write_iter+0x141/0x1f0\nvfs_write+0x294/0x460\nksys_write+0x6d/0xf0\n\u003csnip...\u003e\n\nThis happens because __crash_shrink_memory()/kernel/crash_core.c\nincorrectly updates the crashk_res resource object even when\ncrashk_low_res should be updated.\n\nFix this by ensuring the correct crashkernel resource object is updated\nwhen shrinking crashkernel memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68198",
"url": "https://www.suse.com/security/cve/CVE-2025-68198"
},
{
"category": "external",
"summary": "SUSE Bug 1255243 for CVE-2025-68198",
"url": "https://bugzilla.suse.com/1255243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68198"
},
{
"cve": "CVE-2025-68201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68201"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: remove two invalid BUG_ON()s\n\nThose can be triggered trivially by userspace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68201",
"url": "https://www.suse.com/security/cve/CVE-2025-68201"
},
{
"category": "external",
"summary": "SUSE Bug 1255136 for CVE-2025-68201",
"url": "https://bugzilla.suse.com/1255136"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68201"
},
{
"cve": "CVE-2025-68202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68202"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched_ext: Fix unsafe locking in the scx_dump_state()\n\nFor built with CONFIG_PREEMPT_RT=y kernels, the dump_lock will be converted\nsleepable spinlock and not disable-irq, so the following scenarios occur:\n\ninconsistent {IN-HARDIRQ-W} -\u003e {HARDIRQ-ON-W} usage.\nirq_work/0/27 [HC0[0]:SC0[0]:HE1:SE1] takes:\n(\u0026rq-\u003e__lock){?...}-{2:2}, at: raw_spin_rq_lock_nested+0x2b/0x40\n{IN-HARDIRQ-W} state was registered at:\n lock_acquire+0x1e1/0x510\n _raw_spin_lock_nested+0x42/0x80\n raw_spin_rq_lock_nested+0x2b/0x40\n sched_tick+0xae/0x7b0\n update_process_times+0x14c/0x1b0\n tick_periodic+0x62/0x1f0\n tick_handle_periodic+0x48/0xf0\n timer_interrupt+0x55/0x80\n __handle_irq_event_percpu+0x20a/0x5c0\n handle_irq_event_percpu+0x18/0xc0\n handle_irq_event+0xb5/0x150\n handle_level_irq+0x220/0x460\n __common_interrupt+0xa2/0x1e0\n common_interrupt+0xb0/0xd0\n asm_common_interrupt+0x2b/0x40\n _raw_spin_unlock_irqrestore+0x45/0x80\n __setup_irq+0xc34/0x1a30\n request_threaded_irq+0x214/0x2f0\n hpet_time_init+0x3e/0x60\n x86_late_time_init+0x5b/0xb0\n start_kernel+0x308/0x410\n x86_64_start_reservations+0x1c/0x30\n x86_64_start_kernel+0x96/0xa0\n common_startup_64+0x13e/0x148\n\n other info that might help us debug this:\n Possible unsafe locking scenario:\n\n CPU0\n ----\n lock(\u0026rq-\u003e__lock);\n \u003cInterrupt\u003e\n lock(\u0026rq-\u003e__lock);\n\n *** DEADLOCK ***\n\n stack backtrace:\n CPU: 0 UID: 0 PID: 27 Comm: irq_work/0\n Call Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x8c/0xd0\n dump_stack+0x14/0x20\n print_usage_bug+0x42e/0x690\n mark_lock.part.44+0x867/0xa70\n ? __pfx_mark_lock.part.44+0x10/0x10\n ? string_nocheck+0x19c/0x310\n ? number+0x739/0x9f0\n ? __pfx_string_nocheck+0x10/0x10\n ? __pfx_check_pointer+0x10/0x10\n ? kvm_sched_clock_read+0x15/0x30\n ? sched_clock_noinstr+0xd/0x20\n ? local_clock_noinstr+0x1c/0xe0\n __lock_acquire+0xc4b/0x62b0\n ? __pfx_format_decode+0x10/0x10\n ? __pfx_string+0x10/0x10\n ? __pfx___lock_acquire+0x10/0x10\n ? __pfx_vsnprintf+0x10/0x10\n lock_acquire+0x1e1/0x510\n ? raw_spin_rq_lock_nested+0x2b/0x40\n ? __pfx_lock_acquire+0x10/0x10\n ? dump_line+0x12e/0x270\n ? raw_spin_rq_lock_nested+0x20/0x40\n _raw_spin_lock_nested+0x42/0x80\n ? raw_spin_rq_lock_nested+0x2b/0x40\n raw_spin_rq_lock_nested+0x2b/0x40\n scx_dump_state+0x3b3/0x1270\n ? finish_task_switch+0x27e/0x840\n scx_ops_error_irq_workfn+0x67/0x80\n irq_work_single+0x113/0x260\n irq_work_run_list.part.3+0x44/0x70\n run_irq_workd+0x6b/0x90\n ? __pfx_run_irq_workd+0x10/0x10\n smpboot_thread_fn+0x529/0x870\n ? __pfx_smpboot_thread_fn+0x10/0x10\n kthread+0x305/0x3f0\n ? __pfx_kthread+0x10/0x10\n ret_from_fork+0x40/0x70\n ? __pfx_kthread+0x10/0x10\n ret_from_fork_asm+0x1a/0x30\n \u003c/TASK\u003e\n\nThis commit therefore use rq_lock_irqsave/irqrestore() to replace\nrq_lock/unlock() in the scx_dump_state().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68202",
"url": "https://www.suse.com/security/cve/CVE-2025-68202"
},
{
"category": "external",
"summary": "SUSE Bug 1255223 for CVE-2025-68202",
"url": "https://bugzilla.suse.com/1255223"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68202"
},
{
"cve": "CVE-2025-68206",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68206"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_ct: add seqadj extension for natted connections\n\nSequence adjustment may be required for FTP traffic with PASV/EPSV modes.\ndue to need to re-write packet payload (IP, port) on the ftp control\nconnection. This can require changes to the TCP length and expected\nseq / ack_seq.\n\nThe easiest way to reproduce this issue is with PASV mode.\nExample ruleset:\ntable inet ftp_nat {\n ct helper ftp_helper {\n type \"ftp\" protocol tcp\n l3proto inet\n }\n\n chain prerouting {\n type filter hook prerouting priority 0; policy accept;\n tcp dport 21 ct state new ct helper set \"ftp_helper\"\n }\n}\ntable ip nat {\n chain prerouting {\n type nat hook prerouting priority -100; policy accept;\n tcp dport 21 dnat ip prefix to ip daddr map {\n\t\t\t192.168.100.1 : 192.168.13.2/32 }\n }\n\n chain postrouting {\n type nat hook postrouting priority 100 ; policy accept;\n tcp sport 21 snat ip prefix to ip saddr map {\n\t\t\t192.168.13.2 : 192.168.100.1/32 }\n }\n}\n\nNote that the ftp helper gets assigned *after* the dnat setup.\n\nThe inverse (nat after helper assign) is handled by an existing\ncheck in nf_nat_setup_info() and will not show the problem.\n\nTopoloy:\n\n +-------------------+ +----------------------------------+\n | FTP: 192.168.13.2 | \u003c-\u003e | NAT: 192.168.13.3, 192.168.100.1 |\n +-------------------+ +----------------------------------+\n |\n +-----------------------+\n | Client: 192.168.100.2 |\n +-----------------------+\n\nftp nat changes do not work as expected in this case:\nConnected to 192.168.100.1.\n[..]\nftp\u003e epsv\nEPSV/EPRT on IPv4 off.\nftp\u003e ls\n227 Entering passive mode (192,168,100,1,209,129).\n421 Service not available, remote server has closed connection.\n\nKernel logs:\nMissing nfct_seqadj_ext_add() setup call\nWARNING: CPU: 1 PID: 0 at net/netfilter/nf_conntrack_seqadj.c:41\n[..]\n __nf_nat_mangle_tcp_packet+0x100/0x160 [nf_nat]\n nf_nat_ftp+0x142/0x280 [nf_nat_ftp]\n help+0x4d1/0x880 [nf_conntrack_ftp]\n nf_confirm+0x122/0x2e0 [nf_conntrack]\n nf_hook_slow+0x3c/0xb0\n ..\n\nFix this by adding the required extension when a conntrack helper is assigned\nto a connection that has a nat binding.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68206",
"url": "https://www.suse.com/security/cve/CVE-2025-68206"
},
{
"category": "external",
"summary": "SUSE Bug 1255142 for CVE-2025-68206",
"url": "https://bugzilla.suse.com/1255142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68206"
},
{
"cve": "CVE-2025-68207",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68207"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/xe/guc: Synchronize Dead CT worker with unbind\n\nCancel and wait for any Dead CT worker to complete before continuing\nwith device unbinding. Else the worker will end up using resources freed\nby the undind operation.\n\n(cherry picked from commit 492671339114e376aaa38626d637a2751cdef263)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68207",
"url": "https://www.suse.com/security/cve/CVE-2025-68207"
},
{
"category": "external",
"summary": "SUSE Bug 1255234 for CVE-2025-68207",
"url": "https://bugzilla.suse.com/1255234"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68207"
},
{
"cve": "CVE-2025-68208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68208"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: account for current allocated stack depth in widen_imprecise_scalars()\n\nThe usage pattern for widen_imprecise_scalars() looks as follows:\n\n prev_st = find_prev_entry(env, ...);\n queued_st = push_stack(...);\n widen_imprecise_scalars(env, prev_st, queued_st);\n\nWhere prev_st is an ancestor of the queued_st in the explored states\ntree. This ancestor is not guaranteed to have same allocated stack\ndepth as queued_st. E.g. in the following case:\n\n def main():\n for i in 1..2:\n foo(i) // same callsite, differnt param\n\n def foo(i):\n if i == 1:\n use 128 bytes of stack\n iterator based loop\n\nHere, for a second \u0027foo\u0027 call prev_st-\u003eallocated_stack is 128,\nwhile queued_st-\u003eallocated_stack is much smaller.\nwiden_imprecise_scalars() needs to take this into account and avoid\naccessing bpf_verifier_state-\u003eframe[*]-\u003estack out of bounds.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68208",
"url": "https://www.suse.com/security/cve/CVE-2025-68208"
},
{
"category": "external",
"summary": "SUSE Bug 1255227 for CVE-2025-68208",
"url": "https://bugzilla.suse.com/1255227"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68208"
},
{
"cve": "CVE-2025-68209",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68209"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlx5: Fix default values in create CQ\n\nCurrently, CQs without a completion function are assigned the\nmlx5_add_cq_to_tasklet function by default. This is problematic since\nonly user CQs created through the mlx5_ib driver are intended to use\nthis function.\n\nAdditionally, all CQs that will use doorbells instead of polling for\ncompletions must call mlx5_cq_arm. However, the default CQ creation flow\nleaves a valid value in the CQ\u0027s arm_db field, allowing FW to send\ninterrupts to polling-only CQs in certain corner cases.\n\nThese two factors would allow a polling-only kernel CQ to be triggered\nby an EQ interrupt and call a completion function intended only for user\nCQs, causing a null pointer exception.\n\nSome areas in the driver have prevented this issue with one-off fixes\nbut did not address the root cause.\n\nThis patch fixes the described issue by adding defaults to the create CQ\nflow. It adds a default dummy completion function to protect against\nnull pointer exceptions, and it sets an invalid command sequence number\nby default in kernel CQs to prevent the FW from sending an interrupt to\nthe CQ until it is armed. User CQs are responsible for their own\ninitialization values.\n\nCallers of mlx5_core_create_cq are responsible for changing the\ncompletion function and arming the CQ per their needs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68209",
"url": "https://www.suse.com/security/cve/CVE-2025-68209"
},
{
"category": "external",
"summary": "SUSE Bug 1255230 for CVE-2025-68209",
"url": "https://bugzilla.suse.com/1255230"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68209"
},
{
"cve": "CVE-2025-68210",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68210"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nerofs: avoid infinite loop due to incomplete zstd-compressed data\n\nCurrently, the decompression logic incorrectly spins if compressed\ndata is truncated in crafted (deliberately corrupted) images.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68210",
"url": "https://www.suse.com/security/cve/CVE-2025-68210"
},
{
"category": "external",
"summary": "SUSE Bug 1255231 for CVE-2025-68210",
"url": "https://bugzilla.suse.com/1255231"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68210"
},
{
"cve": "CVE-2025-68213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68213"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nidpf: fix possible vport_config NULL pointer deref in remove\n\nAttempting to remove the driver will cause a crash in cases where\nthe vport failed to initialize. Following trace is from an instance where\nthe driver failed during an attempt to create a VF:\n[ 1661.543624] idpf 0000:84:00.7: Device HW Reset initiated\n[ 1722.923726] idpf 0000:84:00.7: Transaction timed-out (op:1 cookie:2900 vc_op:1 salt:29 timeout:60000ms)\n[ 1723.353263] BUG: kernel NULL pointer dereference, address: 0000000000000028\n...\n[ 1723.358472] RIP: 0010:idpf_remove+0x11c/0x200 [idpf]\n...\n[ 1723.364973] Call Trace:\n[ 1723.365475] \u003cTASK\u003e\n[ 1723.365972] pci_device_remove+0x42/0xb0\n[ 1723.366481] device_release_driver_internal+0x1a9/0x210\n[ 1723.366987] pci_stop_bus_device+0x6d/0x90\n[ 1723.367488] pci_stop_and_remove_bus_device+0x12/0x20\n[ 1723.367971] pci_iov_remove_virtfn+0xbd/0x120\n[ 1723.368309] sriov_disable+0x34/0xe0\n[ 1723.368643] idpf_sriov_configure+0x58/0x140 [idpf]\n[ 1723.368982] sriov_numvfs_store+0xda/0x1c0\n\nAvoid the NULL pointer dereference by adding NULL pointer check for\nvport_config[i], before freeing user_config.q_coalesce.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68213",
"url": "https://www.suse.com/security/cve/CVE-2025-68213"
},
{
"category": "external",
"summary": "SUSE Bug 1255228 for CVE-2025-68213",
"url": "https://bugzilla.suse.com/1255228"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68213"
},
{
"cve": "CVE-2025-68215",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68215"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: fix PTP cleanup on driver removal in error path\n\nImprove the cleanup on releasing PTP resources in error path.\nThe error case might happen either at the driver probe and PTP\nfeature initialization or on PTP restart (errors in reset handling, NVM\nupdate etc). In both cases, calls to PF PTP cleanup (ice_ptp_cleanup_pf\nfunction) and \u0027ps_lock\u0027 mutex deinitialization were missed.\nAdditionally, ptp clock was not unregistered in the latter case.\n\nKeep PTP state as \u0027uninitialized\u0027 on init to distinguish between error\nscenarios and to avoid resource release duplication at driver removal.\n\nThe consequence of missing ice_ptp_cleanup_pf call is the following call\ntrace dumped when ice_adapter object is freed (port list is not empty,\nas it is required at this stage):\n\n[ T93022] ------------[ cut here ]------------\n[ T93022] WARNING: CPU: 10 PID: 93022 at\nice/ice_adapter.c:67 ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] RIP: 0010:ice_adapter_put+0xef/0x100 [ice]\n...\n[ T93022] Call Trace:\n[ T93022] \u003cTASK\u003e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? __warn.cold+0xb0/0x10e\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] ? report_bug+0xd8/0x150\n[ T93022] ? handle_bug+0xe9/0x110\n[ T93022] ? exc_invalid_op+0x17/0x70\n[ T93022] ? asm_exc_invalid_op+0x1a/0x20\n[ T93022] ? ice_adapter_put+0xef/0x100 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n[ T93022] pci_device_remove+0x42/0xb0\n[ T93022] device_release_driver_internal+0x19f/0x200\n[ T93022] driver_detach+0x48/0x90\n[ T93022] bus_remove_driver+0x70/0xf0\n[ T93022] pci_unregister_driver+0x42/0xb0\n[ T93022] ice_module_exit+0x10/0xdb0 [ice\n33d2647ad4f6d866d41eefff1806df37c68aef0c]\n...\n[ T93022] ---[ end trace 0000000000000000 ]---\n[ T93022] ice: module unloaded",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68215",
"url": "https://www.suse.com/security/cve/CVE-2025-68215"
},
{
"category": "external",
"summary": "SUSE Bug 1255226 for CVE-2025-68215",
"url": "https://bugzilla.suse.com/1255226"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68215"
},
{
"cve": "CVE-2025-68217",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68217"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: pegasus-notetaker - fix potential out-of-bounds access\n\nIn the pegasus_notetaker driver, the pegasus_probe() function allocates\nthe URB transfer buffer using the wMaxPacketSize value from\nthe endpoint descriptor. An attacker can use a malicious USB descriptor\nto force the allocation of a very small buffer.\n\nSubsequently, if the device sends an interrupt packet with a specific\npattern (e.g., where the first byte is 0x80 or 0x42),\nthe pegasus_parse_packet() function parses the packet without checking\nthe allocated buffer size. This leads to an out-of-bounds memory access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68217",
"url": "https://www.suse.com/security/cve/CVE-2025-68217"
},
{
"category": "external",
"summary": "SUSE Bug 1255221 for CVE-2025-68217",
"url": "https://bugzilla.suse.com/1255221"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68217"
},
{
"cve": "CVE-2025-68222",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68222"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc\n\ns32_pinctrl_desc is allocated with devm_kmalloc(), but not all of its\nfields are initialized. Notably, num_custom_params is used in\npinconf_generic_parse_dt_config(), resulting in intermittent allocation\nerrors, such as the following splat when probing i2c-imx:\n\n WARNING: CPU: 0 PID: 176 at mm/page_alloc.c:4795 __alloc_pages_noprof+0x290/0x300\n [...]\n Hardware name: NXP S32G3 Reference Design Board 3 (S32G-VNP-RDB3) (DT)\n [...]\n Call trace:\n __alloc_pages_noprof+0x290/0x300 (P)\n ___kmalloc_large_node+0x84/0x168\n __kmalloc_large_node_noprof+0x34/0x120\n __kmalloc_noprof+0x2ac/0x378\n pinconf_generic_parse_dt_config+0x68/0x1a0\n s32_dt_node_to_map+0x104/0x248\n dt_to_map_one_config+0x154/0x1d8\n pinctrl_dt_to_map+0x12c/0x280\n create_pinctrl+0x6c/0x270\n pinctrl_get+0xc0/0x170\n devm_pinctrl_get+0x50/0xa0\n pinctrl_bind_pins+0x60/0x2a0\n really_probe+0x60/0x3a0\n [...]\n __platform_driver_register+0x2c/0x40\n i2c_adap_imx_init+0x28/0xff8 [i2c_imx]\n [...]\n\nThis results in later parse failures that can cause issues in dependent\ndrivers:\n\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c0-pins/i2c0-grp0: could not parse node property\n [...]\n pca953x 0-0022: failed writing register: -6\n i2c i2c-0: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c2-pins/i2c2-grp0: could not parse node property\n i2c i2c-1: IMX I2C adapter registered\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n s32g-siul2-pinctrl 4009c240.pinctrl: /soc@0/pinctrl@4009c240/i2c4-pins/i2c4-grp0: could not parse node property\n i2c i2c-2: IMX I2C adapter registered\n\nFix this by initializing s32_pinctrl_desc with devm_kzalloc() instead of\ndevm_kmalloc() in s32_pinctrl_probe(), which sets the previously\nuninitialized fields to zero.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68222",
"url": "https://www.suse.com/security/cve/CVE-2025-68222"
},
{
"category": "external",
"summary": "SUSE Bug 1255218 for CVE-2025-68222",
"url": "https://bugzilla.suse.com/1255218"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68222"
},
{
"cve": "CVE-2025-68223",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68223"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: delete radeon_fence_process in is_signaled, no deadlock\n\nDelete the attempt to progress the queue when checking if fence is\nsignaled. This avoids deadlock.\n\ndma-fence_ops::signaled can be called with the fence lock in unknown\nstate. For radeon, the fence lock is also the wait queue lock. This can\ncause a self deadlock when signaled() tries to make forward progress on\nthe wait queue. But advancing the queue is unneeded because incorrectly\nreturning false from signaled() is perfectly acceptable.\n\n(cherry picked from commit 527ba26e50ec2ca2be9c7c82f3ad42998a75d0db)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68223",
"url": "https://www.suse.com/security/cve/CVE-2025-68223"
},
{
"category": "external",
"summary": "SUSE Bug 1255357 for CVE-2025-68223",
"url": "https://bugzilla.suse.com/1255357"
},
{
"category": "external",
"summary": "SUSE Bug 1255358 for CVE-2025-68223",
"url": "https://bugzilla.suse.com/1255358"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-68223"
},
{
"cve": "CVE-2025-68230",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68230"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix gpu page fault after hibernation on PF passthrough\n\nOn PF passthrough environment, after hibernate and then resume, coralgemm\nwill cause gpu page fault.\n\nMode1 reset happens during hibernate, but partition mode is not restored\non resume, register mmCP_HYP_XCP_CTL and mmCP_PSP_XCP_CTL is not right\nafter resume. When CP access the MQD BO, wrong stride size is used,\nthis will cause out of bound access on the MQD BO, resulting page fault.\n\nThe fix is to ensure gfx_v9_4_3_switch_compute_partition() is called\nwhen resume from a hibernation.\nKFD resume is called separately during a reset recovery or resume from\nsuspend sequence. Hence it\u0027s not required to be called as part of\npartition switch.\n\n(cherry picked from commit 5d1b32cfe4a676fe552416cb5ae847b215463a1a)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68230",
"url": "https://www.suse.com/security/cve/CVE-2025-68230"
},
{
"category": "external",
"summary": "SUSE Bug 1255134 for CVE-2025-68230",
"url": "https://bugzilla.suse.com/1255134"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68230"
},
{
"cve": "CVE-2025-68233",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68233"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/tegra: Add call to put_pid()\n\nAdd a call to put_pid() corresponding to get_task_pid().\nhost1x_memory_context_alloc() does not take ownership of the PID so we\nneed to free it here to avoid leaking.\n\n[mperttunen@nvidia.com: reword commit message]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68233",
"url": "https://www.suse.com/security/cve/CVE-2025-68233"
},
{
"category": "external",
"summary": "SUSE Bug 1255206 for CVE-2025-68233",
"url": "https://bugzilla.suse.com/1255206"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68233"
},
{
"cve": "CVE-2025-68235",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68235"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot\n\nnvkm_falcon_fw::boot is allocated, but no one frees it. This causes a\nkmemleak warning.\n\nMake sure this data is deallocated.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68235",
"url": "https://www.suse.com/security/cve/CVE-2025-68235"
},
{
"category": "external",
"summary": "SUSE Bug 1255209 for CVE-2025-68235",
"url": "https://bugzilla.suse.com/1255209"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68235"
},
{
"cve": "CVE-2025-68237",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68237"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtdchar: fix integer overflow in read/write ioctls\n\nThe \"req.start\" and \"req.len\" variables are u64 values that come from the\nuser at the start of the function. We mask away the high 32 bits of\n\"req.len\" so that\u0027s capped at U32_MAX but the \"req.start\" variable can go\nup to U64_MAX which means that the addition can still integer overflow.\n\nUse check_add_overflow() to fix this bug.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68237",
"url": "https://www.suse.com/security/cve/CVE-2025-68237"
},
{
"category": "external",
"summary": "SUSE Bug 1255203 for CVE-2025-68237",
"url": "https://bugzilla.suse.com/1255203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68237"
},
{
"cve": "CVE-2025-68238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68238"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: rawnand: cadence: fix DMA device NULL pointer dereference\n\nThe DMA device pointer `dma_dev` was being dereferenced before ensuring\nthat `cdns_ctrl-\u003edmac` is properly initialized.\n\nMove the assignment of `dma_dev` after successfully acquiring the DMA\nchannel to ensure the pointer is valid before use.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68238",
"url": "https://www.suse.com/security/cve/CVE-2025-68238"
},
{
"category": "external",
"summary": "SUSE Bug 1255202 for CVE-2025-68238",
"url": "https://bugzilla.suse.com/1255202"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68238"
},
{
"cve": "CVE-2025-68239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68239"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbinfmt_misc: restore write access before closing files opened by open_exec()\n\nbm_register_write() opens an executable file using open_exec(), which\ninternally calls do_open_execat() and denies write access on the file to\navoid modification while it is being executed.\n\nHowever, when an error occurs, bm_register_write() closes the file using\nfilp_close() directly. This does not restore the write permission, which\nmay cause subsequent write operations on the same file to fail.\n\nFix this by calling exe_file_allow_write_access() before filp_close() to\nrestore the write permission properly.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68239",
"url": "https://www.suse.com/security/cve/CVE-2025-68239"
},
{
"category": "external",
"summary": "SUSE Bug 1255272 for CVE-2025-68239",
"url": "https://bugzilla.suse.com/1255272"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68239"
},
{
"cve": "CVE-2025-68242",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68242"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFS: Fix LTP test failures when timestamps are delegated\n\nThe utimes01 and utime06 tests fail when delegated timestamps are\nenabled, specifically in subtests that modify the atime and mtime\nfields using the \u0027nobody\u0027 user ID.\n\nThe problem can be reproduced as follow:\n\n# echo \"/media *(rw,no_root_squash,sync)\" \u003e\u003e /etc/exports\n# export -ra\n# mount -o rw,nfsvers=4.2 127.0.0.1:/media /tmpdir\n# cd /opt/ltp\n# ./runltp -d /tmpdir -s utimes01\n# ./runltp -d /tmpdir -s utime06\n\nThis issue occurs because nfs_setattr does not verify the inode\u0027s\nUID against the caller\u0027s fsuid when delegated timestamps are\npermitted for the inode.\n\nThis patch adds the UID check and if it does not match then the\nrequest is sent to the server for permission checking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68242",
"url": "https://www.suse.com/security/cve/CVE-2025-68242"
},
{
"category": "external",
"summary": "SUSE Bug 1255186 for CVE-2025-68242",
"url": "https://bugzilla.suse.com/1255186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68242"
},
{
"cve": "CVE-2025-68244",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68244"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD\n\nOn completion of i915_vma_pin_ww(), a synchronous variant of\ndma_fence_work_commit() is called. When pinning a VMA to GGTT address\nspace on a Cherry View family processor, or on a Broxton generation SoC\nwith VTD enabled, i.e., when stop_machine() is then called from\nintel_ggtt_bind_vma(), that can potentially lead to lock inversion among\nreservation_ww and cpu_hotplug locks.\n\n[86.861179] ======================================================\n[86.861193] WARNING: possible circular locking dependency detected\n[86.861209] 6.15.0-rc5-CI_DRM_16515-gca0305cadc2d+ #1 Tainted: G U\n[86.861226] ------------------------------------------------------\n[86.861238] i915_module_loa/1432 is trying to acquire lock:\n[86.861252] ffffffff83489090 (cpu_hotplug_lock){++++}-{0:0}, at: stop_machine+0x1c/0x50\n[86.861290]\nbut task is already holding lock:\n[86.861303] ffffc90002e0b4c8 (reservation_ww_class_mutex){+.+.}-{3:3}, at: i915_vma_pin.constprop.0+0x39/0x1d0 [i915]\n[86.862233]\nwhich lock already depends on the new lock.\n[86.862251]\nthe existing dependency chain (in reverse order) is:\n[86.862265]\n-\u003e #5 (reservation_ww_class_mutex){+.+.}-{3:3}:\n[86.862292] dma_resv_lockdep+0x19a/0x390\n[86.862315] do_one_initcall+0x60/0x3f0\n[86.862334] kernel_init_freeable+0x3cd/0x680\n[86.862353] kernel_init+0x1b/0x200\n[86.862369] ret_from_fork+0x47/0x70\n[86.862383] ret_from_fork_asm+0x1a/0x30\n[86.862399]\n-\u003e #4 (reservation_ww_class_acquire){+.+.}-{0:0}:\n[86.862425] dma_resv_lockdep+0x178/0x390\n[86.862440] do_one_initcall+0x60/0x3f0\n[86.862454] kernel_init_freeable+0x3cd/0x680\n[86.862470] kernel_init+0x1b/0x200\n[86.862482] ret_from_fork+0x47/0x70\n[86.862495] ret_from_fork_asm+0x1a/0x30\n[86.862509]\n-\u003e #3 (\u0026mm-\u003emmap_lock){++++}-{3:3}:\n[86.862531] down_read_killable+0x46/0x1e0\n[86.862546] lock_mm_and_find_vma+0xa2/0x280\n[86.862561] do_user_addr_fault+0x266/0x8e0\n[86.862578] exc_page_fault+0x8a/0x2f0\n[86.862593] asm_exc_page_fault+0x27/0x30\n[86.862607] filldir64+0xeb/0x180\n[86.862620] kernfs_fop_readdir+0x118/0x480\n[86.862635] iterate_dir+0xcf/0x2b0\n[86.862648] __x64_sys_getdents64+0x84/0x140\n[86.862661] x64_sys_call+0x1058/0x2660\n[86.862675] do_syscall_64+0x91/0xe90\n[86.862689] entry_SYSCALL_64_after_hwframe+0x76/0x7e\n[86.862703]\n-\u003e #2 (\u0026root-\u003ekernfs_rwsem){++++}-{3:3}:\n[86.862725] down_write+0x3e/0xf0\n[86.862738] kernfs_add_one+0x30/0x3c0\n[86.862751] kernfs_create_dir_ns+0x53/0xb0\n[86.862765] internal_create_group+0x134/0x4c0\n[86.862779] sysfs_create_group+0x13/0x20\n[86.862792] topology_add_dev+0x1d/0x30\n[86.862806] cpuhp_invoke_callback+0x4b5/0x850\n[86.862822] cpuhp_issue_call+0xbf/0x1f0\n[86.862836] __cpuhp_setup_state_cpuslocked+0x111/0x320\n[86.862852] __cpuhp_setup_state+0xb0/0x220\n[86.862866] topology_sysfs_init+0x30/0x50\n[86.862879] do_one_initcall+0x60/0x3f0\n[86.862893] kernel_init_freeable+0x3cd/0x680\n[86.862908] kernel_init+0x1b/0x200\n[86.862921] ret_from_fork+0x47/0x70\n[86.862934] ret_from_fork_asm+0x1a/0x30\n[86.862947]\n-\u003e #1 (cpuhp_state_mutex){+.+.}-{3:3}:\n[86.862969] __mutex_lock+0xaa/0xed0\n[86.862982] mutex_lock_nested+0x1b/0x30\n[86.862995] __cpuhp_setup_state_cpuslocked+0x67/0x320\n[86.863012] __cpuhp_setup_state+0xb0/0x220\n[86.863026] page_alloc_init_cpuhp+0x2d/0x60\n[86.863041] mm_core_init+0x22/0x2d0\n[86.863054] start_kernel+0x576/0xbd0\n[86.863068] x86_64_start_reservations+0x18/0x30\n[86.863084] x86_64_start_kernel+0xbf/0x110\n[86.863098] common_startup_64+0x13e/0x141\n[86.863114]\n-\u003e #0 (cpu_hotplug_lock){++++}-{0:0}:\n[86.863135] __lock_acquire+0x16\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68244",
"url": "https://www.suse.com/security/cve/CVE-2025-68244"
},
{
"category": "external",
"summary": "SUSE Bug 1255190 for CVE-2025-68244",
"url": "https://bugzilla.suse.com/1255190"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68244"
},
{
"cve": "CVE-2025-68249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68249"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: hdm_probe: Fix calling put_device() before device initialization\n\nThe early error path in hdm_probe() can jump to err_free_mdev before\n\u0026mdev-\u003edev has been initialized with device_initialize(). Calling\nput_device(\u0026mdev-\u003edev) there triggers a device core WARN and ends up\ninvoking kref_put(\u0026kobj-\u003ekref, kobject_release) on an uninitialized\nkobject.\n\nIn this path the private struct was only kmalloc\u0027ed and the intended\nrelease is effectively kfree(mdev) anyway, so free it directly instead\nof calling put_device() on an uninitialized device.\n\nThis removes the WARNING and fixes the pre-initialization error path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68249",
"url": "https://www.suse.com/security/cve/CVE-2025-68249"
},
{
"category": "external",
"summary": "SUSE Bug 1255233 for CVE-2025-68249",
"url": "https://bugzilla.suse.com/1255233"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68249"
},
{
"cve": "CVE-2025-68252",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68252"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmisc: fastrpc: Fix dma_buf object leak in fastrpc_map_lookup\n\nIn fastrpc_map_lookup, dma_buf_get is called to obtain a reference to\nthe dma_buf for comparison purposes. However, this reference is never\nreleased when the function returns, leading to a dma_buf memory leak.\n\nFix this by adding dma_buf_put before returning from the function,\nensuring that the temporarily acquired reference is properly released\nregardless of whether a matching map is found.\n\nRule: add",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68252",
"url": "https://www.suse.com/security/cve/CVE-2025-68252"
},
{
"category": "external",
"summary": "SUSE Bug 1255197 for CVE-2025-68252",
"url": "https://bugzilla.suse.com/1255197"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68252"
},
{
"cve": "CVE-2025-68254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68254"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing\n\nThe Extended Supported Rates (ESR) IE handling in OnBeacon accessed\n*(p + 1 + ielen) and *(p + 2 + ielen) without verifying that these\noffsets lie within the received frame buffer. A malformed beacon with\nan ESR IE positioned at the end of the buffer could cause an\nout-of-bounds read, potentially triggering a kernel panic.\n\nAdd a boundary check to ensure that the ESR IE body and the subsequent\nbytes are within the limits of the frame before attempting to access\nthem.\n\nThis prevents OOB reads caused by malformed beacon frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68254",
"url": "https://www.suse.com/security/cve/CVE-2025-68254"
},
{
"category": "external",
"summary": "SUSE Bug 1255140 for CVE-2025-68254",
"url": "https://bugzilla.suse.com/1255140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68254"
},
{
"cve": "CVE-2025-68255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68255"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing\n\nThe Supported Rates IE length from an incoming Association Request frame\nwas used directly as the memcpy() length when copying into a fixed-size\n16-byte stack buffer (supportRate). A malicious station can advertise an\nIE length larger than 16 bytes, causing a stack buffer overflow.\n\nClamp ie_len to the buffer size before copying the Supported Rates IE,\nand correct the bounds check when merging Extended Supported Rates to\nprevent a second potential overflow.\n\nThis prevents kernel stack corruption triggered by malformed association\nrequests.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68255",
"url": "https://www.suse.com/security/cve/CVE-2025-68255"
},
{
"category": "external",
"summary": "SUSE Bug 1255395 for CVE-2025-68255",
"url": "https://bugzilla.suse.com/1255395"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68255"
},
{
"cve": "CVE-2025-68256",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68256"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nstaging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser\n\nThe Information Element (IE) parser rtw_get_ie() trusted the length\nbyte of each IE without validating that the IE body (len bytes after\nthe 2-byte header) fits inside the remaining frame buffer. A malformed\nframe can advertise an IE length larger than the available data, causing\nthe parser to increment its pointer beyond the buffer end. This results\nin out-of-bounds reads or, depending on the pattern, an infinite loop.\n\nFix by validating that (offset + 2 + len) does not exceed the limit\nbefore accepting the IE or advancing to the next element.\n\nThis prevents OOB reads and ensures the parser terminates safely on\nmalformed frames.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68256",
"url": "https://www.suse.com/security/cve/CVE-2025-68256"
},
{
"category": "external",
"summary": "SUSE Bug 1255138 for CVE-2025-68256",
"url": "https://bugzilla.suse.com/1255138"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68256"
},
{
"cve": "CVE-2025-68257",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68257"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: check device\u0027s attached status in compat ioctls\n\nSyzbot identified an issue [1] that crashes kernel, seemingly due to\nunexistent callback dev-\u003eget_valid_routes(). By all means, this should\nnot occur as said callback must always be set to\nget_zero_valid_routes() in __comedi_device_postconfig().\n\nAs the crash seems to appear exclusively in i386 kernels, at least,\njudging from [1] reports, the blame lies with compat versions\nof standard IOCTL handlers. Several of them are modified and\ndo not use comedi_unlocked_ioctl(). While functionality of these\nioctls essentially copy their original versions, they do not\nhave required sanity check for device\u0027s attached status. This,\nin turn, leads to a possibility of calling select IOCTLs on a\ndevice that has not been properly setup, even via COMEDI_DEVCONFIG.\n\nDoing so on unconfigured devices means that several crucial steps\nare missed, for instance, specifying dev-\u003eget_valid_routes()\ncallback.\n\nFix this somewhat crudely by ensuring device\u0027s attached status before\nperforming any ioctls, improving logic consistency between modern\nand compat functions.\n\n[1] Syzbot report:\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n...\nCR2: ffffffffffffffd6 CR3: 000000006c717000 CR4: 0000000000352ef0\nCall Trace:\n \u003cTASK\u003e\n get_valid_routes drivers/comedi/comedi_fops.c:1322 [inline]\n parse_insn+0x78c/0x1970 drivers/comedi/comedi_fops.c:1401\n do_insnlist_ioctl+0x272/0x700 drivers/comedi/comedi_fops.c:1594\n compat_insnlist drivers/comedi/comedi_fops.c:3208 [inline]\n comedi_compat_ioctl+0x810/0x990 drivers/comedi/comedi_fops.c:3273\n __do_compat_sys_ioctl fs/ioctl.c:695 [inline]\n __se_compat_sys_ioctl fs/ioctl.c:638 [inline]\n __ia32_compat_sys_ioctl+0x242/0x370 fs/ioctl.c:638\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68257",
"url": "https://www.suse.com/security/cve/CVE-2025-68257"
},
{
"category": "external",
"summary": "SUSE Bug 1255167 for CVE-2025-68257",
"url": "https://bugzilla.suse.com/1255167"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68257"
},
{
"cve": "CVE-2025-68258",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68258"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: multiq3: sanitize config options in multiq3_attach()\n\nSyzbot identified an issue [1] in multiq3_attach() that induces a\ntask timeout due to open() or COMEDI_DEVCONFIG ioctl operations,\nspecifically, in the case of multiq3 driver.\n\nThis problem arose when syzkaller managed to craft weird configuration\noptions used to specify the number of channels in encoder subdevice.\nIf a particularly great number is passed to s-\u003en_chan in\nmultiq3_attach() via it-\u003eoptions[2], then multiple calls to\nmultiq3_encoder_reset() at the end of driver-specific attach() method\nwill be running for minutes, thus blocking tasks and affected devices\nas well.\n\nWhile this issue is most likely not too dangerous for real-life\ndevices, it still makes sense to sanitize configuration inputs. Enable\na sensible limit on the number of encoder chips (4 chips max, each\nwith 2 channels) to stop this behaviour from manifesting.\n\n[1] Syzbot crash:\nINFO: task syz.2.19:6067 blocked for more than 143 seconds.\n...\nCall Trace:\n \u003cTASK\u003e\n context_switch kernel/sched/core.c:5254 [inline]\n __schedule+0x17c4/0x4d60 kernel/sched/core.c:6862\n __schedule_loop kernel/sched/core.c:6944 [inline]\n schedule+0x165/0x360 kernel/sched/core.c:6959\n schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7016\n __mutex_lock_common kernel/locking/mutex.c:676 [inline]\n __mutex_lock+0x7e6/0x1350 kernel/locking/mutex.c:760\n comedi_open+0xc0/0x590 drivers/comedi/comedi_fops.c:2868\n chrdev_open+0x4cc/0x5e0 fs/char_dev.c:414\n do_dentry_open+0x953/0x13f0 fs/open.c:965\n vfs_open+0x3b/0x340 fs/open.c:1097\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68258",
"url": "https://www.suse.com/security/cve/CVE-2025-68258"
},
{
"category": "external",
"summary": "SUSE Bug 1255182 for CVE-2025-68258",
"url": "https://bugzilla.suse.com/1255182"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68258"
},
{
"cve": "CVE-2025-68259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68259"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: SVM: Don\u0027t skip unrelated instruction if INT3/INTO is replaced\n\nWhen re-injecting a soft interrupt from an INT3, INT0, or (select) INTn\ninstruction, discard the exception and retry the instruction if the code\nstream is changed (e.g. by a different vCPU) between when the CPU\nexecutes the instruction and when KVM decodes the instruction to get the\nnext RIP.\n\nAs effectively predicted by commit 6ef88d6e36c2 (\"KVM: SVM: Re-inject\nINT3/INTO instead of retrying the instruction\"), failure to verify that\nthe correct INTn instruction was decoded can effectively clobber guest\nstate due to decoding the wrong instruction and thus specifying the\nwrong next RIP.\n\nThe bug most often manifests as \"Oops: int3\" panics on static branch\nchecks in Linux guests. Enabling or disabling a static branch in Linux\nuses the kernel\u0027s \"text poke\" code patching mechanism. To modify code\nwhile other CPUs may be executing that code, Linux (temporarily)\nreplaces the first byte of the original instruction with an int3 (opcode\n0xcc), then patches in the new code stream except for the first byte,\nand finally replaces the int3 with the first byte of the new code\nstream. If a CPU hits the int3, i.e. executes the code while it\u0027s being\nmodified, then the guest kernel must look up the RIP to determine how to\nhandle the #BP, e.g. by emulating the new instruction. If the RIP is\nincorrect, then this lookup fails and the guest kernel panics.\n\nThe bug reproduces almost instantly by hacking the guest kernel to\nrepeatedly check a static branch[1] while running a drgn script[2] on\nthe host to constantly swap out the memory containing the guest\u0027s TSS.\n\n[1]: https://gist.github.com/osandov/44d17c51c28c0ac998ea0334edf90b5a\n[2]: https://gist.github.com/osandov/10e45e45afa29b11e0c7209247afc00b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68259",
"url": "https://www.suse.com/security/cve/CVE-2025-68259"
},
{
"category": "external",
"summary": "SUSE Bug 1255199 for CVE-2025-68259",
"url": "https://bugzilla.suse.com/1255199"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68259"
},
{
"cve": "CVE-2025-68264",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68264"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: refresh inline data size before write operations\n\nThe cached ei-\u003ei_inline_size can become stale between the initial size\ncheck and when ext4_update_inline_data()/ext4_create_inline_data() use\nit. Although ext4_get_max_inline_size() reads the correct value at the\ntime of the check, concurrent xattr operations can modify i_inline_size\nbefore ext4_write_lock_xattr() is acquired.\n\nThis causes ext4_update_inline_data() and ext4_create_inline_data() to\nwork with stale capacity values, leading to a BUG_ON() crash in\next4_write_inline_data():\n\n kernel BUG at fs/ext4/inline.c:1331!\n BUG_ON(pos + len \u003e EXT4_I(inode)-\u003ei_inline_size);\n\nThe race window:\n1. ext4_get_max_inline_size() reads i_inline_size = 60 (correct)\n2. Size check passes for 50-byte write\n3. [Another thread adds xattr, i_inline_size changes to 40]\n4. ext4_write_lock_xattr() acquires lock\n5. ext4_update_inline_data() uses stale i_inline_size = 60\n6. Attempts to write 50 bytes but only 40 bytes actually available\n7. BUG_ON() triggers\n\nFix this by recalculating i_inline_size via ext4_find_inline_data_nolock()\nimmediately after acquiring xattr_sem. This ensures ext4_update_inline_data()\nand ext4_create_inline_data() work with current values that are protected\nfrom concurrent modifications.\n\nThis is similar to commit a54c4613dac1 (\"ext4: fix race writing to an\ninline_data file while its xattrs are changing\") which fixed i_inline_off\nstaleness. This patch addresses the related i_inline_size staleness issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68264",
"url": "https://www.suse.com/security/cve/CVE-2025-68264"
},
{
"category": "external",
"summary": "SUSE Bug 1255380 for CVE-2025-68264",
"url": "https://bugzilla.suse.com/1255380"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68264"
},
{
"cve": "CVE-2025-68283",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68283"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: replace BUG_ON with bounds check for map-\u003emax_osd\n\nOSD indexes come from untrusted network packets. Boundary checks are\nadded to validate these against map-\u003emax_osd.\n\n[ idryomov: drop BUG_ON in ceph_get_primary_affinity(), minor cosmetic\n edits ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68283",
"url": "https://www.suse.com/security/cve/CVE-2025-68283"
},
{
"category": "external",
"summary": "SUSE Bug 1255379 for CVE-2025-68283",
"url": "https://bugzilla.suse.com/1255379"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68283"
},
{
"cve": "CVE-2025-68284",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68284"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: prevent potential out-of-bounds writes in handle_auth_session_key()\n\nThe len field originates from untrusted network packets. Boundary\nchecks have been added to prevent potential out-of-bounds writes when\ndecrypting the connection secret or processing service tickets.\n\n[ idryomov: changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68284",
"url": "https://www.suse.com/security/cve/CVE-2025-68284"
},
{
"category": "external",
"summary": "SUSE Bug 1255377 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255377"
},
{
"category": "external",
"summary": "SUSE Bug 1255378 for CVE-2025-68284",
"url": "https://bugzilla.suse.com/1255378"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-68284"
},
{
"cve": "CVE-2025-68285",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68285"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlibceph: fix potential use-after-free in have_mon_and_osd_map()\n\nThe wait loop in __ceph_open_session() can race with the client\nreceiving a new monmap or osdmap shortly after the initial map is\nreceived. Both ceph_monc_handle_map() and handle_one_map() install\na new map immediately after freeing the old one\n\n kfree(monc-\u003emonmap);\n monc-\u003emonmap = monmap;\n\n ceph_osdmap_destroy(osdc-\u003eosdmap);\n osdc-\u003eosdmap = newmap;\n\nunder client-\u003emonc.mutex and client-\u003eosdc.lock respectively, but\nbecause neither is taken in have_mon_and_osd_map() it\u0027s possible for\nclient-\u003emonc.monmap-\u003eepoch and client-\u003eosdc.osdmap-\u003eepoch arms in\n\n client-\u003emonc.monmap \u0026\u0026 client-\u003emonc.monmap-\u003eepoch \u0026\u0026\n client-\u003eosdc.osdmap \u0026\u0026 client-\u003eosdc.osdmap-\u003eepoch;\n\ncondition to dereference an already freed map. This happens to be\nreproducible with generic/395 and generic/397 with KASAN enabled:\n\n BUG: KASAN: slab-use-after-free in have_mon_and_osd_map+0x56/0x70\n Read of size 4 at addr ffff88811012d810 by task mount.ceph/13305\n CPU: 2 UID: 0 PID: 13305 Comm: mount.ceph Not tainted 6.14.0-rc2-build2+ #1266\n ...\n Call Trace:\n \u003cTASK\u003e\n have_mon_and_osd_map+0x56/0x70\n ceph_open_session+0x182/0x290\n ceph_get_tree+0x333/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n \u003c/TASK\u003e\n\n Allocated by task 13305:\n ceph_osdmap_alloc+0x16/0x130\n ceph_osdc_init+0x27a/0x4c0\n ceph_create_client+0x153/0x190\n create_fs_client+0x50/0x2a0\n ceph_get_tree+0xff/0x680\n vfs_get_tree+0x49/0x180\n do_new_mount+0x1a3/0x2d0\n path_mount+0x6dd/0x730\n do_mount+0x99/0xe0\n __do_sys_mount+0x141/0x180\n do_syscall_64+0x9f/0x100\n entry_SYSCALL_64_after_hwframe+0x76/0x7e\n\n Freed by task 9475:\n kfree+0x212/0x290\n handle_one_map+0x23c/0x3b0\n ceph_osdc_handle_map+0x3c9/0x590\n mon_dispatch+0x655/0x6f0\n ceph_con_process_message+0xc3/0xe0\n ceph_con_v1_try_read+0x614/0x760\n ceph_con_workfn+0x2de/0x650\n process_one_work+0x486/0x7c0\n process_scheduled_works+0x73/0x90\n worker_thread+0x1c8/0x2a0\n kthread+0x2ec/0x300\n ret_from_fork+0x24/0x40\n ret_from_fork_asm+0x1a/0x30\n\nRewrite the wait loop to check the above condition directly with\nclient-\u003emonc.mutex and client-\u003eosdc.lock taken as appropriate. While\nat it, improve the timeout handling (previously mount_timeout could be\nexceeded in case wait_event_interruptible_timeout() slept more than\nonce) and access client-\u003eauth_err under client-\u003emonc.mutex to match\nhow it\u0027s set in finish_auth().\n\nmonmap_show() and osdmap_show() now take the respective lock before\naccessing the map as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68285",
"url": "https://www.suse.com/security/cve/CVE-2025-68285"
},
{
"category": "external",
"summary": "SUSE Bug 1255401 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255401"
},
{
"category": "external",
"summary": "SUSE Bug 1255402 for CVE-2025-68285",
"url": "https://bugzilla.suse.com/1255402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-68285"
},
{
"cve": "CVE-2025-68286",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68286"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Check NULL before accessing\n\n[WHAT]\nIGT kms_cursor_legacy\u0027s long-nonblocking-modeset-vs-cursor-atomic\nfails with NULL pointer dereference. This can be reproduced with\nboth an eDP panel and a DP monitors connected.\n\n BUG: kernel NULL pointer dereference, address: 0000000000000000\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 0 P4D 0\n Oops: Oops: 0000 [#1] SMP NOPTI\n CPU: 13 UID: 0 PID: 2960 Comm: kms_cursor_lega Not tainted\n6.16.0-99-custom #8 PREEMPT(voluntary)\n Hardware name: AMD ........\n RIP: 0010:dc_stream_get_scanoutpos+0x34/0x130 [amdgpu]\n Code: 57 4d 89 c7 41 56 49 89 ce 41 55 49 89 d5 41 54 49\n 89 fc 53 48 83 ec 18 48 8b 87 a0 64 00 00 48 89 75 d0 48 c7 c6 e0 41 30\n c2 \u003c48\u003e 8b 38 48 8b 9f 68 06 00 00 e8 8d d7 fd ff 31 c0 48 81 c3 e0 02\n RSP: 0018:ffffd0f3c2bd7608 EFLAGS: 00010292\n RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffd0f3c2bd7668\n RDX: ffffd0f3c2bd7664 RSI: ffffffffc23041e0 RDI: ffff8b32494b8000\n RBP: ffffd0f3c2bd7648 R08: ffffd0f3c2bd766c R09: ffffd0f3c2bd7760\n R10: ffffd0f3c2bd7820 R11: 0000000000000000 R12: ffff8b32494b8000\n R13: ffffd0f3c2bd7664 R14: ffffd0f3c2bd7668 R15: ffffd0f3c2bd766c\n FS: 000071f631b68700(0000) GS:ffff8b399f114000(0000)\nknlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: 0000000000000000 CR3: 00000001b8105000 CR4: 0000000000f50ef0\n PKRU: 55555554\n Call Trace:\n \u003cTASK\u003e\n dm_crtc_get_scanoutpos+0xd7/0x180 [amdgpu]\n amdgpu_display_get_crtc_scanoutpos+0x86/0x1c0 [amdgpu]\n ? __pfx_amdgpu_crtc_get_scanout_position+0x10/0x10[amdgpu]\n amdgpu_crtc_get_scanout_position+0x27/0x50 [amdgpu]\n drm_crtc_vblank_helper_get_vblank_timestamp_internal+0xf7/0x400\n drm_crtc_vblank_helper_get_vblank_timestamp+0x1c/0x30\n drm_crtc_get_last_vbltimestamp+0x55/0x90\n drm_crtc_next_vblank_start+0x45/0xa0\n drm_atomic_helper_wait_for_fences+0x81/0x1f0\n ...\n\n(cherry picked from commit 621e55f1919640acab25383362b96e65f2baea3c)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68286",
"url": "https://www.suse.com/security/cve/CVE-2025-68286"
},
{
"category": "external",
"summary": "SUSE Bug 1255351 for CVE-2025-68286",
"url": "https://bugzilla.suse.com/1255351"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68286"
},
{
"cve": "CVE-2025-68287",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68287"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths\n\nThis patch addresses a race condition caused by unsynchronized\nexecution of multiple call paths invoking `dwc3_remove_requests()`,\nleading to premature freeing of USB requests and subsequent crashes.\n\nThree distinct execution paths interact with `dwc3_remove_requests()`:\nPath 1:\nTriggered via `dwc3_gadget_reset_interrupt()` during USB reset\nhandling. The call stack includes:\n- `dwc3_ep0_reset_state()`\n- `dwc3_ep0_stall_and_restart()`\n- `dwc3_ep0_out_start()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 2:\nAlso initiated from `dwc3_gadget_reset_interrupt()`, but through\n`dwc3_stop_active_transfers()`. The call stack includes:\n- `dwc3_stop_active_transfers()`\n- `dwc3_remove_requests()`\n- `dwc3_gadget_del_and_unmap_request()`\n\nPath 3:\nOccurs independently during `adb root` execution, which triggers\nUSB function unbind and bind operations. The sequence includes:\n- `gserial_disconnect()`\n- `usb_ep_disable()`\n- `dwc3_gadget_ep_disable()`\n- `dwc3_remove_requests()` with `-ESHUTDOWN` status\n\nPath 3 operates asynchronously and lacks synchronization with Paths\n1 and 2. When Path 3 completes, it disables endpoints and frees \u0027out\u0027\nrequests. If Paths 1 or 2 are still processing these requests,\naccessing freed memory leads to a crash due to use-after-free conditions.\n\nTo fix this added check for request completion and skip processing\nif already completed and added the request status for ep0 while queue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68287",
"url": "https://www.suse.com/security/cve/CVE-2025-68287"
},
{
"category": "external",
"summary": "SUSE Bug 1255152 for CVE-2025-68287",
"url": "https://bugzilla.suse.com/1255152"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68287"
},
{
"cve": "CVE-2025-68289",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68289"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: gadget: f_eem: Fix memory leak in eem_unwrap\n\nThe existing code did not handle the failure case of usb_ep_queue in the\ncommand path, potentially leading to memory leaks.\n\nImprove error handling to free all allocated resources on usb_ep_queue\nfailure. This patch continues to use goto logic for error handling, as the\nexisting error handling is complex and not easily adaptable to auto-cleanup\nhelpers.\n\nkmemleak results:\n unreferenced object 0xffffff895a512300 (size 240):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n kmem_cache_alloc+0x1b4/0x358\n skb_clone+0x90/0xd8\n eem_unwrap+0x1cc/0x36c\n unreferenced object 0xffffff8a157f4000 (size 256):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n dwc3_gadget_ep_alloc_request+0x58/0x11c\n usb_ep_alloc_request+0x40/0xe4\n eem_unwrap+0x204/0x36c\n unreferenced object 0xffffff8aadbaac00 (size 128):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n __kmalloc+0x64/0x1a8\n eem_unwrap+0x218/0x36c\n unreferenced object 0xffffff89ccef3500 (size 64):\n backtrace:\n slab_post_alloc_hook+0xbc/0x3a4\n __kmem_cache_alloc_node+0x1b4/0x2dc\n kmalloc_trace+0x48/0x140\n eem_unwrap+0x238/0x36c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68289",
"url": "https://www.suse.com/security/cve/CVE-2025-68289"
},
{
"category": "external",
"summary": "SUSE Bug 1255155 for CVE-2025-68289",
"url": "https://bugzilla.suse.com/1255155"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68289"
},
{
"cve": "CVE-2025-68290",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68290"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmost: usb: fix double free on late probe failure\n\nThe MOST subsystem has a non-standard registration function which frees\nthe interface on registration failures and on deregistration.\n\nThis unsurprisingly leads to bugs in the MOST drivers, and a couple of\nrecent changes turned a reference underflow and use-after-free in the\nUSB driver into several double free and a use-after-free on late probe\nfailures.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68290",
"url": "https://www.suse.com/security/cve/CVE-2025-68290"
},
{
"category": "external",
"summary": "SUSE Bug 1255154 for CVE-2025-68290",
"url": "https://bugzilla.suse.com/1255154"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68290"
},
{
"cve": "CVE-2025-68293",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68293"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/huge_memory: fix NULL pointer deference when splitting folio\n\nCommit c010d47f107f (\"mm: thp: split huge page to any lower order pages\")\nintroduced an early check on the folio\u0027s order via mapping-\u003eflags before\nproceeding with the split work.\n\nThis check introduced a bug: for shmem folios in the swap cache and\ntruncated folios, the mapping pointer can be NULL. Accessing\nmapping-\u003eflags in this state leads directly to a NULL pointer dereference.\n\nThis commit fixes the issue by moving the check for mapping != NULL before\nany attempt to access mapping-\u003eflags.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68293",
"url": "https://www.suse.com/security/cve/CVE-2025-68293"
},
{
"category": "external",
"summary": "SUSE Bug 1255150 for CVE-2025-68293",
"url": "https://bugzilla.suse.com/1255150"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68293"
},
{
"cve": "CVE-2025-68298",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68298"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: mediatek: Avoid btusb_mtk_claim_iso_intf() NULL deref\n\nIn btusb_mtk_setup(), we set `btmtk_data-\u003eisopkt_intf` to:\n usb_ifnum_to_if(data-\u003eudev, MTK_ISO_IFNUM)\n\nThat function can return NULL in some cases. Even when it returns\nNULL, though, we still go on to call btusb_mtk_claim_iso_intf().\n\nAs of commit e9087e828827 (\"Bluetooth: btusb: mediatek: Add locks for\nusb_driver_claim_interface()\"), calling btusb_mtk_claim_iso_intf()\nwhen `btmtk_data-\u003eisopkt_intf` is NULL will cause a crash because\nwe\u0027ll end up passing a bad pointer to device_lock(). Prior to that\ncommit we\u0027d pass the NULL pointer directly to\nusb_driver_claim_interface() which would detect it and return an\nerror, which was handled.\n\nResolve the crash in btusb_mtk_claim_iso_intf() by adding a NULL check\nat the start of the function. This makes the code handle a NULL\n`btmtk_data-\u003eisopkt_intf` the same way it did before the problematic\ncommit (just with a slight change to the error message printed).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68298",
"url": "https://www.suse.com/security/cve/CVE-2025-68298"
},
{
"category": "external",
"summary": "SUSE Bug 1255124 for CVE-2025-68298",
"url": "https://bugzilla.suse.com/1255124"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68298"
},
{
"cve": "CVE-2025-68301",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68301"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: atlantic: fix fragment overflow handling in RX path\n\nThe atlantic driver can receive packets with more than MAX_SKB_FRAGS (17)\nfragments when handling large multi-descriptor packets. This causes an\nout-of-bounds write in skb_add_rx_frag_netmem() leading to kernel panic.\n\nThe issue occurs because the driver doesn\u0027t check the total number of\nfragments before calling skb_add_rx_frag(). When a packet requires more\nthan MAX_SKB_FRAGS fragments, the fragment index exceeds the array bounds.\n\nFix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\nthen all fragments are accounted for. And reusing the existing check to\nprevent the overflow earlier in the code path.\n\nThis crash occurred in production with an Aquantia AQC113 10G NIC.\n\nStack trace from production environment:\n```\nRIP: 0010:skb_add_rx_frag_netmem+0x29/0xd0\nCode: 90 f3 0f 1e fa 0f 1f 44 00 00 48 89 f8 41 89\nca 48 89 d7 48 63 ce 8b 90 c0 00 00 00 48 c1 e1 04 48 01 ca 48 03 90\nc8 00 00 00 \u003c48\u003e 89 7a 30 44 89 52 3c 44 89 42 38 40 f6 c7 01 75 74 48\n89 fa 83\nRSP: 0018:ffffa9bec02a8d50 EFLAGS: 00010287\nRAX: ffff925b22e80a00 RBX: ffff925ad38d2700 RCX:\nfffffffe0a0c8000\nRDX: ffff9258ea95bac0 RSI: ffff925ae0a0c800 RDI:\n0000000000037a40\nRBP: 0000000000000024 R08: 0000000000000000 R09:\n0000000000000021\nR10: 0000000000000848 R11: 0000000000000000 R12:\nffffa9bec02a8e24\nR13: ffff925ad8615570 R14: 0000000000000000 R15:\nffff925b22e80a00\nFS: 0000000000000000(0000)\nGS:ffff925e47880000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: ffff9258ea95baf0 CR3: 0000000166022004 CR4:\n0000000000f72ef0\nPKRU: 55555554\nCall Trace:\n\u003cIRQ\u003e\naq_ring_rx_clean+0x175/0xe60 [atlantic]\n? aq_ring_rx_clean+0x14d/0xe60 [atlantic]\n? aq_ring_tx_clean+0xdf/0x190 [atlantic]\n? kmem_cache_free+0x348/0x450\n? aq_vec_poll+0x81/0x1d0 [atlantic]\n? __napi_poll+0x28/0x1c0\n? net_rx_action+0x337/0x420\n```\n\nChanges in v4:\n- Add Fixes: tag to satisfy patch validation requirements.\n\nChanges in v3:\n- Fix by assuming there will be an extra frag if buff-\u003elen \u003e AQ_CFG_RX_HDR_SIZE,\n then all fragments are accounted for.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68301",
"url": "https://www.suse.com/security/cve/CVE-2025-68301"
},
{
"category": "external",
"summary": "SUSE Bug 1255120 for CVE-2025-68301",
"url": "https://bugzilla.suse.com/1255120"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68301"
},
{
"cve": "CVE-2025-68302",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68302"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sxgbe: fix potential NULL dereference in sxgbe_rx()\n\nCurrently, when skb is null, the driver prints an error and then\ndereferences skb on the next line.\n\nTo fix this, let\u0027s add a \u0027break\u0027 after the error message to switch\nto sxgbe_rx_refill(), which is similar to the approach taken by the\nother drivers in this particular case, e.g. calxeda with xgmac_rx().\n\nFound during a code review.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68302",
"url": "https://www.suse.com/security/cve/CVE-2025-68302"
},
{
"category": "external",
"summary": "SUSE Bug 1255121 for CVE-2025-68302",
"url": "https://bugzilla.suse.com/1255121"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68302"
},
{
"cve": "CVE-2025-68303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68303"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: intel: punit_ipc: fix memory corruption\n\nThis passes the address of the pointer \"\u0026punit_ipcdev\" when the intent\nwas to pass the pointer itself \"punit_ipcdev\" (without the ampersand).\nThis means that the:\n\n\tcomplete(\u0026ipcdev-\u003ecmd_complete);\n\nin intel_punit_ioc() will write to a wrong memory address corrupting it.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68303",
"url": "https://www.suse.com/security/cve/CVE-2025-68303"
},
{
"category": "external",
"summary": "SUSE Bug 1255122 for CVE-2025-68303",
"url": "https://bugzilla.suse.com/1255122"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68303"
},
{
"cve": "CVE-2025-68305",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68305"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: hci_sock: Prevent race in socket write iter and sock bind\n\nThere is a potential race condition between sock bind and socket write\niter. bind may free the same cmd via mgmt_pending before write iter sends\nthe cmd, just as syzbot reported in UAF[1].\n\nHere we use hci_dev_lock to synchronize the two, thereby avoiding the\nUAF mentioned in [1].\n\n[1]\nsyzbot reported:\nBUG: KASAN: slab-use-after-free in mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\nRead of size 8 at addr ffff888077164818 by task syz.0.17/5989\nCall Trace:\n mgmt_pending_remove+0x3b/0x210 net/bluetooth/mgmt_util.c:316\n set_link_security+0x5c2/0x710 net/bluetooth/mgmt.c:1918\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nAllocated by task 5989:\n mgmt_pending_add+0x35/0x140 net/bluetooth/mgmt_util.c:296\n set_link_security+0x557/0x710 net/bluetooth/mgmt.c:1910\n hci_mgmt_cmd+0x9c9/0xef0 net/bluetooth/hci_sock.c:1719\n hci_sock_sendmsg+0x6ca/0xef0 net/bluetooth/hci_sock.c:1839\n sock_sendmsg_nosec net/socket.c:727 [inline]\n __sock_sendmsg+0x21c/0x270 net/socket.c:742\n sock_write_iter+0x279/0x360 net/socket.c:1195\n\nFreed by task 5991:\n mgmt_pending_free net/bluetooth/mgmt_util.c:311 [inline]\n mgmt_pending_foreach+0x30d/0x380 net/bluetooth/mgmt_util.c:257\n mgmt_index_removed+0x112/0x2f0 net/bluetooth/mgmt.c:9477\n hci_sock_bind+0xbe9/0x1000 net/bluetooth/hci_sock.c:1314",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68305",
"url": "https://www.suse.com/security/cve/CVE-2025-68305"
},
{
"category": "external",
"summary": "SUSE Bug 1255169 for CVE-2025-68305",
"url": "https://bugzilla.suse.com/1255169"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68305"
},
{
"cve": "CVE-2025-68306",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68306"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: btusb: mediatek: Fix kernel crash when releasing mtk iso interface\n\nWhen performing reset tests and encountering abnormal card drop issues\nthat lead to a kernel crash, it is necessary to perform a null check\nbefore releasing resources to avoid attempting to release a null pointer.\n\n\u003c4\u003e[ 29.158070] Hardware name: Google Quigon sku196612/196613 board (DT)\n\u003c4\u003e[ 29.158076] Workqueue: hci0 hci_cmd_sync_work [bluetooth]\n\u003c4\u003e[ 29.158154] pstate: 20400009 (nzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n\u003c4\u003e[ 29.158162] pc : klist_remove+0x90/0x158\n\u003c4\u003e[ 29.158174] lr : klist_remove+0x88/0x158\n\u003c4\u003e[ 29.158180] sp : ffffffc0846b3c00\n\u003c4\u003e[ 29.158185] pmr_save: 000000e0\n\u003c4\u003e[ 29.158188] x29: ffffffc0846b3c30 x28: ffffff80cd31f880 x27: ffffff80c1bdc058\n\u003c4\u003e[ 29.158199] x26: dead000000000100 x25: ffffffdbdc624ea3 x24: ffffff80c1bdc4c0\n\u003c4\u003e[ 29.158209] x23: ffffffdbdc62a3e6 x22: ffffff80c6c07000 x21: ffffffdbdc829290\n\u003c4\u003e[ 29.158219] x20: 0000000000000000 x19: ffffff80cd3e0648 x18: 000000031ec97781\n\u003c4\u003e[ 29.158229] x17: ffffff80c1bdc4a8 x16: ffffffdc10576548 x15: ffffff80c1180428\n\u003c4\u003e[ 29.158238] x14: 0000000000000000 x13: 000000000000e380 x12: 0000000000000018\n\u003c4\u003e[ 29.158248] x11: ffffff80c2a7fd10 x10: 0000000000000000 x9 : 0000000100000000\n\u003c4\u003e[ 29.158257] x8 : 0000000000000000 x7 : 7f7f7f7f7f7f7f7f x6 : 2d7223ff6364626d\n\u003c4\u003e[ 29.158266] x5 : 0000008000000000 x4 : 0000000000000020 x3 : 2e7325006465636e\n\u003c4\u003e[ 29.158275] x2 : ffffffdc11afeff8 x1 : 0000000000000000 x0 : ffffffdc11be4d0c\n\u003c4\u003e[ 29.158285] Call trace:\n\u003c4\u003e[ 29.158290] klist_remove+0x90/0x158\n\u003c4\u003e[ 29.158298] device_release_driver_internal+0x20c/0x268\n\u003c4\u003e[ 29.158308] device_release_driver+0x1c/0x30\n\u003c4\u003e[ 29.158316] usb_driver_release_interface+0x70/0x88\n\u003c4\u003e[ 29.158325] btusb_mtk_release_iso_intf+0x68/0xd8 [btusb (HASH:e8b6 5)]\n\u003c4\u003e[ 29.158347] btusb_mtk_reset+0x5c/0x480 [btusb (HASH:e8b6 5)]\n\u003c4\u003e[ 29.158361] hci_cmd_sync_work+0x10c/0x188 [bluetooth (HASH:a4fa 6)]\n\u003c4\u003e[ 29.158430] process_scheduled_works+0x258/0x4e8\n\u003c4\u003e[ 29.158441] worker_thread+0x300/0x428\n\u003c4\u003e[ 29.158448] kthread+0x108/0x1d0\n\u003c4\u003e[ 29.158455] ret_from_fork+0x10/0x20\n\u003c0\u003e[ 29.158467] Code: 91343000 940139d1 f9400268 927ff914 (f9401297)\n\u003c4\u003e[ 29.158474] ---[ end trace 0000000000000000 ]---\n\u003c0\u003e[ 29.167129] Kernel panic - not syncing: Oops: Fatal exception\n\u003c2\u003e[ 29.167144] SMP: stopping secondary CPUs\n\u003c4\u003e[ 29.167158] ------------[ cut here ]------------",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68306",
"url": "https://www.suse.com/security/cve/CVE-2025-68306"
},
{
"category": "external",
"summary": "SUSE Bug 1255145 for CVE-2025-68306",
"url": "https://bugzilla.suse.com/1255145"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68306"
},
{
"cve": "CVE-2025-68307",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68307"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_xmit_callback(): fix handling of failed transmitted URBs\n\nThe driver lacks the cleanup of failed transfers of URBs. This reduces the\nnumber of available URBs per error by 1. This leads to reduced performance\nand ultimately to a complete stop of the transmission.\n\nIf the sending of a bulk URB fails do proper cleanup:\n- increase netdev stats\n- mark the echo_sbk as free\n- free the driver\u0027s context and do accounting\n- wake the send queue",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68307",
"url": "https://www.suse.com/security/cve/CVE-2025-68307"
},
{
"category": "external",
"summary": "SUSE Bug 1255146 for CVE-2025-68307",
"url": "https://bugzilla.suse.com/1255146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68307"
},
{
"cve": "CVE-2025-68308",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68308"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: kvaser_usb: leaf: Fix potential infinite loop in command parsers\n\nThe `kvaser_usb_leaf_wait_cmd()` and `kvaser_usb_leaf_read_bulk_callback`\nfunctions contain logic to zero-length commands. These commands are used\nto align data to the USB endpoint\u0027s wMaxPacketSize boundary.\n\nThe driver attempts to skip these placeholders by aligning the buffer\nposition `pos` to the next packet boundary using `round_up()` function.\n\nHowever, if zero-length command is found exactly on a packet boundary\n(i.e., `pos` is a multiple of wMaxPacketSize, including 0), `round_up`\nfunction will return the unchanged value of `pos`. This prevents `pos`\nto be increased, causing an infinite loop in the parsing logic.\n\nThis patch fixes this in the function by using `pos + 1` instead.\nThis ensures that even if `pos` is on a boundary, the calculation is\nbased on `pos + 1`, forcing `round_up()` to always return the next\naligned boundary.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68308",
"url": "https://www.suse.com/security/cve/CVE-2025-68308"
},
{
"category": "external",
"summary": "SUSE Bug 1255149 for CVE-2025-68308",
"url": "https://bugzilla.suse.com/1255149"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68308"
},
{
"cve": "CVE-2025-68311",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68311"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: serial: ip22zilog: Use platform device for probing\n\nAfter commit 84a9582fd203 (\"serial: core: Start managing serial controllers\nto enable runtime PM\") serial drivers need to provide a device in\nstruct uart_port.dev otherwise an oops happens. To fix this issue\nfor ip22zilog driver switch driver to a platform driver and setup\nthe serial device in sgi-ip22 code.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68311",
"url": "https://www.suse.com/security/cve/CVE-2025-68311"
},
{
"category": "external",
"summary": "SUSE Bug 1255161 for CVE-2025-68311",
"url": "https://bugzilla.suse.com/1255161"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68311"
},
{
"cve": "CVE-2025-68312",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68312"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusbnet: Prevents free active kevent\n\nThe root cause of this issue are:\n1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0);\nput the kevent work in global workqueue. However, the kevent has not yet\nbeen scheduled when the usbnet device is unregistered. Therefore, executing\nfree_netdev() results in the \"free active object (kevent)\" error reported\nhere.\n\n2. Another factor is that when calling usbnet_disconnect()-\u003eunregister_netdev(),\nif the usbnet device is up, ndo_stop() is executed to cancel the kevent.\nHowever, because the device is not up, ndo_stop() is not executed.\n\nThe solution to this problem is to cancel the kevent before executing\nfree_netdev().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68312",
"url": "https://www.suse.com/security/cve/CVE-2025-68312"
},
{
"category": "external",
"summary": "SUSE Bug 1255171 for CVE-2025-68312",
"url": "https://bugzilla.suse.com/1255171"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68312"
},
{
"cve": "CVE-2025-68313",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68313"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/CPU/AMD: Add RDSEED fix for Zen5\n\nThere\u0027s an issue with RDSEED\u0027s 16-bit and 32-bit register output\nvariants on Zen5 which return a random value of 0 \"at a rate inconsistent\nwith randomness while incorrectly signaling success (CF=1)\". Search the\nweb for AMD-SB-7055 for more detail.\n\nAdd a fix glue which checks microcode revisions.\n\n [ bp: Add microcode revisions checking, rewrite. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68313",
"url": "https://www.suse.com/security/cve/CVE-2025-68313"
},
{
"category": "external",
"summary": "SUSE Bug 1255415 for CVE-2025-68313",
"url": "https://bugzilla.suse.com/1255415"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68313"
},
{
"cve": "CVE-2025-68317",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68317"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nio_uring/zctx: check chained notif contexts\n\nSend zc only links ubuf_info for requests coming from the same context.\nThere are some ambiguous syz reports, so let\u0027s check the assumption on\nnotification completion.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68317",
"url": "https://www.suse.com/security/cve/CVE-2025-68317"
},
{
"category": "external",
"summary": "SUSE Bug 1255354 for CVE-2025-68317",
"url": "https://bugzilla.suse.com/1255354"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68317"
},
{
"cve": "CVE-2025-68327",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68327"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: renesas_usbhs: Fix synchronous external abort on unbind\n\nA synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is\nexecuted after the configuration sequence described above:\n\nmodprobe usb_f_ecm\nmodprobe libcomposite\nmodprobe configfs\ncd /sys/kernel/config/usb_gadget\nmkdir -p g1\ncd g1\necho \"0x1d6b\" \u003e idVendor\necho \"0x0104\" \u003e idProduct\nmkdir -p strings/0x409\necho \"0123456789\" \u003e strings/0x409/serialnumber\necho \"Renesas.\" \u003e strings/0x409/manufacturer\necho \"Ethernet Gadget\" \u003e strings/0x409/product\nmkdir -p functions/ecm.usb0\nmkdir -p configs/c.1\nmkdir -p configs/c.1/strings/0x409\necho \"ECM\" \u003e configs/c.1/strings/0x409/configuration\n\nif [ ! -L configs/c.1/ecm.usb0 ]; then\n ln -s functions/ecm.usb0 configs/c.1\nfi\n\necho 11e20000.usb \u003e UDC\necho 11e20000.usb \u003e /sys/bus/platform/drivers/renesas_usbhs/unbind\n\nThe displayed trace is as follows:\n\n Internal error: synchronous external abort: 0000000096000010 [#1] SMP\n CPU: 0 UID: 0 PID: 188 Comm: sh Tainted: G M 6.17.0-rc7-next-20250922-00010-g41050493b2bd #55 PREEMPT\n Tainted: [M]=MACHINE_CHECK\n Hardware name: Renesas SMARC EVK version 2 based on r9a08g045s33 (DT)\n pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs]\n lr : usbhsg_update_pullup+0x3c/0x68 [renesas_usbhs]\n sp : ffff8000838b3920\n x29: ffff8000838b3920 x28: ffff00000d585780 x27: 0000000000000000\n x26: 0000000000000000 x25: 0000000000000000 x24: ffff00000c3e3810\n x23: ffff00000d5e5c80 x22: ffff00000d5e5d40 x21: 0000000000000000\n x20: 0000000000000000 x19: ffff00000d5e5c80 x18: 0000000000000020\n x17: 2e30303230316531 x16: 312d7968703a7968 x15: 3d454d414e5f4344\n x14: 000000000000002c x13: 0000000000000000 x12: 0000000000000000\n x11: ffff00000f358f38 x10: ffff00000f358db0 x9 : ffff00000b41f418\n x8 : 0101010101010101 x7 : 7f7f7f7f7f7f7f7f x6 : fefefeff6364626d\n x5 : 8080808000000000 x4 : 000000004b5ccb9d x3 : 0000000000000000\n x2 : 0000000000000000 x1 : ffff800083790000 x0 : ffff00000d5e5c80\n Call trace:\n usbhs_sys_function_pullup+0x10/0x40 [renesas_usbhs] (P)\n usbhsg_pullup+0x4c/0x7c [renesas_usbhs]\n usb_gadget_disconnect_locked+0x48/0xd4\n gadget_unbind_driver+0x44/0x114\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_release_driver+0x18/0x24\n bus_remove_device+0xcc/0x10c\n device_del+0x14c/0x404\n usb_del_gadget+0x88/0xc0\n usb_del_gadget_udc+0x18/0x30\n usbhs_mod_gadget_remove+0x24/0x44 [renesas_usbhs]\n usbhs_mod_remove+0x20/0x30 [renesas_usbhs]\n usbhs_remove+0x98/0xdc [renesas_usbhs]\n platform_remove+0x20/0x30\n device_remove+0x4c/0x80\n device_release_driver_internal+0x1c8/0x224\n device_driver_detach+0x18/0x24\n unbind_store+0xb4/0xb8\n drv_attr_store+0x24/0x38\n sysfs_kf_write+0x7c/0x94\n kernfs_fop_write_iter+0x128/0x1b8\n vfs_write+0x2ac/0x350\n ksys_write+0x68/0xfc\n __arm64_sys_write+0x1c/0x28\n invoke_syscall+0x48/0x110\n el0_svc_common.constprop.0+0xc0/0xe0\n do_el0_svc+0x1c/0x28\n el0_svc+0x34/0xf0\n el0t_64_sync_handler+0xa0/0xe4\n el0t_64_sync+0x198/0x19c\n Code: 7100003f 1a9f07e1 531c6c22 f9400001 (79400021)\n ---[ end trace 0000000000000000 ]---\n note: sh[188] exited with irqs disabled\n note: sh[188] exited with preempt_count 1\n\nThe issue occurs because usbhs_sys_function_pullup(), which accesses the IP\nregisters, is executed after the USBHS clocks have been disabled. The\nproblem is reproducible on the Renesas RZ/G3S SoC starting with the\naddition of module stop in the clock enable/disable APIs. With module stop\nfunctionality enabled, a bus error is expected if a master accesses a\nmodule whose clock has been stopped and module stop activated.\n\nDisable the IP clocks at the end of remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68327",
"url": "https://www.suse.com/security/cve/CVE-2025-68327"
},
{
"category": "external",
"summary": "SUSE Bug 1255488 for CVE-2025-68327",
"url": "https://bugzilla.suse.com/1255488"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68327"
},
{
"cve": "CVE-2025-68328",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68328"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: stratix10-svc: fix bug in saving controller data\n\nFix the incorrect usage of platform_set_drvdata and dev_set_drvdata. They\nboth are of the same data and overrides each other. This resulted in the\nrmmod of the svc driver to fail and throw a kernel panic for kthread_stop\nand fifo free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68328",
"url": "https://www.suse.com/security/cve/CVE-2025-68328"
},
{
"category": "external",
"summary": "SUSE Bug 1255489 for CVE-2025-68328",
"url": "https://bugzilla.suse.com/1255489"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68328"
},
{
"cve": "CVE-2025-68330",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68330"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: accel: bmc150: Fix irq assumption regression\n\nThe code in bmc150-accel-core.c unconditionally calls\nbmc150_accel_set_interrupt() in the iio_buffer_setup_ops,\nsuch as on the runtime PM resume path giving a kernel\nsplat like this if the device has no interrupts:\n\nUnable to handle kernel NULL pointer dereference at virtual\n address 00000001 when read\n\nPC is at bmc150_accel_set_interrupt+0x98/0x194\nLR is at __pm_runtime_resume+0x5c/0x64\n(...)\nCall trace:\nbmc150_accel_set_interrupt from bmc150_accel_buffer_postenable+0x40/0x108\nbmc150_accel_buffer_postenable from __iio_update_buffers+0xbe0/0xcbc\n__iio_update_buffers from enable_store+0x84/0xc8\nenable_store from kernfs_fop_write_iter+0x154/0x1b4\n\nThis bug seems to have been in the driver since the beginning,\nbut it only manifests recently, I do not know why.\n\nStore the IRQ number in the state struct, as this is a common\npattern in other drivers, then use this to determine if we have\nIRQ support or not.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68330",
"url": "https://www.suse.com/security/cve/CVE-2025-68330"
},
{
"category": "external",
"summary": "SUSE Bug 1255493 for CVE-2025-68330",
"url": "https://bugzilla.suse.com/1255493"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68330"
},
{
"cve": "CVE-2025-68331",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68331"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer\n\nWhen a UAS device is unplugged during data transfer, there is\na probability of a system panic occurring. The root cause is\nan access to an invalid memory address during URB callback handling.\nSpecifically, this happens when the dma_direct_unmap_sg() function\nis called within the usb_hcd_unmap_urb_for_dma() interface, but the\nsg-\u003edma_address field is 0 and the sg data structure has already been\nfreed.\n\nThe SCSI driver sends transfer commands by invoking uas_queuecommand_lck()\nin uas.c, using the uas_submit_urbs() function to submit requests to USB.\nWithin the uas_submit_urbs() implementation, three URBs (sense_urb,\ndata_urb, and cmd_urb) are sequentially submitted. Device removal may\noccur at any point during uas_submit_urbs execution, which may result\nin URB submission failure. However, some URBs might have been successfully\nsubmitted before the failure, and uas_submit_urbs will return the -ENODEV\nerror code in this case. The current error handling directly calls\nscsi_done(). In the SCSI driver, this eventually triggers scsi_complete()\nto invoke scsi_end_request() for releasing the sgtable. The successfully\nsubmitted URBs, when being unlinked to giveback, call\nusb_hcd_unmap_urb_for_dma() in hcd.c, leading to exceptions during sg\nunmapping operations since the sg data structure has already been freed.\n\nThis patch modifies the error condition check in the uas_submit_urbs()\nfunction. When a UAS device is removed but one or more URBs have already\nbeen successfully submitted to USB, it avoids immediately invoking\nscsi_done() and save the cmnd to devinfo-\u003ecmnd array. If the successfully\nsubmitted URBs is completed before devinfo-\u003eresetting being set, then\nthe scsi_done() function will be called within uas_try_complete() after\nall pending URB operations are finalized. Otherwise, the scsi_done()\nfunction will be called within uas_zap_pending(), which is executed after\nusb_kill_anchored_urbs().\n\nThe error handling only takes effect when uas_queuecommand_lck() calls\nuas_submit_urbs() and returns the error value -ENODEV . In this case,\nthe device is disconnected, and the flow proceeds to uas_disconnect(),\nwhere uas_zap_pending() is invoked to call uas_try_complete().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68331",
"url": "https://www.suse.com/security/cve/CVE-2025-68331"
},
{
"category": "external",
"summary": "SUSE Bug 1255495 for CVE-2025-68331",
"url": "https://bugzilla.suse.com/1255495"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68331"
},
{
"cve": "CVE-2025-68332",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68332"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: c6xdigio: Fix invalid PNP driver unregistration\n\nThe Comedi low-level driver \"c6xdigio\" seems to be for a parallel port\nconnected device. When the Comedi core calls the driver\u0027s Comedi\n\"attach\" handler `c6xdigio_attach()` to configure a Comedi to use this\ndriver, it tries to enable the parallel port PNP resources by\nregistering a PNP driver with `pnp_register_driver()`, but ignores the\nreturn value. (The `struct pnp_driver` it uses has only the `name` and\n`id_table` members filled in.) The driver\u0027s Comedi \"detach\" handler\n`c6xdigio_detach()` unconditionally unregisters the PNP driver with\n`pnp_unregister_driver()`.\n\nIt is possible for `c6xdigio_attach()` to return an error before it\ncalls `pnp_register_driver()` and it is possible for the call to\n`pnp_register_driver()` to return an error (that is ignored). In both\ncases, the driver should not be calling `pnp_unregister_driver()` as it\ndoes in `c6xdigio_detach()`. (Note that `c6xdigio_detach()` will be\ncalled by the Comedi core if `c6xdigio_attach()` returns an error, or if\nthe Comedi core decides to detach the Comedi device from the driver for\nsome other reason.)\n\nThe unconditional call to `pnp_unregister_driver()` without a previous\nsuccessful call to `pnp_register_driver()` will cause\n`driver_unregister()` to issue a warning \"Unexpected driver\nunregister!\". This was detected by Syzbot [1].\n\nAlso, the PNP driver registration and unregistration should be done at\nmodule init and exit time, respectively, not when attaching or detaching\nComedi devices to the driver. (There might be more than one Comedi\ndevice being attached to the driver, although that is unlikely.)\n\nChange the driver to do the PNP driver registration at module init time,\nand the unregistration at module exit time. Since `c6xdigio_detach()`\nnow only calls `comedi_legacy_detach()`, remove the function and change\nthe Comedi driver \"detach\" handler to `comedi_legacy_detach`.\n\n-------------------------------------------\n[1] Syzbot sample crash report:\nUnexpected driver unregister!\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister drivers/base/driver.c:273 [inline]\nWARNING: CPU: 0 PID: 5970 at drivers/base/driver.c:273 driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nModules linked in:\nCPU: 0 UID: 0 PID: 5970 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025\nRIP: 0010:driver_unregister drivers/base/driver.c:273 [inline]\nRIP: 0010:driver_unregister+0x90/0xb0 drivers/base/driver.c:270\nCode: 48 89 ef e8 c2 e6 82 fc 48 89 df e8 3a 93 ff ff 5b 5d e9 c3 6d d9 fb e8 be 6d d9 fb 90 48 c7 c7 e0 f8 1f 8c e8 51 a2 97 fb 90 \u003c0f\u003e 0b 90 90 5b 5d e9 a5 6d d9 fb e8 e0 f4 41 fc eb 94 e8 d9 f4 41\nRSP: 0018:ffffc9000373f9a0 EFLAGS: 00010282\nRAX: 0000000000000000 RBX: ffffffff8ff24720 RCX: ffffffff817b6ee8\nRDX: ffff88807c932480 RSI: ffffffff817b6ef5 RDI: 0000000000000001\nRBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000001 R11: 0000000000000001 R12: ffffffff8ff24660\nR13: dffffc0000000000 R14: 0000000000000000 R15: ffff88814cca0000\nFS: 000055556dab1500(0000) GS:ffff8881249d9000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055f77f285cd0 CR3: 000000007d871000 CR4: 00000000003526f0\nCall Trace:\n \u003cTASK\u003e\n comedi_device_detach_locked+0x12f/0xa50 drivers/comedi/drivers.c:207\n comedi_device_detach+0x67/0xb0 drivers/comedi/drivers.c:215\n comedi_device_attach+0x43d/0x900 drivers/comedi/drivers.c:1011\n do_devconfig_ioctl+0x1b1/0x710 drivers/comedi/comedi_fops.c:872\n comedi_unlocked_ioctl+0x165d/0x2f00 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n __se_sys_ioctl fs/ioctl.c:583 [inline]\n __x64_sys_ioctl+0x18e/0x210 fs/ioctl.c:583\n do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]\n do_sys\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68332",
"url": "https://www.suse.com/security/cve/CVE-2025-68332"
},
{
"category": "external",
"summary": "SUSE Bug 1255483 for CVE-2025-68332",
"url": "https://bugzilla.suse.com/1255483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68332"
},
{
"cve": "CVE-2025-68335",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68335"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncomedi: pcl818: fix null-ptr-deref in pcl818_ai_cancel()\n\nSyzbot identified an issue [1] in pcl818_ai_cancel(), which stems from\nthe fact that in case of early device detach via pcl818_detach(),\nsubdevice dev-\u003eread_subdev may not have initialized its pointer to\n\u0026struct comedi_async as intended. Thus, any such dereferencing of\n\u0026s-\u003easync-\u003ecmd will lead to general protection fault and kernel crash.\n\nMitigate this problem by removing a call to pcl818_ai_cancel() from\npcl818_detach() altogether. This way, if the subdevice setups its\nsupport for async commands, everything async-related will be\nhandled via subdevice\u0027s own -\u003ecancel() function in\ncomedi_device_detach_locked() even before pcl818_detach(). If no\nsupport for asynchronous commands is provided, there is no need\nto cancel anything either.\n\n[1] Syzbot crash:\nOops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN PTI\nKASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]\nCPU: 1 UID: 0 PID: 6050 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025\nRIP: 0010:pcl818_ai_cancel+0x69/0x3f0 drivers/comedi/drivers/pcl818.c:762\n...\nCall Trace:\n \u003cTASK\u003e\n pcl818_detach+0x66/0xd0 drivers/comedi/drivers/pcl818.c:1115\n comedi_device_detach_locked+0x178/0x750 drivers/comedi/drivers.c:207\n do_devconfig_ioctl drivers/comedi/comedi_fops.c:848 [inline]\n comedi_unlocked_ioctl+0xcde/0x1020 drivers/comedi/comedi_fops.c:2178\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:597 [inline]\n...",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68335",
"url": "https://www.suse.com/security/cve/CVE-2025-68335"
},
{
"category": "external",
"summary": "SUSE Bug 1255480 for CVE-2025-68335",
"url": "https://bugzilla.suse.com/1255480"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68335"
},
{
"cve": "CVE-2025-68339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68339"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\natm/fore200e: Fix possible data race in fore200e_open()\n\nProtect access to fore200e-\u003eavailable_cell_rate with rate_mtx lock in the\nerror handling path of fore200e_open() to prevent a data race.\n\nThe field fore200e-\u003eavailable_cell_rate is a shared resource used to track\navailable bandwidth. It is concurrently accessed by fore200e_open(),\nfore200e_close(), and fore200e_change_qos().\n\nIn fore200e_open(), the lock rate_mtx is correctly held when subtracting\nvcc-\u003eqos.txtp.max_pcr from available_cell_rate to reserve bandwidth.\nHowever, if the subsequent call to fore200e_activate_vcin() fails, the\nfunction restores the reserved bandwidth by adding back to\navailable_cell_rate without holding the lock.\n\nThis introduces a race condition because available_cell_rate is a global\ndevice resource shared across all VCCs. If the error path in\nfore200e_open() executes concurrently with operations like\nfore200e_close() or fore200e_change_qos() on other VCCs, a\nread-modify-write race occurs.\n\nSpecifically, the error path reads the rate without the lock. If another\nCPU acquires the lock and modifies the rate (e.g., releasing bandwidth in\nfore200e_close()) between this read and the subsequent write, the error\npath will overwrite the concurrent update with a stale value. This results\nin incorrect bandwidth accounting.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68339",
"url": "https://www.suse.com/security/cve/CVE-2025-68339"
},
{
"category": "external",
"summary": "SUSE Bug 1255505 for CVE-2025-68339",
"url": "https://bugzilla.suse.com/1255505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68339"
},
{
"cve": "CVE-2025-68340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68340"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nteam: Move team device type change at the end of team_port_add\n\nAttempting to add a port device that is already up will expectedly fail,\nbut not before modifying the team device header_ops.\n\nIn the case of the syzbot reproducer the gre0 device is\nalready in state UP when it attempts to add it as a\nport device of team0, this fails but before that\nheader_ops-\u003ecreate of team0 is changed from eth_header to ipgre_header\nin the call to team_dev_type_check_change.\n\nLater when we end up in ipgre_header() struct ip_tunnel* points to nonsense\nas the private data of the device still holds a struct team.\n\nExample sequence of iproute2 commands to reproduce the hang/BUG():\nip link add dev team0 type team\nip link add dev gre0 type gre\nip link set dev gre0 up\nip link set dev gre0 master team0\nip link set dev team0 up\nping -I team0 1.1.1.1\n\nMove team_dev_type_check_change down where all other checks have passed\nas it changes the dev type with no way to restore it in case\none of the checks that follow it fail.\n\nAlso make sure to preserve the origial mtu assignment:\n - If port_dev is not the same type as dev, dev takes mtu from port_dev\n - If port_dev is the same type as dev, port_dev takes mtu from dev\n\nThis is done by adding a conditional before the call to dev_set_mtu\nto prevent it from assigning port_dev-\u003emtu = dev-\u003emtu and instead\nletting team_dev_type_check_change assign dev-\u003emtu = port_dev-\u003emtu.\nThe conditional is needed because the patch moves the call to\nteam_dev_type_check_change past dev_set_mtu.\n\nTesting:\n - team device driver in-tree selftests\n - Add/remove various devices as slaves of team device\n - syzbot",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68340",
"url": "https://www.suse.com/security/cve/CVE-2025-68340"
},
{
"category": "external",
"summary": "SUSE Bug 1255507 for CVE-2025-68340",
"url": "https://bugzilla.suse.com/1255507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68340"
},
{
"cve": "CVE-2025-68342",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68342"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data\n\nThe URB received in gs_usb_receive_bulk_callback() contains a struct\ngs_host_frame. The length of the data after the header depends on the\ngs_host_frame hf::flags and the active device features (e.g. time\nstamping).\n\nIntroduce a new function gs_usb_get_minimum_length() and check that we have\nat least received the required amount of data before accessing it. Only\ncopy the data to that skb that has actually been received.\n\n[mkl: rename gs_usb_get_minimum_length() -\u003e +gs_usb_get_minimum_rx_length()]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68342",
"url": "https://www.suse.com/security/cve/CVE-2025-68342"
},
{
"category": "external",
"summary": "SUSE Bug 1255508 for CVE-2025-68342",
"url": "https://bugzilla.suse.com/1255508"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68342"
},
{
"cve": "CVE-2025-68343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68343"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncan: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header\n\nThe driver expects to receive a struct gs_host_frame in\ngs_usb_receive_bulk_callback().\n\nUse struct_group to describe the header of the struct gs_host_frame and\ncheck that we have at least received the header before accessing any\nmembers of it.\n\nTo resubmit the URB, do not dereference the pointer chain\n\"dev-\u003eparent-\u003ehf_size_rx\" but use \"parent-\u003ehf_size_rx\" instead. Since\n\"urb-\u003econtext\" contains \"parent\", it is always defined, while \"dev\" is not\ndefined if the URB it too short.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68343",
"url": "https://www.suse.com/security/cve/CVE-2025-68343"
},
{
"category": "external",
"summary": "SUSE Bug 1255509 for CVE-2025-68343",
"url": "https://bugzilla.suse.com/1255509"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68343"
},
{
"cve": "CVE-2025-68344",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68344"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: wavefront: Fix integer overflow in sample size validation\n\nThe wavefront_send_sample() function has an integer overflow issue\nwhen validating sample size. The header-\u003esize field is u32 but gets\ncast to int for comparison with dev-\u003efreemem\n\nFix by using unsigned comparison to avoid integer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68344",
"url": "https://www.suse.com/security/cve/CVE-2025-68344"
},
{
"category": "external",
"summary": "SUSE Bug 1255816 for CVE-2025-68344",
"url": "https://bugzilla.suse.com/1255816"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68344"
},
{
"cve": "CVE-2025-68345",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68345"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi()\n\nThe acpi_get_first_physical_node() function can return NULL, in which\ncase the get_device() function also returns NULL, but this value is\nthen dereferenced without checking,so add a check to prevent a crash.\n\nFound by Linux Verification Center (linuxtesting.org) with SVACE.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68345",
"url": "https://www.suse.com/security/cve/CVE-2025-68345"
},
{
"category": "external",
"summary": "SUSE Bug 1255601 for CVE-2025-68345",
"url": "https://bugzilla.suse.com/1255601"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68345"
},
{
"cve": "CVE-2025-68346",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68346"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: dice: fix buffer overflow in detect_stream_formats()\n\nThe function detect_stream_formats() reads the stream_count value directly\nfrom a FireWire device without validating it. This can lead to\nout-of-bounds writes when a malicious device provides a stream_count value\ngreater than MAX_STREAMS.\n\nFix by applying the same validation to both TX and RX stream counts in\ndetect_stream_formats().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68346",
"url": "https://www.suse.com/security/cve/CVE-2025-68346"
},
{
"category": "external",
"summary": "SUSE Bug 1255603 for CVE-2025-68346",
"url": "https://bugzilla.suse.com/1255603"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68346"
},
{
"cve": "CVE-2025-68347",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68347"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events\n\nThe DSP event handling code in hwdep_read() could write more bytes to\nthe user buffer than requested, when a user provides a buffer smaller\nthan the event header size (8 bytes).\n\nFix by using min_t() to clamp the copy size, This ensures we never copy\nmore than the user requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68347",
"url": "https://www.suse.com/security/cve/CVE-2025-68347"
},
{
"category": "external",
"summary": "SUSE Bug 1255706 for CVE-2025-68347",
"url": "https://bugzilla.suse.com/1255706"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68347"
},
{
"cve": "CVE-2025-68351",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68351"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nexfat: fix refcount leak in exfat_find\n\nFix refcount leaks in `exfat_find` related to `exfat_get_dentry_set`.\n\nFunction `exfat_get_dentry_set` would increase the reference counter of\n`es-\u003ebh` on success. Therefore, `exfat_put_dentry_set` must be called\nafter `exfat_get_dentry_set` to ensure refcount consistency. This patch\nrelocate two checks to avoid possible leaks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68351",
"url": "https://www.suse.com/security/cve/CVE-2025-68351"
},
{
"category": "external",
"summary": "SUSE Bug 1255567 for CVE-2025-68351",
"url": "https://bugzilla.suse.com/1255567"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68351"
},
{
"cve": "CVE-2025-68352",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68352"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: ch341: fix out-of-bounds memory access in ch341_transfer_one\n\nDiscovered by Atuin - Automated Vulnerability Discovery Engine.\n\nThe \u0027len\u0027 variable is calculated as \u0027min(32, trans-\u003elen + 1)\u0027,\nwhich includes the 1-byte command header.\n\nWhen copying data from \u0027trans-\u003etx_buf\u0027 to \u0027ch341-\u003etx_buf + 1\u0027, using \u0027len\u0027\nas the length is incorrect because:\n\n1. It causes an out-of-bounds read from \u0027trans-\u003etx_buf\u0027 (which has size\n \u0027trans-\u003elen\u0027, i.e., \u0027len - 1\u0027 in this context).\n2. It can cause an out-of-bounds write to \u0027ch341-\u003etx_buf\u0027 if \u0027len\u0027 is\n CH341_PACKET_LENGTH (32). Writing 32 bytes to ch341-\u003etx_buf + 1\n overflows the buffer.\n\nFix this by copying \u0027len - 1\u0027 bytes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68352",
"url": "https://www.suse.com/security/cve/CVE-2025-68352"
},
{
"category": "external",
"summary": "SUSE Bug 1255541 for CVE-2025-68352",
"url": "https://bugzilla.suse.com/1255541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68352"
},
{
"cve": "CVE-2025-68353",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68353"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: vxlan: prevent NULL deref in vxlan_xmit_one\n\nNeither sock4 nor sock6 pointers are guaranteed to be non-NULL in\nvxlan_xmit_one, e.g. if the iface is brought down. This can lead to the\nfollowing NULL dereference:\n\n BUG: kernel NULL pointer dereference, address: 0000000000000010\n Oops: Oops: 0000 [#1] SMP NOPTI\n RIP: 0010:vxlan_xmit_one+0xbb3/0x1580\n Call Trace:\n vxlan_xmit+0x429/0x610\n dev_hard_start_xmit+0x55/0xa0\n __dev_queue_xmit+0x6d0/0x7f0\n ip_finish_output2+0x24b/0x590\n ip_output+0x63/0x110\n\nMentioned commits changed the code path in vxlan_xmit_one and as a side\neffect the sock4/6 pointer validity checks in vxlan(6)_get_route were\nlost. Fix this by adding back checks.\n\nSince both commits being fixed were released in the same version (v6.7)\nand are strongly related, bundle the fixes in a single commit.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68353",
"url": "https://www.suse.com/security/cve/CVE-2025-68353"
},
{
"category": "external",
"summary": "SUSE Bug 1255533 for CVE-2025-68353",
"url": "https://bugzilla.suse.com/1255533"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68353"
},
{
"cve": "CVE-2025-68354",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68354"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nregulator: core: Protect regulator_supply_alias_list with regulator_list_mutex\n\nregulator_supply_alias_list was accessed without any locking in\nregulator_supply_alias(), regulator_register_supply_alias(), and\nregulator_unregister_supply_alias(). Concurrent registration,\nunregistration and lookups can race, leading to:\n\n1 use-after-free if an alias entry is removed while being read,\n2 duplicate entries when two threads register the same alias,\n3 inconsistent alias mappings observed by consumers.\n\nProtect all traversals, insertions and deletions on\nregulator_supply_alias_list with the existing regulator_list_mutex.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68354",
"url": "https://www.suse.com/security/cve/CVE-2025-68354"
},
{
"category": "external",
"summary": "SUSE Bug 1255553 for CVE-2025-68354",
"url": "https://bugzilla.suse.com/1255553"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68354"
},
{
"cve": "CVE-2025-68362",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68362"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb()\n\nThe rtl8187_rx_cb() calculates the rx descriptor header address\nby subtracting its size from the skb tail pointer.\nHowever, it does not validate if the received packet\n(skb-\u003elen from urb-\u003eactual_length) is large enough to contain this\nheader.\n\nIf a truncated packet is received, this will lead to a buffer\nunderflow, reading memory before the start of the skb data area,\nand causing a kernel panic.\n\nAdd length checks for both rtl8187 and rtl8187b descriptor headers\nbefore attempting to access them, dropping the packet cleanly if the\ncheck fails.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68362",
"url": "https://www.suse.com/security/cve/CVE-2025-68362"
},
{
"category": "external",
"summary": "SUSE Bug 1255611 for CVE-2025-68362",
"url": "https://bugzilla.suse.com/1255611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68362"
},
{
"cve": "CVE-2025-68363",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68363"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Check skb-\u003etransport_header is set in bpf_skb_check_mtu\n\nThe bpf_skb_check_mtu helper needs to use skb-\u003etransport_header when\nthe BPF_MTU_CHK_SEGS flag is used:\n\n\tbpf_skb_check_mtu(skb, ifindex, \u0026mtu_len, 0, BPF_MTU_CHK_SEGS)\n\nThe transport_header is not always set. There is a WARN_ON_ONCE\nreport when CONFIG_DEBUG_NET is enabled + skb-\u003egso_size is set +\nbpf_prog_test_run is used:\n\nWARNING: CPU: 1 PID: 2216 at ./include/linux/skbuff.h:3071\n skb_gso_validate_network_len\n bpf_skb_check_mtu\n bpf_prog_3920e25740a41171_tc_chk_segs_flag # A test in the next patch\n bpf_test_run\n bpf_prog_test_run_skb\n\nFor a normal ingress skb (not test_run), skb_reset_transport_header\nis performed but there is plan to avoid setting it as described in\ncommit 2170a1f09148 (\"net: no longer reset transport_header in __netif_receive_skb_core()\").\n\nThis patch fixes the bpf helper by checking\nskb_transport_header_was_set(). The check is done just before\nskb-\u003etransport_header is used, to avoid breaking the existing bpf prog.\nThe WARN_ON_ONCE is limited to bpf_prog_test_run, so targeting bpf-next.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68363",
"url": "https://www.suse.com/security/cve/CVE-2025-68363"
},
{
"category": "external",
"summary": "SUSE Bug 1255552 for CVE-2025-68363",
"url": "https://bugzilla.suse.com/1255552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68363"
},
{
"cve": "CVE-2025-68378",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68378"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix stackmap overflow check in __bpf_get_stackid()\n\nSyzkaller reported a KASAN slab-out-of-bounds write in __bpf_get_stackid()\nwhen copying stack trace data. The issue occurs when the perf trace\n contains more stack entries than the stack map bucket can hold,\n leading to an out-of-bounds write in the bucket\u0027s data array.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68378",
"url": "https://www.suse.com/security/cve/CVE-2025-68378"
},
{
"category": "external",
"summary": "SUSE Bug 1255614 for CVE-2025-68378",
"url": "https://bugzilla.suse.com/1255614"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68378"
},
{
"cve": "CVE-2025-68380",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68380"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath11k: fix peer HE MCS assignment\n\nIn ath11k_wmi_send_peer_assoc_cmd(), peer\u0027s transmit MCS is sent to\nfirmware as receive MCS while peer\u0027s receive MCS sent as transmit MCS,\nwhich goes against firmwire\u0027s definition.\n\nWhile connecting to a misbehaved AP that advertises 0xffff (meaning not\nsupported) for 160 MHz transmit MCS map, firmware crashes due to 0xffff\nis assigned to he_mcs-\u003erx_mcs_set field.\n\n\tExt Tag: HE Capabilities\n\t [...]\n\t Supported HE-MCS and NSS Set\n\t\t[...]\n\t Rx and Tx MCS Maps 160 MHz\n\t\t [...]\n\t Tx HE-MCS Map 160 MHz: 0xffff\n\nSwap the assignment to fix this issue.\n\nAs the HE rate control mask is meant to limit our own transmit MCS, it\nneeds to go via he_mcs-\u003erx_mcs_set field. With the aforementioned swapping\ndone, change is needed as well to apply it to the peer\u0027s receive MCS.\n\nTested-on: WCN6855 hw2.1 PCI WLAN.HSP.1.1-03125-QCAHSPSWPL_V1_V2_SILICONZ_LITE-3.6510.41\nTested-on: QCN9274 hw2.0 PCI WLAN.WBE.1.4.1-00199-QCAHKSWPL_SILICONZ-1",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68380",
"url": "https://www.suse.com/security/cve/CVE-2025-68380"
},
{
"category": "external",
"summary": "SUSE Bug 1255580 for CVE-2025-68380",
"url": "https://bugzilla.suse.com/1255580"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68380"
},
{
"cve": "CVE-2025-68724",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68724"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id\n\nUse check_add_overflow() to guard against potential integer overflows\nwhen adding the binary blob lengths and the size of an asymmetric_key_id\nstructure and return ERR_PTR(-EOVERFLOW) accordingly. This prevents a\npossible buffer overflow when copying data from potentially malicious\nX.509 certificate fields that can be arbitrarily large, such as ASN.1\nINTEGER serial numbers, issuer names, etc.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68724",
"url": "https://www.suse.com/security/cve/CVE-2025-68724"
},
{
"category": "external",
"summary": "SUSE Bug 1255550 for CVE-2025-68724",
"url": "https://bugzilla.suse.com/1255550"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68724"
},
{
"cve": "CVE-2025-68732",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68732"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpu: host1x: Fix race in syncpt alloc/free\n\nFix race condition between host1x_syncpt_alloc()\nand host1x_syncpt_put() by using kref_put_mutex()\ninstead of kref_put() + manual mutex locking.\n\nThis ensures no thread can acquire the\nsyncpt_mutex after the refcount drops to zero\nbut before syncpt_release acquires it.\nThis prevents races where syncpoints could\nbe allocated while still being cleaned up\nfrom a previous release.\n\nRemove explicit mutex locking in syncpt_release\nas kref_put_mutex() handles this atomically.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68732",
"url": "https://www.suse.com/security/cve/CVE-2025-68732"
},
{
"category": "external",
"summary": "SUSE Bug 1255688 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255688"
},
{
"category": "external",
"summary": "SUSE Bug 1255689 for CVE-2025-68732",
"url": "https://bugzilla.suse.com/1255689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-68732"
},
{
"cve": "CVE-2025-68736",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68736"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nlandlock: Fix handling of disconnected directories\n\nDisconnected files or directories can appear when they are visible and\nopened from a bind mount, but have been renamed or moved from the source\nof the bind mount in a way that makes them inaccessible from the mount\npoint (i.e. out of scope).\n\nPreviously, access rights tied to files or directories opened through a\ndisconnected directory were collected by walking the related hierarchy\ndown to the root of the filesystem, without taking into account the\nmount point because it couldn\u0027t be found. This could lead to\ninconsistent access results, potential access right widening, and\nhard-to-debug renames, especially since such paths cannot be printed.\n\nFor a sandboxed task to create a disconnected directory, it needs to\nhave write access (i.e. FS_MAKE_REG, FS_REMOVE_FILE, and FS_REFER) to\nthe underlying source of the bind mount, and read access to the related\nmount point. Because a sandboxed task cannot acquire more access\nrights than those defined by its Landlock domain, this could lead to\ninconsistent access rights due to missing permissions that should be\ninherited from the mount point hierarchy, while inheriting permissions\nfrom the filesystem hierarchy hidden by this mount point instead.\n\nLandlock now handles files and directories opened from disconnected\ndirectories by taking into account the filesystem hierarchy when the\nmount point is not found in the hierarchy walk, and also always taking\ninto account the mount point from which these disconnected directories\nwere opened. This ensures that a rename is not allowed if it would\nwiden access rights [1].\n\nThe rationale is that, even if disconnected hierarchies might not be\nvisible or accessible to a sandboxed task, relying on the collected\naccess rights from them improves the guarantee that access rights will\nnot be widened during a rename because of the access right comparison\nbetween the source and the destination (see LANDLOCK_ACCESS_FS_REFER).\nIt may look like this would grant more access on disconnected files and\ndirectories, but the security policies are always enforced for all the\nevaluated hierarchies. This new behavior should be less surprising to\nusers and safer from an access control perspective.\n\nRemove a wrong WARN_ON_ONCE() canary in collect_domain_accesses() and\nfix the related comment.\n\nBecause opened files have their access rights stored in the related file\nsecurity properties, there is no impact for disconnected or unlinked\nfiles.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68736",
"url": "https://www.suse.com/security/cve/CVE-2025-68736"
},
{
"category": "external",
"summary": "SUSE Bug 1255698 for CVE-2025-68736",
"url": "https://bugzilla.suse.com/1255698"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68736"
},
{
"cve": "CVE-2025-68740",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68740"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nima: Handle error code returned by ima_filter_rule_match()\n\nIn ima_match_rules(), if ima_filter_rule_match() returns -ENOENT due to\nthe rule being NULL, the function incorrectly skips the \u0027if (!rc)\u0027 check\nand sets \u0027result = true\u0027. The LSM rule is considered a match, causing\nextra files to be measured by IMA.\n\nThis issue can be reproduced in the following scenario:\nAfter unloading the SELinux policy module via \u0027semodule -d\u0027, if an IMA\nmeasurement is triggered before ima_lsm_rules is updated,\nin ima_match_rules(), the first call to ima_filter_rule_match() returns\n-ESTALE. This causes the code to enter the \u0027if (rc == -ESTALE \u0026\u0026\n!rule_reinitialized)\u0027 block, perform ima_lsm_copy_rule() and retry. In\nima_lsm_copy_rule(), since the SELinux module has been removed, the rule\nbecomes NULL, and the second call to ima_filter_rule_match() returns\n-ENOENT. This bypasses the \u0027if (!rc)\u0027 check and results in a false match.\n\nCall trace:\n selinux_audit_rule_match+0x310/0x3b8\n security_audit_rule_match+0x60/0xa0\n ima_match_rules+0x2e4/0x4a0\n ima_match_policy+0x9c/0x1e8\n ima_get_action+0x48/0x60\n process_measurement+0xf8/0xa98\n ima_bprm_check+0x98/0xd8\n security_bprm_check+0x5c/0x78\n search_binary_handler+0x6c/0x318\n exec_binprm+0x58/0x1b8\n bprm_execve+0xb8/0x130\n do_execveat_common.isra.0+0x1a8/0x258\n __arm64_sys_execve+0x48/0x68\n invoke_syscall+0x50/0x128\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x44/0x200\n el0t_64_sync_handler+0x100/0x130\n el0t_64_sync+0x3c8/0x3d0\n\nFix this by changing \u0027if (!rc)\u0027 to \u0027if (rc \u003c= 0)\u0027 to ensure that error\ncodes like -ENOENT do not bypass the check and accidentally result in a\nsuccessful match.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68740",
"url": "https://www.suse.com/security/cve/CVE-2025-68740"
},
{
"category": "external",
"summary": "SUSE Bug 1255812 for CVE-2025-68740",
"url": "https://bugzilla.suse.com/1255812"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68740"
},
{
"cve": "CVE-2025-68742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68742"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix invalid prog-\u003estats access when update_effective_progs fails\n\nSyzkaller triggers an invalid memory access issue following fault\ninjection in update_effective_progs. The issue can be described as\nfollows:\n\n__cgroup_bpf_detach\n update_effective_progs\n compute_effective_progs\n bpf_prog_array_alloc \u003c-- fault inject\n purge_effective_progs\n /* change to dummy_bpf_prog */\n array-\u003eitems[index] = \u0026dummy_bpf_prog.prog\n\n---softirq start---\n__do_softirq\n ...\n __cgroup_bpf_run_filter_skb\n __bpf_prog_run_save_cb\n bpf_prog_run\n stats = this_cpu_ptr(prog-\u003estats)\n /* invalid memory access */\n flags = u64_stats_update_begin_irqsave(\u0026stats-\u003esyncp)\n---softirq end---\n\n static_branch_dec(\u0026cgroup_bpf_enabled_key[atype])\n\nThe reason is that fault injection caused update_effective_progs to fail\nand then changed the original prog into dummy_bpf_prog.prog in\npurge_effective_progs. Then a softirq came, and accessing the members of\ndummy_bpf_prog.prog in the softirq triggers invalid mem access.\n\nTo fix it, skip updating stats when stats is NULL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68742",
"url": "https://www.suse.com/security/cve/CVE-2025-68742"
},
{
"category": "external",
"summary": "SUSE Bug 1255707 for CVE-2025-68742",
"url": "https://bugzilla.suse.com/1255707"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68742"
},
{
"cve": "CVE-2025-68744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Free special fields when update [lru_,]percpu_hash maps\n\nAs [lru_,]percpu_hash maps support BPF_KPTR_{REF,PERCPU}, missing\ncalls to \u0027bpf_obj_free_fields()\u0027 in \u0027pcpu_copy_value()\u0027 could cause the\nmemory referenced by BPF_KPTR_{REF,PERCPU} fields to be held until the\nmap gets freed.\n\nFix this by calling \u0027bpf_obj_free_fields()\u0027 after\n\u0027copy_map_value[,_long]()\u0027 in \u0027pcpu_copy_value()\u0027.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68744",
"url": "https://www.suse.com/security/cve/CVE-2025-68744"
},
{
"category": "external",
"summary": "SUSE Bug 1255709 for CVE-2025-68744",
"url": "https://bugzilla.suse.com/1255709"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68744"
},
{
"cve": "CVE-2025-68746",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68746"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: tegra210-quad: Fix timeout handling\n\nWhen the CPU that the QSPI interrupt handler runs on (typically CPU 0)\nis excessively busy, it can lead to rare cases of the IRQ thread not\nrunning before the transfer timeout is reached.\n\nWhile handling the timeouts, any pending transfers are cleaned up and\nthe message that they correspond to is marked as failed, which leaves\nthe curr_xfer field pointing at stale memory.\n\nTo avoid this, clear curr_xfer to NULL upon timeout and check for this\ncondition when the IRQ thread is finally run.\n\nWhile at it, also make sure to clear interrupts on failure so that new\ninterrupts can be run.\n\nA better, more involved, fix would move the interrupt clearing into a\nhard IRQ handler. Ideally we would also want to signal that the IRQ\nthread no longer needs to be run after the timeout is hit to avoid the\nextra check for a valid transfer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68746",
"url": "https://www.suse.com/security/cve/CVE-2025-68746"
},
{
"category": "external",
"summary": "SUSE Bug 1255722 for CVE-2025-68746",
"url": "https://bugzilla.suse.com/1255722"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68746"
},
{
"cve": "CVE-2025-68747",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68747"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix UAF on kernel BO VA nodes\n\nIf the MMU is down, panthor_vm_unmap_range() might return an error.\nWe expect the page table to be updated still, and if the MMU is blocked,\nthe rest of the GPU should be blocked too, so no risk of accessing\nphysical memory returned to the system (which the current code doesn\u0027t\ncover for anyway).\n\nProceed with the rest of the cleanup instead of bailing out and leaving\nthe va_node inserted in the drm_mm, which leads to UAF when other\nadjacent nodes are removed from the drm_mm tree.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68747",
"url": "https://www.suse.com/security/cve/CVE-2025-68747"
},
{
"category": "external",
"summary": "SUSE Bug 1255723 for CVE-2025-68747",
"url": "https://bugzilla.suse.com/1255723"
},
{
"category": "external",
"summary": "SUSE Bug 1257628 for CVE-2025-68747",
"url": "https://bugzilla.suse.com/1257628"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "important"
}
],
"title": "CVE-2025-68747"
},
{
"cve": "CVE-2025-68748",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68748"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/panthor: Fix UAF race between device unplug and FW event processing\n\nThe function panthor_fw_unplug() will free the FW memory sections.\nThe problem is that there could still be pending FW events which are yet\nnot handled at this point. process_fw_events_work() can in this case try\nto access said freed memory.\n\nSimply call disable_work_sync() to both drain and prevent future\ninvocation of process_fw_events_work().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68748",
"url": "https://www.suse.com/security/cve/CVE-2025-68748"
},
{
"category": "external",
"summary": "SUSE Bug 1255813 for CVE-2025-68748",
"url": "https://bugzilla.suse.com/1255813"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68748"
},
{
"cve": "CVE-2025-68749",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68749"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\naccel/ivpu: Fix race condition when unbinding BOs\n\nFix \u0027Memory manager not clean during takedown\u0027 warning that occurs\nwhen ivpu_gem_bo_free() removes the BO from the BOs list before it\ngets unmapped. Then file_priv_unbind() triggers a warning in\ndrm_mm_takedown() during context teardown.\n\nProtect the unmapping sequence with bo_list_lock to ensure the BO is\nalways fully unmapped when removed from the list. This ensures the BO\nis either fully unmapped at context teardown time or present on the\nlist and unmapped by file_priv_unbind().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68749",
"url": "https://www.suse.com/security/cve/CVE-2025-68749"
},
{
"category": "external",
"summary": "SUSE Bug 1255724 for CVE-2025-68749",
"url": "https://bugzilla.suse.com/1255724"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68749"
},
{
"cve": "CVE-2025-68750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68750"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: potential integer overflow in usbg_make_tpg()\n\nThe variable tpgt in usbg_make_tpg() is defined as unsigned long and is\nassigned to tpgt-\u003etport_tpgt, which is defined as u16. This may cause an\ninteger overflow when tpgt is greater than USHRT_MAX (65535). I\nhaven\u0027t tried to trigger it myself, but it is possible to trigger it\nby calling usbg_make_tpg() with a large value for tpgt.\n\nI modified the type of tpgt to match tpgt-\u003etport_tpgt and adjusted the\nrelevant code accordingly.\n\nThis patch is similar to commit 59c816c1f24d (\"vhost/scsi: potential\nmemory corruption\").",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68750",
"url": "https://www.suse.com/security/cve/CVE-2025-68750"
},
{
"category": "external",
"summary": "SUSE Bug 1255814 for CVE-2025-68750",
"url": "https://bugzilla.suse.com/1255814"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68750"
},
{
"cve": "CVE-2025-68753",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68753"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: firewire-motu: add bounds check in put_user loop for DSP events\n\nIn the DSP event handling code, a put_user() loop copies event data.\nWhen the user buffer size is not aligned to 4 bytes, it could overwrite\nbeyond the buffer boundary.\n\nFix by adding a bounds check before put_user().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68753",
"url": "https://www.suse.com/security/cve/CVE-2025-68753"
},
{
"category": "external",
"summary": "SUSE Bug 1256238 for CVE-2025-68753",
"url": "https://bugzilla.suse.com/1256238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68753"
},
{
"cve": "CVE-2025-68757",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68757"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/vgem-fence: Fix potential deadlock on release\n\nA timer that expires a vgem fence automatically in 10 seconds is now\nreleased with timer_delete_sync() from fence-\u003eops.release() called on last\ndma_fence_put(). In some scenarios, it can run in IRQ context, which is\nnot safe unless TIMER_IRQSAFE is used. One potentially risky scenario was\ndemonstrated in Intel DRM CI trybot, BAT run on machine bat-adlp-6, while\nworking on new IGT subtests syncobj_timeline@stress-* as user space\nreplacements of some problematic test cases of a dma-fence-chain selftest\n[1].\n\n[117.004338] ================================\n[117.004340] WARNING: inconsistent lock state\n[117.004342] 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 Tainted: G S U\n[117.004346] --------------------------------\n[117.004347] inconsistent {HARDIRQ-ON-W} -\u003e {IN-HARDIRQ-W} usage.\n[117.004349] swapper/0/0 [HC1[1]:SC1[1]:HE0:SE0] takes:\n[117.004352] ffff888138f86aa8 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: __timer_delete_sync+0x4b/0x190\n[117.004361] {HARDIRQ-ON-W} state was registered at:\n[117.004363] lock_acquire+0xc4/0x2e0\n[117.004366] call_timer_fn+0x80/0x2a0\n[117.004368] __run_timers+0x231/0x310\n[117.004370] run_timer_softirq+0x76/0xe0\n[117.004372] handle_softirqs+0xd4/0x4d0\n[117.004375] __irq_exit_rcu+0x13f/0x160\n[117.004377] irq_exit_rcu+0xe/0x20\n[117.004379] sysvec_apic_timer_interrupt+0xa0/0xc0\n[117.004382] asm_sysvec_apic_timer_interrupt+0x1b/0x20\n[117.004385] cpuidle_enter_state+0x12b/0x8a0\n[117.004388] cpuidle_enter+0x2e/0x50\n[117.004393] call_cpuidle+0x22/0x60\n[117.004395] do_idle+0x1fd/0x260\n[117.004398] cpu_startup_entry+0x29/0x30\n[117.004401] start_secondary+0x12d/0x160\n[117.004404] common_startup_64+0x13e/0x141\n[117.004407] irq event stamp: 2282669\n[117.004409] hardirqs last enabled at (2282668): [\u003cffffffff8289db71\u003e] _raw_spin_unlock_irqrestore+0x51/0x80\n[117.004414] hardirqs last disabled at (2282669): [\u003cffffffff82882021\u003e] sysvec_irq_work+0x11/0xc0\n[117.004419] softirqs last enabled at (2254702): [\u003cffffffff8289fd00\u003e] __do_softirq+0x10/0x18\n[117.004423] softirqs last disabled at (2254725): [\u003cffffffff813d4ddf\u003e] __irq_exit_rcu+0x13f/0x160\n[117.004426]\nother info that might help us debug this:\n[117.004429] Possible unsafe locking scenario:\n[117.004432] CPU0\n[117.004433] ----\n[117.004434] lock((\u0026fence-\u003etimer));\n[117.004436] \u003cInterrupt\u003e\n[117.004438] lock((\u0026fence-\u003etimer));\n[117.004440]\n *** DEADLOCK ***\n[117.004443] 1 lock held by swapper/0/0:\n[117.004445] #0: ffffc90000003d50 ((\u0026fence-\u003etimer)){?.-.}-{0:0}, at: call_timer_fn+0x7a/0x2a0\n[117.004450]\nstack backtrace:\n[117.004453] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Tainted: G S U 6.17.0-rc7-CI_DRM_17270-g7644974e648c+ #1 PREEMPT(voluntary)\n[117.004455] Tainted: [S]=CPU_OUT_OF_SPEC, [U]=USER\n[117.004455] Hardware name: Intel Corporation Alder Lake Client Platform/AlderLake-P DDR4 RVP, BIOS RPLPFWI1.R00.4035.A00.2301200723 01/20/2023\n[117.004456] Call Trace:\n[117.004456] \u003cIRQ\u003e\n[117.004457] dump_stack_lvl+0x91/0xf0\n[117.004460] dump_stack+0x10/0x20\n[117.004461] print_usage_bug.part.0+0x260/0x360\n[117.004463] mark_lock+0x76e/0x9c0\n[117.004465] ? register_lock_class+0x48/0x4a0\n[117.004467] __lock_acquire+0xbc3/0x2860\n[117.004469] lock_acquire+0xc4/0x2e0\n[117.004470] ? __timer_delete_sync+0x4b/0x190\n[117.004472] ? __timer_delete_sync+0x4b/0x190\n[117.004473] __timer_delete_sync+0x68/0x190\n[117.004474] ? __timer_delete_sync+0x4b/0x190\n[117.004475] timer_delete_sync+0x10/0x20\n[117.004476] vgem_fence_release+0x19/0x30 [vgem]\n[117.004478] dma_fence_release+0xc1/0x3b0\n[117.004480] ? dma_fence_release+0xa1/0x3b0\n[117.004481] dma_fence_chain_release+0xe7/0x130\n[117.004483] dma_fence_release+0xc1/0x3b0\n[117.004484] ? _raw_spin_unlock_irqrestore+0x27/0x80\n[117.004485] dma_fence_chain_irq_work+0x59/0x80\n[117.004487] irq_work_single+0x75/0xa0\n[117.004490] irq_work_r\n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68757",
"url": "https://www.suse.com/security/cve/CVE-2025-68757"
},
{
"category": "external",
"summary": "SUSE Bug 1255943 for CVE-2025-68757",
"url": "https://bugzilla.suse.com/1255943"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68757"
},
{
"cve": "CVE-2025-68758",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68758"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbacklight: led-bl: Add devlink to supplier LEDs\n\nLED Backlight is a consumer of one or multiple LED class devices, but\ndevlink is currently unable to create correct supplier-producer links when\nthe supplier is a class device. It creates instead a link where the\nsupplier is the parent of the expected device.\n\nOne consequence is that removal order is not correctly enforced.\n\nIssues happen for example with the following sections in a device tree\noverlay:\n\n // An LED driver chip\n pca9632@62 {\n compatible = \"nxp,pca9632\";\n reg = \u003c0x62\u003e;\n\n\t// ...\n\n addon_led_pwm: led-pwm@3 {\n reg = \u003c3\u003e;\n label = \"addon:led:pwm\";\n };\n };\n\n backlight-addon {\n compatible = \"led-backlight\";\n leds = \u003c\u0026addon_led_pwm\u003e;\n brightness-levels = \u003c255\u003e;\n default-brightness-level = \u003c255\u003e;\n };\n\nIn this example, the devlink should be created between the backlight-addon\n(consumer) and the pca9632@62 (supplier). Instead it is created between the\nbacklight-addon (consumer) and the parent of the pca9632@62, which is\ntypically the I2C bus adapter.\n\nOn removal of the above overlay, the LED driver can be removed before the\nbacklight device, resulting in:\n\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000010\n ...\n Call trace:\n led_put+0xe0/0x140\n devm_led_release+0x6c/0x98\n\nAnother way to reproduce the bug without any device tree overlays is\nunbinding the LED class device (pca9632@62) before unbinding the consumer\n(backlight-addon):\n\n echo 11-0062 \u003e/sys/bus/i2c/drivers/leds-pca963x/unbind\n echo ...backlight-dock \u003e/sys/bus/platform/drivers/led-backlight/unbind\n\nFix by adding a devlink between the consuming led-backlight device and the\nsupplying LED device, as other drivers and subsystems do as well.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68758",
"url": "https://www.suse.com/security/cve/CVE-2025-68758"
},
{
"category": "external",
"summary": "SUSE Bug 1255944 for CVE-2025-68758",
"url": "https://bugzilla.suse.com/1255944"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68758"
},
{
"cve": "CVE-2025-68759",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68759"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring()\n\nIn rtl8180_init_rx_ring(), memory is allocated for skb packets and DMA\nallocations in a loop. When an allocation fails, the previously\nsuccessful allocations are not freed on exit.\n\nFix that by jumping to err_free_rings label on error, which calls\nrtl8180_free_rx_ring() to free the allocations. Remove the free of\nrx_ring in rtl8180_init_rx_ring() error path, and set the freed\npriv-\u003erx_buf entry to null, to avoid double free.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68759",
"url": "https://www.suse.com/security/cve/CVE-2025-68759"
},
{
"category": "external",
"summary": "SUSE Bug 1255934 for CVE-2025-68759",
"url": "https://bugzilla.suse.com/1255934"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68759"
},
{
"cve": "CVE-2025-68765",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68765"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add()\n\nIn mt7615_mcu_wtbl_sta_add(), an skb sskb is allocated. If the\nsubsequent call to mt76_connac_mcu_alloc_wtbl_req() fails, the function\nreturns an error without freeing sskb, leading to a memory leak.\n\nFix this by calling dev_kfree_skb() on sskb in the error handling path\nto ensure it is properly released.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68765",
"url": "https://www.suse.com/security/cve/CVE-2025-68765"
},
{
"category": "external",
"summary": "SUSE Bug 1255931 for CVE-2025-68765",
"url": "https://bugzilla.suse.com/1255931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68765"
},
{
"cve": "CVE-2025-68766",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-68766"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nirqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc()\n\nIf irq_domain_translate_twocell() sets \"hwirq\" to \u003e= MCHP_EIC_NIRQ (2) then\nit results in an out of bounds access.\n\nThe code checks for invalid values, but doesn\u0027t set the error code. Return\n-EINVAL in that case, instead of returning success.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-68766",
"url": "https://www.suse.com/security/cve/CVE-2025-68766"
},
{
"category": "external",
"summary": "SUSE Bug 1255932 for CVE-2025-68766",
"url": "https://bugzilla.suse.com/1255932"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-68766"
},
{
"cve": "CVE-2025-71096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-71096"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly\n\nThe netlink response for RDMA_NL_LS_OP_IP_RESOLVE should always have a\nLS_NLA_TYPE_DGID attribute, it is invalid if it does not.\n\nUse the nl parsing logic properly and call nla_parse_deprecated() to fill\nthe nlattrs array and then directly index that array to get the data for\nthe DGID. Just fail if it is NULL.\n\nRemove the for loop searching for the nla, and squash the validation and\nparsing into one function.\n\nFixes an uninitialized read from the stack triggered by userspace if it\ndoes not provide the DGID to a kernel initiated RDMA_NL_LS_OP_IP_RESOLVE\nquery.\n\n BUG: KMSAN: uninit-value in hex_byte_pack include/linux/hex.h:13 [inline]\n BUG: KMSAN: uninit-value in ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n hex_byte_pack include/linux/hex.h:13 [inline]\n ip6_string+0xef4/0x13a0 lib/vsprintf.c:1490\n ip6_addr_string+0x18a/0x3e0 lib/vsprintf.c:1509\n ip_addr_string+0x245/0xee0 lib/vsprintf.c:1633\n pointer+0xc09/0x1bd0 lib/vsprintf.c:2542\n vsnprintf+0xf8a/0x1bd0 lib/vsprintf.c:2930\n vprintk_store+0x3ae/0x1530 kernel/printk/printk.c:2279\n vprintk_emit+0x307/0xcd0 kernel/printk/printk.c:2426\n vprintk_default+0x3f/0x50 kernel/printk/printk.c:2465\n vprintk+0x36/0x50 kernel/printk/printk_safe.c:82\n _printk+0x17e/0x1b0 kernel/printk/printk.c:2475\n ib_nl_process_good_ip_rsep drivers/infiniband/core/addr.c:128 [inline]\n ib_nl_handle_ip_res_resp+0x963/0x9d0 drivers/infiniband/core/addr.c:141\n rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:-1 [inline]\n rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline]\n rdma_nl_rcv+0xefa/0x11c0 drivers/infiniband/core/netlink.c:259\n netlink_unicast_kernel net/netlink/af_netlink.c:1320 [inline]\n netlink_unicast+0xf04/0x12b0 net/netlink/af_netlink.c:1346\n netlink_sendmsg+0x10b3/0x1250 net/netlink/af_netlink.c:1896\n sock_sendmsg_nosec net/socket.c:714 [inline]\n __sock_sendmsg+0x333/0x3d0 net/socket.c:729\n ____sys_sendmsg+0x7e0/0xd80 net/socket.c:2617\n ___sys_sendmsg+0x271/0x3b0 net/socket.c:2671\n __sys_sendmsg+0x1aa/0x300 net/socket.c:2703\n __compat_sys_sendmsg net/compat.c:346 [inline]\n __do_compat_sys_sendmsg net/compat.c:353 [inline]\n __se_compat_sys_sendmsg net/compat.c:350 [inline]\n __ia32_compat_sys_sendmsg+0xa4/0x100 net/compat.c:350\n ia32_sys_call+0x3f6c/0x4310 arch/x86/include/generated/asm/syscalls_32.h:371\n do_syscall_32_irqs_on arch/x86/entry/syscall_32.c:83 [inline]\n __do_fast_syscall_32+0xb0/0x150 arch/x86/entry/syscall_32.c:306\n do_fast_syscall_32+0x38/0x80 arch/x86/entry/syscall_32.c:331\n do_SYSENTER_32+0x1f/0x30 arch/x86/entry/syscall_32.c:3",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-71096",
"url": "https://www.suse.com/security/cve/CVE-2025-71096"
},
{
"category": "external",
"summary": "SUSE Bug 1256606 for CVE-2025-71096",
"url": "https://bugzilla.suse.com/1256606"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.2:kernel-64kb-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-64kb-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.aarch64",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-base-6.12.0-160000.9.1.160000.2.6.x86_64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-extra-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.ppc64le",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.s390x",
"SUSE Linux Micro 6.2:kernel-default-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-devel-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-macros-6.12.0-160000.9.1.noarch",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.aarch64",
"SUSE Linux Micro 6.2:kernel-rt-devel-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-rt-livepatch-6.12.0-160000.9.1.x86_64",
"SUSE Linux Micro 6.2:kernel-source-6.12.0-160000.9.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-02T10:12:16Z",
"details": "moderate"
}
],
"title": "CVE-2025-71096"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…