SUSE has disclosed several vulnerabilities in its Linux kernel that could allow attackers to corrupt data and cause service disruptions. The vulnerabilities, identified in the December 29, 2025 security bulletin SUSE-SU-2025:4530-1, enable attacks that threaten data integrity and can lead to denial of service. Affected versions include openSUSE Leap 15.3, SUSE Enterprise Storage 7.1, multiple SUSE Linux Enterprise releases (High Availability Extension 15 SP3, High Performance Computing 15 SP3, Live Patching 15 SP3, Micro 5.1‑5.2, Server 15 SP3 and variants, Manager 4.2 series) and the SAP Applications and Business Critical Linux builds. To mitigate the risk, administrators should apply the patches referenced in the SUSE bulletin and review the listed CVE identifiers (CVE‑2022‑50280, CVE‑2023‑53659, CVE‑2023‑53676, CVE‑2023‑53717, CVE‑2025‑40040, CVE‑2025‑40121, CVE‑2025‑40154, CVE‑2025‑40204).
Summary of content from
https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0001/
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.