[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2025:4517-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":154,"duplicates":155,"related":156,"reserved_at":9,"published_at":227,"modified_at":228,"state":9,"summary":229,"references_raw":231,"kevs":892,"epss":9,"epss_history":893,"metrics":894,"affected":895},"SUSE-SU-2025:4517-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 15 SP7 Azure kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2022-50253: bpf: make sure skb->len != 0 when redirecting to a tunneling device (bsc#1249912).\n- CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (bsc#1251786).\n- CVE-2025-21710: tcp: correct handling of extreme memory squeeze (bsc#1237888).\n- CVE-2025-37916: pds_core: remove write-after-free of client_id (bsc#1243474).\n- CVE-2025-38359: s390/mm: Fix in_atomic() handling in do_secure_storage_access() (bsc#1247076).\n- CVE-2025-38360: drm/amd/display: Add more checks for DSC / HUBP ONO guarantees (bsc#1247078).\n- CVE-2025-38361: drm/amd/display: Check dce_hwseq before dereferencing it (bsc#1247079).\n- CVE-2025-39788: scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE (bsc#1249547).\n- CVE-2025-39805: net: macb: fix unregister_netdev call order in macb_remove() (bsc#1249982).\n- CVE-2025-39819: fs/smb: Fix inconsistent refcnt update (bsc#1250176).\n- CVE-2025-39822: io_uring/kbuf: fix signedness in this_len calculation (bsc#1250034).\n- CVE-2025-39859: ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog (bsc#1250252).\n- CVE-2025-39944: octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp() (bsc#1251120).\n- CVE-2025-39980: nexthop: Forbid FDB status change while nexthop is in a group (bsc#1252063).\n- CVE-2025-40001: scsi: mvsas: Fix use-after-free bugs in mvs_work_queue (bsc#1252303).\n- CVE-2025-40021: tracing: dynevent: Add a missing lockdown check on dynevent (bsc#1252681).\n- CVE-2025-40027: net/9p: fix double req put in p9_fd_cancelled (bsc#1252763).\n- CVE-2025-40030: pinctrl: check the return value of pinmux_ops::get_function_name() (bsc#1252773).\n- CVE-2025-40038: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid (bsc#1252817).\n- CVE-2025-40040: mm/ksm: fix flag-dropping behavior in ksm_madvise (bsc#1252780).\n- CVE-2025-40047: io_uring/waitid: always prune wait queue entry in io_waitid_wait() (bsc#1252790).\n- CVE-2025-40048: uio_hv_generic: Let userspace take care of interrupt mask (bsc#1252862).\n- CVE-2025-40055: ocfs2: fix double free in user_cluster_connect() (bsc#1252821).\n- CVE-2025-40059: coresight: Fix incorrect handling for return value of devm_kzalloc (bsc#1252809).\n- CVE-2025-40064: smc: Fix use-after-free in __pnet_find_base_ndev() (bsc#1252845).\n- CVE-2025-40070: pps: fix warning in pps_register_cdev when register device fail (bsc#1252836).\n- CVE-2025-40074: ipv4: start using dst_dev_rcu() (bsc#1252794).\n- CVE-2025-40075: tcp_metrics: use dst_dev_net_rcu() (bsc#1252795).\n- CVE-2025-40083: net/sched: sch_qfq: Fix null-deref in agg_dequeue (bsc#1252912).\n- CVE-2025-40086: drm/xe: Don't allow evicting of BOs in same VM in array of VM binds (bsc#1252923).\n- CVE-2025-40098: ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() (bsc#1252917).\n- CVE-2025-40105: vfs: Don't leak disconnected dentries on umount (bsc#1252928).\n- CVE-2025-40139: smc: Use __sk_dst_get() and dst_dev_rcu() in in smc_clc_prfx_set() (bsc#1253409).\n- CVE-2025-40149: tls: Use __sk_dst_get() and dst_dev_rcu() in get_netdev_for_sock() (bsc#1253355).\n- CVE-2025-40159: xsk: Harden userspace-supplied xdp_desc validation (bsc#1253403).\n- CVE-2025-40168: smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match() (bsc#1253427).\n- CVE-2025-40169: bpf: Reject negative offsets for ALU ops (bsc#1253416).\n- CVE-2025-40173: net/ip6_tunnel: Prevent perpetual tunnel growth (bsc#1253421).\n- CVE-2025-40176: tls: wait for pending async decryptions if tls_strp_msg_hold fails (bsc#1253425).\n- CVE-2025-40185: ice: ice_adapter: release xa entry on adapter allocation failure (bsc#1253394).\n- CVE-2025-40204: sctp: Fix MAC comparison to be constant-time (bsc#1253436).\n\n\nThe following non-security bugs were fixed:\n\n- ACPI: CPPC: Check _CPC validity for only the online CPUs (git-fixes).\n- ACPI: CPPC: Limit perf ctrs in PCC check only to online CPUs (git-fixes).\n- ACPI: CPPC: Perform fast check switch only for online CPUs (git-fixes).\n- ACPI: PRM: Skip handlers with NULL handler_address or NULL VA (stable-fixes).\n- ACPI: SBS: Fix present test in acpi_battery_read() (git-fixes).\n- ACPI: property: Return present device nodes only on fwnode interface (stable-fixes).\n- ACPI: scan: Add Intel CVS ACPI HIDs to acpi_ignore_dep_ids (stable-fixes).\n- ACPICA: Update dsmethod.c to get rid of unused variable warning (stable-fixes).\n- ACPICA: dispatcher: Use acpi_ds_clear_operands() in acpi_ds_call_control_method() (stable-fixes).\n- ALSA: hda: Fix missing pointer check in hda_component_manager_init function (git-fixes).\n- ALSA: serial-generic: remove shared static buffer (stable-fixes).\n- ALSA: usb-audio: Add validation of UAC2/UAC3 effect units (stable-fixes).\n- ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd (git-fixes).\n- ALSA: usb-audio: Fix potential overflow of PCM transfer buffer (stable-fixes).\n- ALSA: usb-audio: add mono main switch to Presonus S1824c (stable-fixes).\n- ALSA: usb-audio: apply quirk for MOONDROP Quark2 (stable-fixes).\n- ALSA: usb-audio: do not log messages meant for 1810c when initializing 1824c (git-fixes).\n- ALSA: usb-audio: fix uac2 clock source at terminal parser (git-fixes).\n- ASoC: codecs: va-macro: fix resource leak in probe error path (git-fixes).\n- ASoC: cs4271: Fix regulator leak on probe failure (git-fixes).\n- ASoC: max98090/91: fixed max98091 ALSA widget powering up/down (stable-fixes).\n- ASoC: meson: aiu-encoder-i2s: fix bit clock polarity (stable-fixes).\n- ASoC: qcom: sc8280xp: explicitly set S16LE format in sc8280xp_be_hw_params_fixup() (stable-fixes).\n- ASoC: stm32: sai: manage context in set_sysclk callback (stable-fixes).\n- ASoC: tas2781: fix getting the wrong device number (git-fixes).\n- ASoC: tlv320aic3x: Fix class-D initialization for tlv320aic3007 (stable-fixes).\n- Bluetooth: 6lowpan: Do not hold spin lock over sleeping functions (git-fixes).\n- Bluetooth: 6lowpan: add missing l2cap_chan_lock() (git-fixes).\n- Bluetooth: 6lowpan: fix BDADDR_LE vs ADDR_LE_DEV address type confusion (git-fixes).\n- Bluetooth: 6lowpan: reset link-local header on ipv6 recv path (git-fixes).\n- Bluetooth: L2CAP: export l2cap_chan_hold for modules (stable-fixes).\n- Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() (git-fixes).\n- Bluetooth: MGMT: cancel mesh send timer when hdev removed (git-fixes).\n- Bluetooth: SCO: Fix UAF on sco_conn_free (stable-fixes).\n- Bluetooth: bcsp: receive data only if registered (stable-fixes).\n- Bluetooth: btrtl: Fix memory leak in rtlbt_parse_firmware_v2() (git-fixes).\n- Bluetooth: btusb: Check for unexpected bytes when defragmenting HCI frames (stable-fixes).\n- Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF (git-fixes).\n- Bluetooth: hci_event: validate skb length for unknown CC opcode (git-fixes).\n- Documentation: ACPI: i2c-muxes: fix I2C device references (git-fixes).\n- Drivers: hv: vmbus: Add utility function for querying ring size (git-fixes).\n- HID: amd_sfh: Stop sensor before starting (git-fixes).\n- HID: hid-ntrig: Prevent memory leak in ntrig_report_version() (git-fixes).\n- HID: quirks: avoid Cooler Master MM712 dongle wakeup bug (stable-fixes).\n- HID: quirks: work around VID/PID conflict for 0x4c4a/0x4155 (git-fixes).\n- HID: uclogic: Fix potential memory leak in error path (git-fixes).\n- Input: atmel_mxt_ts - allow reset GPIO to sleep (stable-fixes).\n- Input: imx_sc_key - fix memory corruption on unload (git-fixes).\n- Input: pegasus-notetaker - fix potential out-of-bounds access (git-fixes).\n- KVM: Pass new routing entries and irqfd when updating IRTEs (git-fixes).\n- KVM: SEV: Enforce minimum GHCB version requirement for SEV-SNP guests (git-fixes).\n- KVM: SVM: Delete IRTE link from previous vCPU before setting new IRTE (git-fixes).\n- KVM: SVM: Delete IRTE link from previous vCPU irrespective of new routing (git-fixes).\n- KVM: SVM: Emulate PERF_CNTR_GLOBAL_STATUS_SET for PerfMonV2 (git-fixes).\n- KVM: SVM: Mark VMCB_LBR dirty when MSR_IA32_DEBUGCTLMSR is updated (git-fixes).\n- KVM: SVM: Re-load current, not host, TSC_AUX on #VMEXIT from SEV-ES guest (git-fixes).\n- KVM: SVM: Track per-vCPU IRTEs using kvm_kernel_irqfd structure (git-fixes).\n- KVM: SVM: WARN if an invalid posted interrupt IRTE entry is added (git-fixes).\n- KVM: VMX: Allow guest to set DEBUGCTL.RTM_DEBUG if RTM is supported (git-fixes).\n- KVM: VMX: Apply MMIO Stale Data mitigation if KVM maps MMIO into the guest (git-fixes).\n- KVM: VMX: Fix check for valid GVA on an EPT violation (git-fixes).\n- KVM: VMX: Preserve host's DEBUGCTLMSR_FREEZE_IN_SMM while running the guest (git-fixes).\n- KVM: VMX: Wrap all accesses to IA32_DEBUGCTL with getter/setter APIs (git-fixes).\n- KVM: nVMX: Check vmcs12->guest_ia32_debugctl on nested VM-Enter (git-fixes).\n- KVM: s390: improve interrupt cpu for wakeup (bsc#1235463).\n- KVM: s390: kABI backport for 'last_sleep_cpu' (bsc#1252352).\n- KVM: x86/mmu: Locally cache whether a PFN is host MMIO when making a SPTE (git-fixes).\n- KVM: x86: Add helper to retrieve current value of user return MSR (git-fixes).\n- KVM: x86: Convert vcpu_run()'s immediate exit param into a generic bitmap (git-fixes).\n- KVM: x86: Do not treat ENTER and LEAVE as branches, because they are not (git-fixes).\n- KVM: x86: Drop kvm_x86_ops.set_dr6() in favor of a new KVM_RUN flag (git-fixes).\n- KVM: x86: Have all vendor neutral sub-configs depend on KVM_X86, not just KVM (git-fixes).\n- NFS4: Fix state renewals missing after boot (git-fixes).\n- NFS: check if suid/sgid was cleared after a write as needed (git-fixes).\n- NFSD: Never cache a COMPOUND when the SEQUENCE operation fails (git-fixes).\n- NFSD: Skip close replay processing if XDR encoding fails (git-fixes).\n- NFSD: free copynotify stateid in nfs4_free_ol_stateid() (git-fixes).\n- NFSv4.1: fix mount hang after CREATE_SESSION failure (git-fixes).\n- NFSv4: handle ERR_GRACE on delegation recalls (git-fixes).\n- PCI/P2PDMA: Fix incorrect pointer usage in devm_kfree() call (stable-fixes).\n- PCI/PM: Skip resuming to D0 if device is disconnected (stable-fixes).\n- PCI: Disable MSI on RDC PCI to PCIe bridges (stable-fixes).\n- PCI: cadence: Check for the existence of cdns_pcie::ops before using it (stable-fixes).\n- PCI: dwc: Verify the single eDMA IRQ in dw_pcie_edma_irq_verify() (stable-fixes).\n- PCI: j721e: Fix incorrect error message in probe() (git-fixes).\n- PCI: rcar-host: Convert struct rcar_msi mask_lock into raw spinlock (git-fixes).\n- PCI: tegra194: Reset BARs when running in PCIe endpoint mode (git-fixes).\n- RDMA/bnxt_re: Do not fail destroy QP and cleanup debugfs earlier (git-fixes).\n- RDMA/bnxt_re: Fix a potential memory leak in destroy_gsi_sqp (git-fixes).\n- RDMA/hns: Fix recv CQ and QP cache affinity (git-fixes).\n- RDMA/hns: Fix the modification of max_send_sge (git-fixes).\n- RDMA/hns: Fix wrong WQE data when QP wraps around (git-fixes).\n- RDMA/irdma: Fix SD index calculation (git-fixes).\n- RDMA/irdma: Set irdma_cq cq_num field during CQ create (git-fixes).\n- Revert 'drm/tegra: dsi: Clear enable register if powered by bootloader' (git-fixes).\n- Revert 'wifi: ath10k: avoid unnecessary wait for service ready message' (git-fixes).\n- accel/habanalabs/gaudi2: fix BMON disable configuration (stable-fixes).\n- accel/habanalabs/gaudi2: read preboot status after recovering from dirty state (stable-fixes).\n- accel/habanalabs: return ENOMEM if less than requested pages were pinned (stable-fixes).\n- accel/habanalabs: support mapping cb with vmalloc-backed coherent memory (stable-fixes).\n- acpi,srat: Fix incorrect device handle check for Generic Initiator (git-fixes).\n- acpi/hmat: Fix lockdep warning for hmem_register_resource() (git-fixes).\n- amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw (stable-fixes).\n- ata: libata-scsi: Add missing scsi_device_put() in ata_scsi_dev_rescan() (git-fixes).\n- block: avoid possible overflow for chunk_sectors check in blk_stack_limits() (git-fixes).\n- block: fix kobject double initialization in add_disk (git-fixes).\n- bpf: Fix test verif_scale_strobemeta_subprogs failure due to llvm19 (bsc#1252368).\n- bpf: improve error message for unsupported helper (bsc#1252370).\n- btrfs: abort transaction on failure to add link to inode (git-fixes).\n- btrfs: avoid page_lockend underflow in btrfs_punch_hole_lock_range() (git-fix).\n- btrfs: avoid using fixed char array size for tree names (git-fix).\n- btrfs: do not update last_log_commit when logging inode due to a new name (git-fixes).\n- btrfs: fix COW handling in run_delalloc_nocow() (git-fix).\n- btrfs: fix inode leak on failure to add link to inode (git-fixes).\n- btrfs: make btrfs_clear_delalloc_extent() free delalloc reserve (git-fix).\n- btrfs: mark dirty extent range for out of bound prealloc extents (git-fixes).\n- btrfs: qgroup: correctly model root qgroup rsv in convert (git-fix).\n- btrfs: rename err to ret in btrfs_link() (git-fixes).\n- btrfs: run btrfs_error_commit_super() early (git-fix).\n- btrfs: scrub: put bio after errors in scrub_raid56_parity_stripe() (git-fixes).\n- btrfs: send: fix duplicated rmdir operations when using extrefs (git-fixes).\n- btrfs: set inode flag BTRFS_INODE_COPY_EVERYTHING when logging new name (git-fixes).\n- btrfs: simplify error handling logic for btrfs_link() (git-fixes).\n- btrfs: tree-checker: add dev extent item checks (git-fix).\n- btrfs: tree-checker: add type and sequence check for inline backrefs (git-fix).\n- btrfs: tree-checker: fix the wrong output of data backref objectid (git-fix).\n- btrfs: tree-checker: reject BTRFS_FT_UNKNOWN dir type (git-fix).\n- btrfs: tree-checker: validate dref root and objectid (git-fix).\n- btrfs: use smp_mb__after_atomic() when forcing COW in create_pending_snapshot() (git-fixes).\n- cgroup/cpuset: Remove remote_partition_check() & make update_cpumasks_hier() handle remote partition (bsc#1241166).\n- char: misc: Does not request module for miscdevice with dynamic minor (stable-fixes).\n- char: misc: Make misc_register() reentry for miscdevice who wants dynamic minor (stable-fixes).\n- char: misc: restrict the dynamic range to exclude reserved minors (stable-fixes).\n- cpuset: Use new excpus for nocpu error check when enabling root partition (bsc#1241166).\n- cpuset: fix failure to enable isolated partition when containing isolcpus (bsc#1241166).\n- cramfs: Verify inode mode when loading from disk (git-fixes).\n- crypto: aspeed - fix double free caused by devm (git-fixes).\n- crypto: aspeed-acry - Convert to platform remove callback returning void (stable-fixes).\n- crypto: hisilicon/qm - Fix device reference leak in qm_get_qos_value (git-fixes).\n- crypto: iaa - Do not clobber req->base.data (git-fixes).\n- crypto: qat - use kcalloc() in qat_uclo_map_objs_from_mof() (stable-fixes).\n- dmaengine: dw-edma: Set status for callback_result (stable-fixes).\n- dmaengine: mv_xor: match alloc_wc and free_wc (stable-fixes).\n- drm/amd/amdgpu: Release xcp drm memory after unplug (stable-fixes).\n- drm/amd/display/dml2: Guard dml21_map_dc_state_into_dml_display_cfg with DC_FP_START (stable-fixes).\n- drm/amd/display: Add AVI infoframe copy in copy_stream_update_to_stream (stable-fixes).\n- drm/amd/display: Add fallback path for YCBCR422 (stable-fixes).\n- drm/amd/display: Allow VRR params change if unsynced with the stream (git-fixes).\n- drm/amd/display: Disable VRR on DCE 6 (stable-fixes).\n- drm/amd/display: Enable mst when it's detected but yet to be initialized (git-fixes).\n- drm/amd/display: Fix DVI-D/HDMI adapters (stable-fixes).\n- drm/amd/display: Fix NULL deref in debugfs odm_combine_segments (git-fixes).\n- drm/amd/display: Fix black screen with HDMI outputs (git-fixes).\n- drm/amd/display: Fix for test crash due to power gating (stable-fixes).\n- drm/amd/display: Fix incorrect return of vblank enable on unconfigured crtc (stable-fixes).\n- drm/amd/display: Fix pbn_div Calculation Error (stable-fixes).\n- drm/amd/display: Increase AUX Intra-Hop Done Max Wait Duration (stable-fixes).\n- drm/amd/display: Increase minimum clock for TMDS 420 with pipe splitting (stable-fixes).\n- drm/amd/display: Init dispclk from bootup clock for DCN314 (stable-fixes).\n- drm/amd/display: Move setup_stream_attribute (stable-fixes).\n- drm/amd/display: Reject modes with too high pixel clock on DCE6-10 (git-fixes).\n- drm/amd/display: Reset apply_eamless_boot_optimization when dpms_off (stable-fixes).\n- drm/amd/display: Set up pixel encoding for YCBCR422 (stable-fixes).\n- drm/amd/display: Support HW cursor 180 rot for any number of pipe splits (stable-fixes).\n- drm/amd/display: Wait until OTG enable state is cleared (stable-fixes).\n- drm/amd/display: add more cyan skillfish devices (stable-fixes).\n- drm/amd/display: change dc stream color settings only in atomic commit (stable-fixes).\n- drm/amd/display: ensure committing streams is seamless (stable-fixes).\n- drm/amd/display: fix condition for setting timing_adjust_pending (stable-fixes).\n- drm/amd/display: fix dml ms order of operations (stable-fixes).\n- drm/amd/display: incorrect conditions for failing dto calculations (stable-fixes).\n- drm/amd/display: update color on atomic commit time (stable-fixes).\n- drm/amd/display: update dpp/disp clock from smu clock table (stable-fixes).\n- drm/amd/pm: Disable MCLK switching on SI at high pixel clocks (stable-fixes).\n- drm/amd/pm: Use cached metrics data on aldebaran (stable-fixes).\n- drm/amd/pm: Use cached metrics data on arcturus (stable-fixes).\n- drm/amd: Avoid evicting resources at S5 (stable-fixes).\n- drm/amd: Check that VPE has reached DPM0 in idle handler (stable-fixes).\n- drm/amd: Fix suspend failure with secure display TA (git-fixes).\n- drm/amd: add more cyan skillfish PCI ids (stable-fixes).\n- drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() (stable-fixes).\n- drm/amdgpu/jpeg: Hold pg_lock before jpeg poweroff (stable-fixes).\n- drm/amdgpu/smu: Handle S0ix for vangogh (stable-fixes).\n- drm/amdgpu: Allow kfd CRIU with no buffer objects (stable-fixes).\n- drm/amdgpu: Check vcn sram load return value (stable-fixes).\n- drm/amdgpu: Correct the counts of nr_banks and nr_errors (stable-fixes).\n- drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices (stable-fixes).\n- drm/amdgpu: Fix function header names in amdgpu_connectors.c (git-fixes).\n- drm/amdgpu: Fix unintended error log in VCN5_0_0 (git-fixes).\n- drm/amdgpu: Respect max pixel clock for HDMI and DVI-D (v2) (stable-fixes).\n- drm/amdgpu: Skip poison aca bank from UE channel (stable-fixes).\n- drm/amdgpu: Use memdup_array_user in amdgpu_cs_wait_fences_ioctl (stable-fixes).\n- drm/amdgpu: add range check for RAS bad page address (stable-fixes).\n- drm/amdgpu: add support for cyan skillfish gpu_info (stable-fixes).\n- drm/amdgpu: disable peer-to-peer access for DCC-enabled GC12 VRAM surfaces (stable-fixes).\n- drm/amdgpu: do not enable SMU on cyan skillfish (stable-fixes).\n- drm/amdgpu: fix nullptr err of vm_handle_moved (stable-fixes).\n- drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM (stable-fixes).\n- drm/amdgpu: reject gang submissions under SRIOV (stable-fixes).\n- drm/amdgpu: remove two invalid BUG_ON()s (stable-fixes).\n- drm/amdkfd: Handle lack of READ permissions in SVM mapping (stable-fixes).\n- drm/amdkfd: Tie UNMAP_LATENCY to queue_preemption (stable-fixes).\n- drm/amdkfd: fix vram allocation failure for a special case (stable-fixes).\n- drm/amdkfd: relax checks for over allocation of save area (stable-fixes).\n- drm/amdkfd: return -ENOTTY for unsupported IOCTLs (stable-fixes).\n- drm/ast: Blank with VGACR17 sync enable, always clear VGACRB6 sync off (git-fixes).\n- drm/bridge: cdns-dsi: Do not fail on MIPI_DSI_MODE_VIDEO_BURST (stable-fixes).\n- drm/bridge: cdns-dsi: Fix REG_WAKEUP_TIME value (stable-fixes).\n- drm/bridge: display-connector: do not set OP_DETECT for DisplayPorts (stable-fixes).\n- drm/exynos: exynos7_drm_decon: remove ctx->suspended (git-fixes).\n- drm/i915/dp_mst: Work around Thunderbolt sink disconnect after SINK_COUNT_ESI read (stable-fixes).\n- drm/i915: Avoid lock inversion when pinning to GGTT on CHV/BXT+VTD (git-fixes).\n- drm/i915: Fix conversion between clock ticks and nanoseconds (git-fixes).\n- drm/mediatek: Add pm_runtime support for GCE power control (git-fixes).\n- drm/mediatek: Disable AFBC support on Mediatek DRM driver (git-fixes).\n- drm/msm/a6xx: Fix PDC sleep sequence (git-fixes).\n- drm/msm/dsi/phy: Toggle back buffer resync after preparing PLL (stable-fixes).\n- drm/msm/dsi/phy_7nm: Fix missing initial VCO rate (stable-fixes).\n- drm/msm/registers: Generate _HI/LO builders for reg64 (stable-fixes).\n- drm/msm: make sure to not queue up recovery more than once (stable-fixes).\n- drm/nouveau: replace snprintf() with scnprintf() in nvkm_snprintbf() (stable-fixes).\n- drm/panthor: Serialize GPU cache flush operations (stable-fixes).\n- drm/panthor: check bo offset alignment in vm bind (stable-fixes).\n- drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb (git-fixes).\n- drm/sched: Optimise drm_sched_entity_push_job (stable-fixes).\n- drm/sched: avoid killing parent entity on child SIGKILL (stable-fixes).\n- drm/tegra: Add call to put_pid() (git-fixes).\n- drm/tegra: dc: Fix reference leak in tegra_dc_couple() (git-fixes).\n- drm/tidss: Set crtc modesetting parameters with adjusted mode (stable-fixes).\n- drm/tidss: Use the crtc_* timings when programming the HW (stable-fixes).\n- drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE (git-fixes).\n- drm/xe/guc: Add more GuC load error status codes (stable-fixes).\n- drm/xe/guc: Increase GuC crash dump buffer size (stable-fixes).\n- drm/xe/guc: Return an error code if the GuC load fails (stable-fixes).\n- drm/xe/guc: Set upper limit of H2G retries over CTB (stable-fixes).\n- drm/xe/guc: Synchronize Dead CT worker with unbind (git-fixes).\n- drm/xe: Do clean shutdown also when using flr (git-fixes).\n- drm/xe: Do not wake device during a GT reset (git-fixes).\n- drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test (stable-fixes).\n- drm/xe: Move declarations under conditional branch (stable-fixes).\n- drm/xe: Remove duplicate DRM_EXEC selection from Kconfig (git-fixes).\n- drm: panel-backlight-quirks: Make EDID match optional (stable-fixes).\n- exfat: limit log print for IO error (git-fixes).\n- extcon: adc-jack: Cleanup wakeup source only if it was enabled (git-fixes).\n- extcon: adc-jack: Fix wakeup source leaks on device unbind (stable-fixes).\n- fbcon: Set fb_display[i]->mode to NULL when the mode is released (stable-fixes).\n- fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds (stable-fixes).\n- fbdev: bitblit: bound-check glyph index in bit_putcs* (stable-fixes).\n- fbdev: pvr2fb: Fix leftover reference to ONCHIP_NR_DMA_CHANNELS (stable-fixes).\n- hwmon: (asus-ec-sensors) increase timeout for locking ACPI mutex (stable-fixes).\n- hwmon: (dell-smm) Add support for Dell OptiPlex 7040 (stable-fixes).\n- hwmon: (k10temp) Add device ID for Strix Halo (stable-fixes).\n- hwmon: (k10temp) Add thermal support for AMD Family 1Ah-based models (stable-fixes).\n- hwmon: (sbtsi_temp) AMD CPU extended temperature range support (stable-fixes).\n- hwmon: sy7636a: add alias (stable-fixes).\n- hyperv: Remove the spurious null directive line (git-fixes).\n- iio: adc: imx93_adc: load calibrated values even calibration failed (stable-fixes).\n- iio: adc: spear_adc: mask SPEAR_ADC_STATUS channel and avg sample before setting register (stable-fixes).\n- ima: do not clear IMA_DIGSIG flag when setting or removing non-IMA xattr (stable-fixes).\n- iommu/amd: Return an error if vCPU affinity is set for non-vCPU IRTE (git-fixes).\n- isdn: mISDN: hfcsusb: fix memory leak in hfcsusb_probe() (git-fixes).\n- ixgbe: fix memory leak and use-after-free in ixgbe_recovery_probe() (git-fixes).\n- jfs: Verify inode mode when loading from disk (git-fixes).\n- jfs: fix uninitialized waitqueue in transaction manager (git-fixes).\n- kABI fix for KVM: VMX: Apply MMIO Stale Data mitigation if KVM maps MMIO into the guest (git-fixes).\n- kabi/severities: drop xfer_to_guest_mode_handle_work.\n- lib/crypto: curve25519-hacl64: Fix older clang KASAN workaround for GCC (git-fixes).\n- md/raid1: fix data lost for writemostly rdev (git-fixes).\n- md: fix mssing blktrace bio split events (git-fixes).\n- media: adv7180: Add missing lock in suspend callback (stable-fixes).\n- media: adv7180: Do not write format to device in set_fmt (stable-fixes).\n- media: adv7180: Only validate format in querystd (stable-fixes).\n- media: amphion: Delete v4l2_fh synchronously in .release() (stable-fixes).\n- media: fix uninitialized symbol warnings (stable-fixes).\n- media: i2c: Kconfig: Ensure a dependency on HAVE_CLK for VIDEO_CAMERA_SENSOR (stable-fixes).\n- media: i2c: og01a1b: Specify monochrome media bus format instead of Bayer (stable-fixes).\n- media: imon: make send_packet() more robust (stable-fixes).\n- media: ov08x40: Fix the horizontal flip control (stable-fixes).\n- media: redrat3: use int type to store negative error codes (stable-fixes).\n- media: uvcvideo: Use heuristic to find stream entity (git-fixes).\n- media: videobuf2: forbid remove_bufs when legacy fileio is active (git-fixes).\n- memstick: Add timeout to prevent indefinite waiting (stable-fixes).\n- mfd: da9063: Split chip variant reading in two bus transactions (stable-fixes).\n- mfd: madera: Work around false-positive -Wininitialized warning (stable-fixes).\n- mfd: stmpe-i2c: Add missing MODULE_LICENSE (stable-fixes).\n- mfd: stmpe: Remove IRQ domain upon removal (stable-fixes).\n- minixfs: Verify inode mode when loading from disk (git-fixes).\n- mm/mm_init: fix hash table order logging in alloc_large_system_hash() (git-fixes).\n- mm/secretmem: fix use-after-free race in fault handler (git-fixes).\n- mmc: host: renesas_sdhi: Fix the actual clock (stable-fixes).\n- mmc: sdhci-msm: Enable tuning for SDR50 mode for SD card (stable-fixes).\n- mmc: sdhci-of-dwcmshc: Change DLL_STRBIN_TAPNUM_DEFAULT to 0x4 (git-fixes).\n- mtd: onenand: Pass correct pointer to IRQ handler (git-fixes).\n- mtd: rawnand: cadence: fix DMA device NULL pointer dereference (git-fixes).\n- mtdchar: fix integer overflow in read/write ioctls (git-fixes).\n- net/mana: fix warning in the writer of client oob (git-fixes).\n- net/smc: Remove validation of reserved bits in CLC Decline message (bsc#1253779).\n- net: nfc: nci: Increase NCI_DATA_TIMEOUT to 3000 ms (stable-fixes).\n- net: phy: clear link parameters on admin link down (stable-fixes).\n- net: phy: fixed_phy: let fixed_phy_unregister free the phy_device (stable-fixes).\n- net: phy: marvell: Fix 88e1510 downshift counter errata (stable-fixes).\n- net: tcp: send zero-window ACK when no memory (bsc#1253779).\n- net: usb: qmi_wwan: initialize MAC header offset in qmimux_rx_fixup (git-fixes).\n- nfs4_setup_readdir(): insufficient locking for ->d_parent->d_inode dereferencing (git-fixes).\n- nfsd: do not defer requests during idmap lookup in v4 compound decode (bsc#1232223).\n- nfsd: fix return error codes for nfsd_map_name_to_id (bsc#1232223).\n- nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot (git-fixes).\n- nvme-auth: add hkdf_expand_label() (bsc#1247683).\n- nvme-auth: use hkdf_expand_label() (bsc#1247683).\n- perf script: add --addr2line option (bsc#1247509).\n- phy: cadence: cdns-dphy: Enable lower resolutions in dphy (stable-fixes).\n- phy: renesas: r8a779f0-ether-serdes: add new step added to latest datasheet (stable-fixes).\n- phy: rockchip: phy-rockchip-inno-csidphy: allow writes to grf register 0 (stable-fixes).\n- pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc (git-fixes).\n- pinctrl: s32cc: initialize gpio_pin_config::list after kmalloc() (git-fixes).\n- pinctrl: single: fix bias pull up/down handling in pin_config_set (stable-fixes).\n- platform/x86/intel/speed_select_if: Convert PCIBIOS_* return codes to errnos (git-fixes).\n- power: supply: qcom_battmgr: add OOI chemistry (stable-fixes).\n- power: supply: qcom_battmgr: handle charging state change notifications (stable-fixes).\n- power: supply: sbs-charger: Support multiple devices (stable-fixes).\n- powerpc: export MIN RMA size (bsc#1236743).\n- powerpc: increase MIN RMA size for CAS negotiation (bsc#1236743, bsc#1252269).\n- regulator: fixed: fix GPIO descriptor leak on register failure (git-fixes).\n- rtc: rx8025: fix incorrect register reference (git-fixes).\n- s390/mm,fault: simplify kfence fault handling (bsc#1247076).\n- scsi: Fix sas_user_scan() to handle wildcard and multi-channel scans (git-fixes).\n- scsi: aacraid: Stop using PCI_IRQ_AFFINITY (git-fixes).\n- scsi: core: sysfs: Correct sysfs attributes access rights (git-fixes).\n- scsi: hpsa: Fix potential memory leak in hpsa_big_passthru_ioctl() (git-fixes).\n- scsi: libfc: Prevent integer overflow in fc_fcp_recv_data() (git-fixes).\n- scsi: mpi3mr: Correctly handle ATA device errors (git-fixes).\n- scsi: mpi3mr: Drop unnecessary volatile from __iomem pointers (git-fixes).\n- scsi: mpt3sas: Correctly handle ATA device errors (git-fixes).\n- scsi: mpt3sas: Fix crash in transport port remove by using ioc_info() (git-fixes).\n- scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod (git-fixes).\n- scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267).\n- selftests/bpf: Check for timeout in perf_link test (bsc#1253648).\n- selftests/bpf: Close fd in error path in drop_on_reuseport (git-fixes).\n- selftests/bpf: Close obj in error path in xdp_adjust_tail (git-fixes).\n- selftests/bpf: Fix missing ARRAY_SIZE() definition in bench.c (git-fixes).\n- selftests/bpf: Fix missing BUILD_BUG_ON() declaration (git-fixes).\n- selftests/bpf: Fix missing UINT_MAX definitions in benchmarks (git-fixes).\n- selftests/bpf: Fix string read in strncmp benchmark (git-fixes).\n- selftests/bpf: Mitigate sockmap_ktls disconnect_after_delete failure (git-fixes).\n- selftests/bpf: Remove sockmap_ktls disconnect_after_delete test (bsc#1252365).\n- selftests/bpf: Remove tests for zeroed-array kptr (bsc#1252366).\n- selftests/bpf: Use pid_t consistently in test_progs.c (git-fixes).\n- selftests/bpf: fix signedness bug in redir_partial() (git-fixes).\n- selftests/net/forwarding: add slowwait functions (bsc#1254235).\n- selftests/net/lib: no need to record ns name if it already exist (bsc#1254235).\n- selftests/net/lib: update busywait timeout value (bsc#1254235).\n- selftests/net: add lib.sh (bsc#1254235).\n- selftests/net: add variable NS_LIST for lib.sh (bsc#1254235).\n- selftests/net: use tc rule to filter the na packet (bsc#1254235).\n- selftests/run_kselftest.sh: Add `--skip` argument option (bsc#1254221).\n- selftests: forwarding.config.sample: Move overrides to lib.sh (bsc#1254235).\n- selftests: forwarding: Add a test for testing lib.sh functionality (bsc#1254235).\n- selftests: forwarding: Avoid failures to source net/lib.sh (bsc#1254235).\n- selftests: forwarding: Change inappropriate log_test_skip() calls (bsc#1254235).\n- selftests: forwarding: Convert log_test() to recognize RET values (bsc#1254235).\n- selftests: forwarding: Have RET track kselftest framework constants (bsc#1254235).\n- selftests: forwarding: Parametrize mausezahn delay (bsc#1254235).\n- selftests: forwarding: Redefine relative_path variable (bsc#1254235).\n- selftests: forwarding: Remove duplicated lib.sh content (bsc#1254235).\n- selftests: forwarding: Support for performance sensitive tests (bsc#1254235).\n- selftests: lib: Define more kselftest exit codes (bsc#1254235).\n- selftests: lib: tc_rule_stats_get(): Move default to argument definition (bsc#1254235).\n- selftests: net: List helper scripts in TEST_FILES Makefile variable (bsc#1254235).\n- selftests: net: Unify code of busywait() and slowwait() (bsc#1254235).\n- selftests: net: add helper for checking if nettest is available (bsc#1254235).\n- selftests: net: lib: Do not overwrite error messages (bsc#1254235).\n- selftests: net: lib: Move logging from forwarding/lib.sh here (bsc#1254235).\n- selftests: net: lib: avoid error removing empty netns name (bsc#1254235).\n- selftests: net: lib: do not set ns var as readonly (bsc#1254235).\n- selftests: net: lib: fix shift count out of range (bsc#1254235).\n- selftests: net: lib: ignore possible errors (bsc#1254235).\n- selftests: net: lib: kill PIDs before del netns (bsc#1254235).\n- selftests: net: lib: remove 'ns' var in setup_ns (bsc#1254235).\n- selftests: net: lib: remove ns from list after clean-up (bsc#1254235).\n- selftests: net: lib: set 'i' as local (bsc#1254235).\n- selftests: net: lib: support errexit with busywait (bsc#1254235).\n- selftests: net: libs: Change variable fallback syntax (bsc#1254235).\n- serial: 8250_exar: add support for Advantech 2 port card with Device ID 0x0018 (git-fixes).\n- serial: 8250_mtk: Enable baud clock and manage in runtime PM (git-fixes).\n- soc/tegra: fuse: Add Tegra114 nvmem cells and fuse lookups (stable-fixes).\n- soc: aspeed: socinfo: Add AST27xx silicon IDs (stable-fixes).\n- soc: qcom: smem: Fix endian-unaware access of num_entries (stable-fixes).\n- spi: Try to get ACPI GPIO IRQ earlier (git-fixes).\n- spi: loopback-test: Do not use %pK through printk (stable-fixes).\n- spi: rpc-if: Add resume support for RZ/G3E (stable-fixes).\n- strparser: Fix signed/unsigned mismatch bug (git-fixes).\n- tcp_bpf: Call sk_msg_free() when tcp_bpf_send_verdict() fails to allocate psock->cork (bsc#1250705).\n- thunderbolt: Use is_pciehp instead of is_hotplug_bridge (stable-fixes).\n- tools/cpupower: Fix incorrect size in cpuidle_state_disable() (stable-fixes).\n- tools/cpupower: fix error return value in cpupower_write_sysfs() (stable-fixes).\n- tools/hv: fcopy: Fix incorrect file path conversion (git-fixes).\n- tools/power x86_energy_perf_policy: Enhance HWP enable (stable-fixes).\n- tools/power x86_energy_perf_policy: Fix incorrect fopen mode usage (stable-fixes).\n- tools/power x86_energy_perf_policy: Prefer driver HWP limits (stable-fixes).\n- tools: lib: thermal: do not preserve owner in install (stable-fixes).\n- tools: lib: thermal: use pkg-config to locate libnl3 (stable-fixes).\n- uio_hv_generic: Query the ringbuffer size for device (git-fixes).\n- usb/core/quirks: Add Huawei ME906S to wakeup quirk (git-fixes).\n- usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget (stable-fixes).\n- usb: gadget: f_fs: Fix epfile null pointer access after ep enable (stable-fixes).\n- usb: gadget: f_hid: Fix zero length packet transfer (stable-fixes).\n- usb: gadget: f_ncm: Fix MAC assignment NCM ethernet (stable-fixes).\n- usb: mon: Increase BUFF_MAX to 64 MiB to support multi-MB URBs (stable-fixes).\n- usb: xhci: plat: Facilitate using autosuspend for xhci plat devices (stable-fixes).\n- video: backlight: lp855x_bl: Set correct EPROM start for LP8556 (stable-fixes).\n- watchdog: s3c2410_wdt: Fix max_timeout being calculated larger (stable-fixes).\n- wifi: ath10k: Fix connection after GTK rekeying (stable-fixes).\n- wifi: ath11k: Add quirk entries for Thinkpad T14s Gen3 AMD (bsc#1254181).\n- wifi: ath11k: zero init info->status in wmi_process_mgmt_tx_comp() (git-fixes).\n- wifi: ath12k: Increase DP_REO_CMD_RING_SIZE to 256 (stable-fixes).\n- wifi: iwlwifi: fw: Add ASUS to PPAG and TAS list (stable-fixes).\n- wifi: mac80211: Fix 6 GHz Band capabilities element advertisement in lower bands (stable-fixes).\n- wifi: mac80211: Fix HE capabilities element check (stable-fixes).\n- wifi: mac80211: Track NAN interface start/stop (stable-fixes).\n- wifi: mac80211: do not mark keys for inactive links as uploaded (stable-fixes).\n- wifi: mac80211: fix key tailroom accounting leak (git-fixes).\n- wifi: mac80211: reject address change while connecting (git-fixes).\n- wifi: mac80211: skip rate verification for not captured PSDUs (git-fixes).\n- wifi: mac80211_hwsim: Limit destroy_on_close radio removal to netgroup (git-fixes).\n- wifi: mt76: mt7921: Add 160MHz beamformee capability for mt7922 device (stable-fixes).\n- wifi: mt76: mt7996: Temporarily disable EPCS (stable-fixes).\n- wifi: mt76: mt7996: fix memory leak on mt7996_mcu_sta_key_tlv error (stable-fixes).\n- wifi: mwl8k: inject DSSS Parameter Set element into beacons if missing (git-fixes).\n- wifi: rtw88: sdio: use indirect IO for device registers before power-on (stable-fixes).\n- wifi: rtw89: print just once for unknown C2H events (stable-fixes).\n- wifi: zd1211rw: fix potential memory leak in __zd_usb_enable_rx() (git-fixes).\n- x86/CPU/AMD: Add RDSEED fix for Zen5 (git-fixes).\n- x86/CPU/AMD: Add additional fixed RDSEED microcode revisions (git-fixes).\n- x86/CPU/AMD: Add missing terminator for zen5_rdseed_microcode (git-fixes).\n- x86/CPU/AMD: Do the common init on future Zens too (git-fixes).\n- x86/amd_nb: Add new PCI IDs for AMD family 0x1a (stable-fixes).\n- x86/bugs: Fix reporting of LFENCE retpoline (git-fixes).\n- x86/bugs: Report correct retbleed mitigation status (git-fixes).\n- x86/vmscape: Add old Intel CPUs to affected list (git-fixes).\n- xe/oa: Fix query mode of operation for OAR/OAC (git-fixes).\n- xhci: dbc: Allow users to modify DbC poll interval via sysfs (stable-fixes).\n- xhci: dbc: Avoid event polling busyloop if pending rx transfers are inactive (git-fixes).\n- xhci: dbc: Improve performance by removing delay in transfer event polling (stable-fixes).\n- xhci: dbc: fix bogus 1024 byte prefix if ttyDBC read races with stall event (git-fixes).\n- xhci: dbc: poll at different rate depending on data transfer activity (stable-fixes).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136,138,140,142,144,146,148,150,152],{"_key":15},"CVE-2022-50253",{"_key":17},"CVE-2023-53676",{"_key":19},"CVE-2025-21710",{"_key":21},"CVE-2025-37916",{"_key":23},"CVE-2025-38359",{"_key":25},"CVE-2025-38360",{"_key":27},"CVE-2025-38361",{"_key":29},"CVE-2025-39788",{"_key":31},"CVE-2025-39805",{"_key":33},"CVE-2025-39819",{"_key":35},"CVE-2025-39822",{"_key":37},"CVE-2025-39859",{"_key":39},"CVE-2025-39944",{"_key":41},"CVE-2025-39980",{"_key":43},"CVE-2025-40001",{"_key":45},"CVE-2025-40021",{"_key":47},"CVE-2025-40027",{"_key":49},"CVE-2025-40030",{"_key":51},"CVE-2025-40038",{"_key":53},"CVE-2025-40040",{"_key":55},"CVE-2025-40047",{"_key":57},"CVE-2025-40048",{"_key":59},"CVE-2025-40055",{"_key":61},"CVE-2025-40059",{"_key":63},"CVE-2025-40064",{"_key":65},"CVE-2025-40070",{"_key":67},"CVE-2025-40074",{"_key":69},"CVE-2025-40075",{"_key":71},"CVE-2025-40083",{"_key":73},"CVE-2025-40086",{"_key":75},"CVE-2025-40098",{"_key":77},"CVE-2025-40105",{"_key":79},"CVE-2025-40107",{"_key":81},"CVE-2025-40109",{"_key":83},"CVE-2025-40110",{"_key":85},"CVE-2025-40111",{"_key":87},"CVE-2025-40115",{"_key":89},"CVE-2025-40116",{"_key":91},"CVE-2025-40118",{"_key":93},"CVE-2025-40120",{"_key":95},"CVE-2025-40121",{"_key":97},"CVE-2025-40127",{"_key":99},"CVE-2025-40129",{"_key":101},"CVE-2025-40139",{"_key":103},"CVE-2025-40140",{"_key":105},"CVE-2025-40141",{"_key":107},"CVE-2025-40149",{"_key":109},"CVE-2025-40154",{"_key":111},"CVE-2025-40156",{"_key":113},"CVE-2025-40157",{"_key":115},"CVE-2025-40159",{"_key":117},"CVE-2025-40164",{"_key":119},"CVE-2025-40168",{"_key":121},"CVE-2025-40169",{"_key":123},"CVE-2025-40171",{"_key":125},"CVE-2025-40172",{"_key":127},"CVE-2025-40173",{"_key":129},"CVE-2025-40176",{"_key":131},"CVE-2025-40180",{"_key":133},"CVE-2025-40183",{"_key":135},"CVE-2025-40185",{"_key":137},"CVE-2025-40186",{"_key":139},"CVE-2025-40188",{"_key":141},"CVE-2025-40194",{"_key":143},"CVE-2025-40198",{"_key":145},"CVE-2025-40200",{"_key":147},"CVE-2025-40204",{"_key":149},"CVE-2025-40205",{"_key":151},"CVE-2025-40206",{"_key":153},"CVE-2025-40207",[],[],[157,158,159,160,161,162,163,164,165,166,167,168,169,170,171,172,173,174,175,176,177,178,179,180,181,182,183,184,185,186,187,188,189,190,191,192,193,194,195,196,197,198,199,200,201,202,203,204,205,206,207,208,209,210,211,212,213,214,215,216,217,218,219,220,221,222,223,224,225,226],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":47},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},{"_key":63},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":87},{"_key":89},{"_key":91},{"_key":93},{"_key":95},{"_key":97},{"_key":99},{"_key":101},{"_key":103},{"_key":105},{"_key":107},{"_key":109},{"_key":111},{"_key":113},{"_key":115},{"_key":117},{"_key":119},{"_key":121},{"_key":123},{"_key":125},{"_key":127},{"_key":129},{"_key":131},{"_key":133},{"_key":135},{"_key":137},{"_key":139},{"_key":141},{"_key":143},{"_key":145},{"_key":147},{"_key":149},{"_key":151},{"_key":153},"2025-12-23T16:28:51Z","2026-03-23T04:51:51.092470Z",{"cisa_kev":230,"cisa_ransomware":230,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[232,238,243,247,251,255,259,263,267,271,275,279,283,287,291,295,299,303,307,311,315,319,323,327,331,335,339,343,347,351,355,359,363,367,371,375,379,383,387,391,395,399,403,407,411,415,419,423,427,431,435,439,443,447,451,455,459,463,467,471,475,479,483,487,491,495,499,503,507,511,515,519,523,527,531,535,539,543,547,551,555,559,563,567,571,575,579,583,587,591,595,599,603,607,611,616,620,624,628,632,636,640,644,648,652,656,660,664,668,672,676,680,684,688,692,696,700,704,708,712,716,720,724,728,732,736,740,744,748,752,756,760,764,768,772,776,780,784,788,792,796,800,804,808,812,816,820,824,828,832,836,840,844,848,852,856,860,864,868,872,876,880,884,888],{"url":233,"sources":234,"tags":236},"https://www.suse.com/support/update/announcement/2025/suse-su-20254517-1/",[235],"osv_suse",[237],"Advisory",{"url":239,"sources":240,"tags":241},"https://bugzilla.suse.com/1232223",[235],[242],"REPORT",{"url":244,"sources":245,"tags":246},"https://bugzilla.suse.com/1235463",[235],[242],{"url":248,"sources":249,"tags":250},"https://bugzilla.suse.com/1236743",[235],[242],{"url":252,"sources":253,"tags":254},"https://bugzilla.suse.com/1237888",[235],[242],{"url":256,"sources":257,"tags":258},"https://bugzilla.suse.com/1241166",[235],[242],{"url":260,"sources":261,"tags":262},"https://bugzilla.suse.com/1243474",[235],[242],{"url":264,"sources":265,"tags":266},"https://bugzilla.suse.com/1245193",[235],[242],{"url":268,"sources":269,"tags":270},"https://bugzilla.suse.com/1247076",[235],[242],{"url":272,"sources":273,"tags":274},"https://bugzilla.suse.com/1247078",[235],[242],{"url":276,"sources":277,"tags":278},"https://bugzilla.suse.com/1247079",[235],[242],{"url":280,"sources":281,"tags":282},"https://bugzilla.suse.com/1247500",[235],[242],{"url":284,"sources":285,"tags":286},"https://bugzilla.suse.com/1247509",[235],[242],{"url":288,"sources":289,"tags":290},"https://bugzilla.suse.com/1247683",[235],[242],{"url":292,"sources":293,"tags":294},"https://bugzilla.suse.com/1249547",[235],[242],{"url":296,"sources":297,"tags":298},"https://bugzilla.suse.com/1249912",[235],[242],{"url":300,"sources":301,"tags":302},"https://bugzilla.suse.com/1249982",[235],[242],{"url":304,"sources":305,"tags":306},"https://bugzilla.suse.com/1250034",[235],[242],{"url":308,"sources":309,"tags":310},"https://bugzilla.suse.com/1250176",[235],[242],{"url":312,"sources":313,"tags":314},"https://bugzilla.suse.com/1250237",[235],[242],{"url":316,"sources":317,"tags":318},"https://bugzilla.suse.com/1250252",[235],[242],{"url":320,"sources":321,"tags":322},"https://bugzilla.suse.com/1250705",[235],[242],{"url":324,"sources":325,"tags":326},"https://bugzilla.suse.com/1251120",[235],[242],{"url":328,"sources":329,"tags":330},"https://bugzilla.suse.com/1251786",[235],[242],{"url":332,"sources":333,"tags":334},"https://bugzilla.suse.com/1252063",[235],[242],{"url":336,"sources":337,"tags":338},"https://bugzilla.suse.com/1252267",[235],[242],{"url":340,"sources":341,"tags":342},"https://bugzilla.suse.com/1252269",[235],[242],{"url":344,"sources":345,"tags":346},"https://bugzilla.suse.com/1252303",[235],[242],{"url":348,"sources":349,"tags":350},"https://bugzilla.suse.com/1252352",[235],[242],{"url":352,"sources":353,"tags":354},"https://bugzilla.suse.com/1252353",[235],[242],{"url":356,"sources":357,"tags":358},"https://bugzilla.suse.com/1252365",[235],[242],{"url":360,"sources":361,"tags":362},"https://bugzilla.suse.com/1252366",[235],[242],{"url":364,"sources":365,"tags":366},"https://bugzilla.suse.com/1252368",[235],[242],{"url":368,"sources":369,"tags":370},"https://bugzilla.suse.com/1252370",[235],[242],{"url":372,"sources":373,"tags":374},"https://bugzilla.suse.com/1252681",[235],[242],{"url":376,"sources":377,"tags":378},"https://bugzilla.suse.com/1252763",[235],[242],{"url":380,"sources":381,"tags":382},"https://bugzilla.suse.com/1252773",[235],[242],{"url":384,"sources":385,"tags":386},"https://bugzilla.suse.com/1252780",[235],[242],{"url":388,"sources":389,"tags":390},"https://bugzilla.suse.com/1252790",[235],[242],{"url":392,"sources":393,"tags":394},"https://bugzilla.suse.com/1252794",[235],[242],{"url":396,"sources":397,"tags":398},"https://bugzilla.suse.com/1252795",[235],[242],{"url":400,"sources":401,"tags":402},"https://bugzilla.suse.com/1252809",[235],[242],{"url":404,"sources":405,"tags":406},"https://bugzilla.suse.com/1252817",[235],[242],{"url":408,"sources":409,"tags":410},"https://bugzilla.suse.com/1252821",[235],[242],{"url":412,"sources":413,"tags":414},"https://bugzilla.suse.com/1252836",[235],[242],{"url":416,"sources":417,"tags":418},"https://bugzilla.suse.com/1252845",[235],[242],{"url":420,"sources":421,"tags":422},"https://bugzilla.suse.com/1252862",[235],[242],{"url":424,"sources":425,"tags":426},"https://bugzilla.suse.com/1252912",[235],[242],{"url":428,"sources":429,"tags":430},"https://bugzilla.suse.com/1252917",[235],[242],{"url":432,"sources":433,"tags":434},"https://bugzilla.suse.com/1252923",[235],[242],{"url":436,"sources":437,"tags":438},"https://bugzilla.suse.com/1252928",[235],[242],{"url":440,"sources":441,"tags":442},"https://bugzilla.suse.com/1253018",[235],[242],{"url":444,"sources":445,"tags":446},"https://bugzilla.suse.com/1253176",[235],[242],{"url":448,"sources":449,"tags":450},"https://bugzilla.suse.com/1253275",[235],[242],{"url":452,"sources":453,"tags":454},"https://bugzilla.suse.com/1253318",[235],[242],{"url":456,"sources":457,"tags":458},"https://bugzilla.suse.com/1253324",[235],[242],{"url":460,"sources":461,"tags":462},"https://bugzilla.suse.com/1253349",[235],[242],{"url":464,"sources":465,"tags":466},"https://bugzilla.suse.com/1253352",[235],[242],{"url":468,"sources":469,"tags":470},"https://bugzilla.suse.com/1253355",[235],[242],{"url":472,"sources":473,"tags":474},"https://bugzilla.suse.com/1253360",[235],[242],{"url":476,"sources":477,"tags":478},"https://bugzilla.suse.com/1253362",[235],[242],{"url":480,"sources":481,"tags":482},"https://bugzilla.suse.com/1253363",[235],[242],{"url":484,"sources":485,"tags":486},"https://bugzilla.suse.com/1253367",[235],[242],{"url":488,"sources":489,"tags":490},"https://bugzilla.suse.com/1253369",[235],[242],{"url":492,"sources":493,"tags":494},"https://bugzilla.suse.com/1253393",[235],[242],{"url":496,"sources":497,"tags":498},"https://bugzilla.suse.com/1253394",[235],[242],{"url":500,"sources":501,"tags":502},"https://bugzilla.suse.com/1253395",[235],[242],{"url":504,"sources":505,"tags":506},"https://bugzilla.suse.com/1253403",[235],[242],{"url":508,"sources":509,"tags":510},"https://bugzilla.suse.com/1253407",[235],[242],{"url":512,"sources":513,"tags":514},"https://bugzilla.suse.com/1253409",[235],[242],{"url":516,"sources":517,"tags":518},"https://bugzilla.suse.com/1253412",[235],[242],{"url":520,"sources":521,"tags":522},"https://bugzilla.suse.com/1253416",[235],[242],{"url":524,"sources":525,"tags":526},"https://bugzilla.suse.com/1253421",[235],[242],{"url":528,"sources":529,"tags":530},"https://bugzilla.suse.com/1253423",[235],[242],{"url":532,"sources":533,"tags":534},"https://bugzilla.suse.com/1253424",[235],[242],{"url":536,"sources":537,"tags":538},"https://bugzilla.suse.com/1253425",[235],[242],{"url":540,"sources":541,"tags":542},"https://bugzilla.suse.com/1253427",[235],[242],{"url":544,"sources":545,"tags":546},"https://bugzilla.suse.com/1253428",[235],[242],{"url":548,"sources":549,"tags":550},"https://bugzilla.suse.com/1253431",[235],[242],{"url":552,"sources":553,"tags":554},"https://bugzilla.suse.com/1253436",[235],[242],{"url":556,"sources":557,"tags":558},"https://bugzilla.suse.com/1253438",[235],[242],{"url":560,"sources":561,"tags":562},"https://bugzilla.suse.com/1253440",[235],[242],{"url":564,"sources":565,"tags":566},"https://bugzilla.suse.com/1253441",[235],[242],{"url":568,"sources":569,"tags":570},"https://bugzilla.suse.com/1253445",[235],[242],{"url":572,"sources":573,"tags":574},"https://bugzilla.suse.com/1253448",[235],[242],{"url":576,"sources":577,"tags":578},"https://bugzilla.suse.com/1253449",[235],[242],{"url":580,"sources":581,"tags":582},"https://bugzilla.suse.com/1253453",[235],[242],{"url":584,"sources":585,"tags":586},"https://bugzilla.suse.com/1253456",[235],[242],{"url":588,"sources":589,"tags":590},"https://bugzilla.suse.com/1253472",[235],[242],{"url":592,"sources":593,"tags":594},"https://bugzilla.suse.com/1253648",[235],[242],{"url":596,"sources":597,"tags":598},"https://bugzilla.suse.com/1253779",[235],[242],{"url":600,"sources":601,"tags":602},"https://bugzilla.suse.com/1254181",[235],[242],{"url":604,"sources":605,"tags":606},"https://bugzilla.suse.com/1254221",[235],[242],{"url":608,"sources":609,"tags":610},"https://bugzilla.suse.com/1254235",[235],[242],{"url":612,"sources":613,"tags":614},"https://www.suse.com/security/cve/CVE-2022-50253",[235],[615],"WEB",{"url":617,"sources":618,"tags":619},"https://www.suse.com/security/cve/CVE-2023-53676",[235],[615],{"url":621,"sources":622,"tags":623},"https://www.suse.com/security/cve/CVE-2025-21710",[235],[615],{"url":625,"sources":626,"tags":627},"https://www.suse.com/security/cve/CVE-2025-37916",[235],[615],{"url":629,"sources":630,"tags":631},"https://www.suse.com/security/cve/CVE-2025-38359",[235],[615],{"url":633,"sources":634,"tags":635},"https://www.suse.com/security/cve/CVE-2025-38360",[235],[615],{"url":637,"sources":638,"tags":639},"https://www.suse.com/security/cve/CVE-2025-38361",[235],[615],{"url":641,"sources":642,"tags":643},"https://www.suse.com/security/cve/CVE-2025-39788",[235],[615],{"url":645,"sources":646,"tags":647},"https://www.suse.com/security/cve/CVE-2025-39805",[235],[615],{"url":649,"sources":650,"tags":651},"https://www.suse.com/security/cve/CVE-2025-39819",[235],[615],{"url":653,"sources":654,"tags":655},"https://www.suse.com/security/cve/CVE-2025-39822",[235],[615],{"url":657,"sources":658,"tags":659},"https://www.suse.com/security/cve/CVE-2025-39859",[235],[615],{"url":661,"sources":662,"tags":663},"https://www.suse.com/security/cve/CVE-2025-39944",[235],[615],{"url":665,"sources":666,"tags":667},"https://www.suse.com/security/cve/CVE-2025-39980",[235],[615],{"url":669,"sources":670,"tags":671},"https://www.suse.com/security/cve/CVE-2025-40001",[235],[615],{"url":673,"sources":674,"tags":675},"https://www.suse.com/security/cve/CVE-2025-40021",[235],[615],{"url":677,"sources":678,"tags":679},"https://www.suse.com/security/cve/CVE-2025-40027",[235],[615],{"url":681,"sources":682,"tags":683},"https://www.suse.com/security/cve/CVE-2025-40030",[235],[615],{"url":685,"sources":686,"tags":687},"https://www.suse.com/security/cve/CVE-2025-40038",[235],[615],{"url":689,"sources":690,"tags":691},"https://www.suse.com/security/cve/CVE-2025-40040",[235],[615],{"url":693,"sources":694,"tags":695},"https://www.suse.com/security/cve/CVE-2025-40047",[235],[615],{"url":697,"sources":698,"tags":699},"https://www.suse.com/security/cve/CVE-2025-40048",[235],[615],{"url":701,"sources":702,"tags":703},"https://www.suse.com/security/cve/CVE-2025-40055",[235],[615],{"url":705,"sources":706,"tags":707},"https://www.suse.com/security/cve/CVE-2025-40059",[235],[615],{"url":709,"sources":710,"tags":711},"https://www.suse.com/security/cve/CVE-2025-40064",[235],[615],{"url":713,"sources":714,"tags":715},"https://www.suse.com/security/cve/CVE-2025-40070",[235],[615],{"url":717,"sources":718,"tags":719},"https://www.suse.com/security/cve/CVE-2025-40074",[235],[615],{"url":721,"sources":722,"tags":723},"https://www.suse.com/security/cve/CVE-2025-40075",[235],[615],{"url":725,"sources":726,"tags":727},"https://www.suse.com/security/cve/CVE-2025-40083",[235],[615],{"url":729,"sources":730,"tags":731},"https://www.suse.com/security/cve/CVE-2025-40086",[235],[615],{"url":733,"sources":734,"tags":735},"https://www.suse.com/security/cve/CVE-2025-40098",[235],[615],{"url":737,"sources":738,"tags":739},"https://www.suse.com/security/cve/CVE-2025-40105",[235],[615],{"url":741,"sources":742,"tags":743},"https://www.suse.com/security/cve/CVE-2025-40107",[235],[615],{"url":745,"sources":746,"tags":747},"https://www.suse.com/security/cve/CVE-2025-40109",[235],[615],{"url":749,"sources":750,"tags":751},"https://www.suse.com/security/cve/CVE-2025-40110",[235],[615],{"url":753,"sources":754,"tags":755},"https://www.suse.com/security/cve/CVE-2025-40111",[235],[615],{"url":757,"sources":758,"tags":759},"https://www.suse.com/security/cve/CVE-2025-40115",[235],[615],{"url":761,"sources":762,"tags":763},"https://www.suse.com/security/cve/CVE-2025-40116",[235],[615],{"url":765,"sources":766,"tags":767},"https://www.suse.com/security/cve/CVE-2025-40118",[235],[615],{"url":769,"sources":770,"tags":771},"https://www.suse.com/security/cve/CVE-2025-40120",[235],[615],{"url":773,"sources":774,"tags":775},"https://www.suse.com/security/cve/CVE-2025-40121",[235],[615],{"url":777,"sources":778,"tags":779},"https://www.suse.com/security/cve/CVE-2025-40127",[235],[615],{"url":781,"sources":782,"tags":783},"https://www.suse.com/security/cve/CVE-2025-40129",[235],[615],{"url":785,"sources":786,"tags":787},"https://www.suse.com/security/cve/CVE-2025-40139",[235],[615],{"url":789,"sources":790,"tags":791},"https://www.suse.com/security/cve/CVE-2025-40140",[235],[615],{"url":793,"sources":794,"tags":795},"https://www.suse.com/security/cve/CVE-2025-40141",[235],[615],{"url":797,"sources":798,"tags":799},"https://www.suse.com/security/cve/CVE-2025-40149",[235],[615],{"url":801,"sources":802,"tags":803},"https://www.suse.com/security/cve/CVE-2025-40154",[235],[615],{"url":805,"sources":806,"tags":807},"https://www.suse.com/security/cve/CVE-2025-40156",[235],[615],{"url":809,"sources":810,"tags":811},"https://www.suse.com/security/cve/CVE-2025-40157",[235],[615],{"url":813,"sources":814,"tags":815},"https://www.suse.com/security/cve/CVE-2025-40159",[235],[615],{"url":817,"sources":818,"tags":819},"https://www.suse.com/security/cve/CVE-2025-40164",[235],[615],{"url":821,"sources":822,"tags":823},"https://www.suse.com/security/cve/CVE-2025-40168",[235],[615],{"url":825,"sources":826,"tags":827},"https://www.suse.com/security/cve/CVE-2025-40169",[235],[615],{"url":829,"sources":830,"tags":831},"https://www.suse.com/security/cve/CVE-2025-40171",[235],[615],{"url":833,"sources":834,"tags":835},"https://www.suse.com/security/cve/CVE-2025-40172",[235],[615],{"url":837,"sources":838,"tags":839},"https://www.suse.com/security/cve/CVE-2025-40173",[235],[615],{"url":841,"sources":842,"tags":843},"https://www.suse.com/security/cve/CVE-2025-40176",[235],[615],{"url":845,"sources":846,"tags":847},"https://www.suse.com/security/cve/CVE-2025-40180",[235],[615],{"url":849,"sources":850,"tags":851},"https://www.suse.com/security/cve/CVE-2025-40183",[235],[615],{"url":853,"sources":854,"tags":855},"https://www.suse.com/security/cve/CVE-2025-40185",[235],[615],{"url":857,"sources":858,"tags":859},"https://www.suse.com/security/cve/CVE-2025-40186",[235],[615],{"url":861,"sources":862,"tags":863},"https://www.suse.com/security/cve/CVE-2025-40188",[235],[615],{"url":865,"sources":866,"tags":867},"https://www.suse.com/security/cve/CVE-2025-40194",[235],[615],{"url":869,"sources":870,"tags":871},"https://www.suse.com/security/cve/CVE-2025-40198",[235],[615],{"url":873,"sources":874,"tags":875},"https://www.suse.com/security/cve/CVE-2025-40200",[235],[615],{"url":877,"sources":878,"tags":879},"https://www.suse.com/security/cve/CVE-2025-40204",[235],[615],{"url":881,"sources":882,"tags":883},"https://www.suse.com/security/cve/CVE-2025-40205",[235],[615],{"url":885,"sources":886,"tags":887},"https://www.suse.com/security/cve/CVE-2025-40206",[235],[615],{"url":889,"sources":890,"tags":891},"https://www.suse.com/security/cve/CVE-2025-40207",[235],[615],[],[],[],[896,909,914],{"ecosystem":897,"name":898,"vendor":899,"product":900,"cpe_part":9,"purl_type":901,"purl_namespace":899,"purl_name":900,"source":9,"versions":902},"SUSE Linux Enterprise","kernel-azure","suse","kernel-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP7","rpm",[903],{"version":904,"is_range":905,"range_type":906,"version_start":9,"version_start_type":9,"version_end":907,"version_end_type":908,"fixed_in":9},"lt6_4_0_150700_20_21_1",true,"ecosystem","6.4.0-150700.20.21.1","excluding",{"ecosystem":897,"name":910,"vendor":899,"product":911,"cpe_part":9,"purl_type":901,"purl_namespace":899,"purl_name":911,"source":9,"versions":912},"kernel-source-azure","kernel-source-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP7",[913],{"version":904,"is_range":905,"range_type":906,"version_start":9,"version_start_type":9,"version_end":907,"version_end_type":908,"fixed_in":9},{"ecosystem":897,"name":915,"vendor":899,"product":916,"cpe_part":9,"purl_type":901,"purl_namespace":899,"purl_name":916,"source":9,"versions":917},"kernel-syms-azure","kernel-syms-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP7",[918],{"version":904,"is_range":905,"range_type":906,"version_start":9,"version_start_type":9,"version_end":907,"version_end_type":908,"fixed_in":9}]