SUSE-SU-2026%3A20392-1
This update for the SUSE Linux Enterprise kernel 6.4.0-25.1 fixes various security issues The following security issues were fixed: - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show() (bsc#1251787). - CVE-2025-38476: rpl: Fix use-after-free in rpl_do_srh_inline() (bsc#1251203). - CVE-2025-38572: ipv6: reject malicious packets in ipv6_gso_segment() (bsc#1248400). - CVE-2025-38588: ipv6: prevent infinite loop in rt6_nlmsg_size() (bsc#1249241). - CVE-2025-38608: bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls (bsc#1248670). - CVE-2025-39682: tls: fix handling of zero-length records on the rx_list (bsc#1250192). - CVE-2025-40204: sctp: Fix MAC comparison to be constant-time (bsc#1253437).
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE:Linux Micro 6.1 | kernel-livepatch-MICRO-6-0-RT_Update_5 | 0, 0 |
Timeline
- Jan 19, 2026 CVE Published
- Mar 23, 2026 CVE Updated
References
- https://www.suse.com/support/update/announcement/2026/suse-su-202620392-1/ advisory
- https://bugzilla.suse.com/1248400 report
- https://bugzilla.suse.com/1248670 report
- https://bugzilla.suse.com/1249241 report
- https://bugzilla.suse.com/1250192 report
- https://bugzilla.suse.com/1251203 report
- https://bugzilla.suse.com/1251787 report
- https://bugzilla.suse.com/1253437 report
- https://www.suse.com/security/cve/CVE-2023-53676 url
- https://www.suse.com/security/cve/CVE-2025-38476 url
- https://www.suse.com/security/cve/CVE-2025-38572 url
- https://www.suse.com/security/cve/CVE-2025-38588 url
- https://www.suse.com/security/cve/CVE-2025-38608 url
- https://www.suse.com/security/cve/CVE-2025-39682 url
- https://www.suse.com/security/cve/CVE-2025-40204 url