SUSE-SU-2026%3A21005-1
This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.9.1 fixes various security issues The following security issues were fixed: - CVE-2025-71120: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf (bsc#1256780). - CVE-2026-22999: net/sched: sch_qfq: do not free existing class in qfq_change_class() (bsc#1257238). - CVE-2026-23074: net/sched: Enforce that teql can only be used as root qdisc (bsc#1258051). - CVE-2026-23111: netfilter: nf_tables: fix inverted genmask check in nft_map_catchall_activate() (bsc#1258183). - CVE-2026-23209: macvlan: fix error recovery in macvlan_common_newlink() (bsc#1258784).
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE:Linux Micro 6.2 | kernel-livepatch-SLE16-RT_Update_4 | 0, 0 |
Timeline
- Apr 9, 2026 CVE Published
- Apr 14, 2026 CVE Updated
References
- https://www.suse.com/support/update/announcement/2026/suse-su-202621005-1/ advisory
- https://bugzilla.suse.com/1256780 report
- https://bugzilla.suse.com/1257238 report
- https://bugzilla.suse.com/1258051 report
- https://bugzilla.suse.com/1258183 report
- https://bugzilla.suse.com/1258784 report
- https://www.suse.com/security/cve/CVE-2025-71120 url
- https://www.suse.com/security/cve/CVE-2026-22999 url
- https://www.suse.com/security/cve/CVE-2026-23074 url
- https://www.suse.com/security/cve/CVE-2026-23111 url
- https://www.suse.com/security/cve/CVE-2026-23209 url