VDB

SUSE-SU-2026%3A0475-1

SUSE-SU-2026%3A0475-1 PUBLISHED CVSS 8.699999809265137 HIGH

The SUSE Linux Enterprise 15 SP3 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit (bsc#1255594). - CVE-2025-38129: page_pool: fix inconsistency for page_pool_ring_lock() (bsc#1245723). - CVE-2025-40139: net: ipv4: Consolidate ipv4_mtu and ip_dst_mtu_maybe_forward (bsc#1253409). - CVE-2025-68312: usbnet: Prevents free active kevent (bsc#1255171). - CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr() (bsc#1256623). - CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612). - CVE-2025-71112: net: hns3: add VLAN id validation before using (bsc#1256726). - CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257236). - CVE-2026-23001: macvlan: Use 'hash' iterators to simplify code (bsc#1257232).

Risk Scores

CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

VendorProductVersions
SUSE:Linux Enterprise Micro 5.2kernel-default0, 0
SUSE:Linux Enterprise Micro 5.2kernel-default-base0, 0

Timeline

  • Feb 12, 2026 CVE Published
  • Mar 23, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›