SUSE-SU-2026:0032-1

Advisory lineage Upstream: 8 Downstream: 0
Published: 05 Jan 2026, 19:24
Last modified:04 Feb 2026, 02:21

Vulnerability Summary

Overall Risk (default)
minimal
0/100
CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

05 Jan 2026, 19:24
Published
Vulnerability first disclosed
04 Feb 2026, 02:21
Last Modified
Vulnerability information updated

Description

Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-50280: pnode: terminate at peers of source (bsc#1249806). - CVE-2023-53659: iavf: Fix out-of-bounds when setting channels on remove (bsc#1251247). - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (bsc#1251786). - CVE-2023-53717: wifi: ath9k: Fix potential stack-out-of-bounds write in ath9k_wmi_rsp_callback() (bsc#1252560). - CVE-2025-40040: mm/ksm: fix flag-dropping behavior in ksm_madvise (bsc#1252780). - CVE-2025-40121: ASoC: Intel: bytcr_rt5651: Fix invalid quirk input mapping (bsc#1253367). - CVE-2025-40154: ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping (bsc#1253431). - CVE-2025-40204: sctp: Fix MAC comparison to be constant-time (bsc#1253436). The following non-security bugs were fixed: - cifs: Check the lease context if we actually got a lease (bsc#1228688). - cifs: return a single-use cfid if we did not get a lease (bsc#1228688). - smb3: fix Open files on server counter going negative (git-fixes).

Affected Systems

  • susekernel-rt&distro=SUSE Linux Enterprise Micro 5.2

    < 5.3.18-150300.229.2

  • susekernel-source-rt&distro=SUSE Linux Enterprise Micro 5.2

    < 5.3.18-150300.229.1

References (18)