The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security
issues
The following security issues were fixed:
* CVE-2025-40257: mptcp: fix a race in mptcp_pm_del_add_timer() (bsc#1254842).
* CVE-2025-40259: scsi: sg: Do not sleep in atomic context (bsc#1254845).
* CVE-2025-68284: libceph: prevent potential out-of-bounds writes in
handle_auth_session_key() (bsc#1255377).
* CVE-2025-68285: libceph: fix potential use-after-free in
have_mon_and_osd_map() (bsc#1255401).
* CVE-2025-68775: net/handshake: duplicate handshake cancellations leak socket
(bsc#1256665).
* CVE-2025-68813: ipvs: fix ipv4 null-ptr-deref in route error path
(bsc#1256641).
* CVE-2025-71085: ipv6: BUG() in pskb_expand_head() as part of
calipso_skbuff_setattr() (bsc#1256623).
* CVE-2025-71089: iommu: disable SVA when CONFIG_X86 is set (bsc#1256612).
* CVE-2025-71112: net: hns3: add VLAN id validation before using
(bsc#1256726).
* CVE-2025-71120: SUNRPC:...
Read the Full Advisory## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2026-471=1 openSUSE-SLE-15.6-2026-471=1
* SUSE Linux Enterprise High Availability Extension 15 SP6
zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2026-471=1
* SUSE Linux Enterprise Server 15 SP6 LTSS
zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-471=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-471=1
* SUSE Linux Enterprise Live Patching 15-SP6
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-471=1
* openSUSE Leap 15.6 (noarch nosrc)
* kernel-docs-6.4.0-150600.23.87.1
* openSUSE Leap 15.6 (noarch)
* kernel-source-6.4.0-150600.23.87.1
* kernel-source-vanilla-6.4.0-150600.23.87.1
* kernel-macros-6.4.0-150600.23.87.1
* kernel-docs-html-6.4.0-150600.23.87.1
* kernel-devel-6.4.0-150600.23.87.1
* openSUSE Leap 15.6 (nosrc ppc64le x86_64)
* kernel-debug-6.4.0-150600.23.87.1
* openSUSE Leap 15.6 (ppc64le x86_64)
* kernel-debug-debuginfo-6.4.0-150600.23.87.1
* kernel-debug-devel-debuginfo-6.4.0-150600.23.87.1
* kernel-debug-devel-6.4.0-150600.23.87.1
* kernel-debug-debugsource-6.4.0-150600.23.87.1
* openSUSE Leap 15.6 (x86_64)
* kernel-default-vdso-debuginfo-6.4.0-150600.23.87.1
* kernel-default-vdso-6.4.0-150600.23.87.1
* kernel-kvmsmall-vdso-debuginfo-6.4.0-150600.23.87.1
* kernel-kvmsmall-vdso-6.4.0-150600.23.87.1
* kernel-debug-vdso-debuginfo-6.4.0-150600.23.87.1
* kernel-debug-vdso-6.4.0-150600.23.87.1
* openSUSE Leap 15.6 (aarch64 ppc64le x86_64)
* kernel-kvmsmall-devel-6.4.0-150600.23.87.1
*...
Read the Full Advisory* bsc#1228490
* bsc#1233563
* bsc#1234842
* bsc#1241437
* bsc#1242909
* bsc#1246184
* bsc#1246447
* bsc#1247030
* bsc#1247712
* bsc#1248211
* bsc#1249307
* bsc#1250032
* bsc#1250082
* bsc#1250705
* bsc#1250748
* bsc#1252511
* bsc#1252712
* bsc#1252900
* bsc#1253087
* bsc#1253451
* bsc#1254378
* bsc#1254447
* bsc#1254465
* bsc#1254510
* bsc#1254767
* bsc#1254842
* bsc#1254845
* bsc#1255377
* bsc#1255401
* bsc#1256528
* bsc#1256609
* bsc#1256610
* bsc#1256612
* bsc#1256616
* bsc#1256617
* bsc#1256623
* bsc#1256641
* bsc#1256664
* bsc#1256665
* bsc#1256682
* bsc#1256726
* bsc#1256728
* bsc#1256759
* bsc#1256779
* bsc#1256792
* bsc#1257154
* bsc#1257158
* bsc#1257232
* bsc#1257236
* bsc#1257296
* bsc#1257332
* bsc#1257473
* bsc#1257603
* jsc#PED-3527
* jsc#PED-5065
* jsc#PED-5475
* jsc#PED-5477
* jsc#PED-5511
* jsc#PED-6041
* jsc#PED-6068
* jsc#PED-6069
* jsc#PED-6070
* jsc#PED-6071
* jsc#PED-6116
* jsc#PED-6120
## References:
* https://www.suse.com/security/cve/CVE-2023-53714.html
* https://www.suse.com/security/cve/CVE-2024-42103.html
*...
Read the Full AdvisoryGet the latest Linux and open source security news straight to your inbox.