This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.30 fixes
various security issues
The following security issues were fixed:
* CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in
lio_target_nacl_info_show() (bsc#1251787).
* CVE-2024-57849: s390/cpum_sf: handle CPU hotplug remove during sampling
(bsc#1235815).
* CVE-2025-38476: rpl: Fix use-after-free in rpl_do_srh_inline()
(bsc#1251203).
* CVE-2025-38572: ipv6: reject malicious packets in ipv6_gso_segment()
(bsc#1248400).
* CVE-2025-38588: ipv6: prevent infinite loop in rt6_nlmsg_size()
(bsc#1249241).
* CVE-2025-38608: bpf, ktls: Fix data corruption when using bpf_msg_pop_data()
in ktls (bsc#1248670).
* CVE-2025-39682: tls: fix handling of zero-length records on the rx_list
(bsc#1250192).
* CVE-2025-40204: sctp: Fix MAC comparison to be constant-time (bsc#1253437).
The following non security issue was fixed:
* fix addr_bit_set() issue on big-endian machines...
Read the Full Advisory## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-269=1
* SUSE Linux Enterprise Live Patching 15-SP6
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-269=1
* openSUSE Leap 15.6 (ppc64le s390x x86_64)
* kernel-livepatch-6_4_0-150600_23_30-default-debuginfo-17-150600.2.1
* kernel-livepatch-6_4_0-150600_23_30-default-17-150600.2.1
* kernel-livepatch-SLE15-SP6_Update_6-debugsource-17-150600.2.1
* SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64)
* kernel-livepatch-6_4_0-150600_23_30-default-debuginfo-17-150600.2.1
* kernel-livepatch-6_4_0-150600_23_30-default-17-150600.2.1
* kernel-livepatch-SLE15-SP6_Update_6-debugsource-17-150600.2.1
* bsc#1235815
* bsc#1248400
* bsc#1248670
* bsc#1249241
* bsc#1250192
* bsc#1251203
* bsc#1251787
* bsc#1253437
* bsc#1256928
## References:
* https://www.suse.com/security/cve/CVE-2023-53676.html
* https://www.suse.com/security/cve/CVE-2024-57849.html
* https://www.suse.com/security/cve/CVE-2025-38476.html
* https://www.suse.com/security/cve/CVE-2025-38572.html
* https://www.suse.com/security/cve/CVE-2025-38588.html
* https://www.suse.com/security/cve/CVE-2025-38608.html
* https://www.suse.com/security/cve/CVE-2025-39682.html
* https://www.suse.com/security/cve/CVE-2025-40204.html
* https://bugzilla.suse.com/show_bug.cgi?id=1235815
* https://bugzilla.suse.com/show_bug.cgi?id=1248400
* https://bugzilla.suse.com/show_bug.cgi?id=1248670
* https://bugzilla.suse.com/show_bug.cgi?id=1249241
* https://bugzilla.suse.com/show_bug.cgi?id=1250192
* https://bugzilla.suse.com/show_bug.cgi?id=1251203
* https://bugzilla.suse.com/show_bug.cgi?id=1251787
* https://bugzilla.suse.com/show_bug.cgi?id=1253437
*...
Read the Full AdvisoryGet the latest Linux and open source security news straight to your inbox.