SUSE-SU-2026:0033-1

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

CVE-2022-50280: pnode: terminate at peers of source (bsc#1249806).
CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (bsc#1251786).
CVE-2025-39967: fbcon: fix integer overflow in fbcon_do_set_font (bsc#1252033).
CVE-2025-40040: mm/ksm: fix flag-dropping behavior in ksm_madvise (bsc#1252780).
CVE-2025-40048: uio_hv_generic: Let userspace take care of interrupt mask (bsc#1252862).
CVE-2025-40121: ASoC: Intel: bytcr_rt5651: Fix invalid quirk input mapping (bsc#1253367).
CVE-2025-40154: ASoC: Intel: bytcr_rt5640: Fix invalid quirk input mapping (bsc#1253431).
CVE-2025-40204: sctp: Fix MAC comparison to be constant-time (bsc#1253436).

The following non-security bugs were fixed:

scsi: storvsc: Prefer returning channel with the same CPU as on the I/O issuing CPU (bsc#1252267).

SUSE:Linux Enterprise Micro 5.3kernel-rt

Fixed in:

5.14.21-150400.15.139.2

SUSE:Linux Enterprise Micro 5.3kernel-source-rt

Fixed in:

5.14.21-150400.15.139.1

SUSE:Linux Enterprise Micro 5.4kernel-rt

Fixed in:

5.14.21-150400.15.139.2

SUSE:Linux Enterprise Micro 5.4kernel-source-rt

Fixed in:

5.14.21-150400.15.139.1