SUSE-SU-2026:0495-1

CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit (bsc#1255594).
CVE-2025-38129: pagepool: fix inconsistency for pagepoolringlock() (bsc#1245723).
CVE-2025-40139: net: ipv4: Consolidate ipv4mtu and ipdstmtumaybe_forward (bsc#1253409).
CVE-2025-68312: usbnet: Prevents free active kevent (bsc#1255171).
CVE-2025-71085: ipv6: BUG() in pskbexpandhead() as part of calipsoskbuffsetattr() (bsc#1256623).
CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726).
CVE-2026-22999: net/sched: schqfq: do not free existing class in qfqchange_class() (bsc#1257236).
CVE-2026-23001: macvlan: Use 'hash' iterators to simplify code (bsc#1257232).

References

Affected packages

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.3.18-150300.235.1

{
    "binaries": [
        {
            "kernel-rt": "5.3.18-150300.235.1",
            "kernel-source-rt": "5.3.18-150300.235.1"
        }
    ]
}

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:0495-1.json"

Name: kernel-source-rt
Purl: pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.3.18-150300.235.1

{
    "binaries": [
        {
            "kernel-rt": "5.3.18-150300.235.1",
            "kernel-source-rt": "5.3.18-150300.235.1"
        }
    ]
}

source

"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2026:0495-1.json"