Alerts This Week
Warning Icon 1 666
Alerts This Week
Warning Icon 1 666

openSUSE 15.4: SUSE-SU-2025:1257-1 important: kernel issues resolved

opensuse
Calendar Grey April 14, 2025
Dist Opensuse Esm H88
The latest openSUSE release brings pivotal enhancements to the Linux Kernel, successfully tackling significant security vulnerabilities.
An update that solves two vulnerabilities can now be installed.

Description

This update for the Linux Kernel 5.14.21-150400_24_116 fixes several issues.

The following security issues were fixed:

* CVE-2024-41090: tap: add missing verification for short frame (bsc#1228714).

* CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in

inet6_create() (bsc#1235218).

Topics%20covered

Topics Covered

security advisory kernel update important fix network issue openSUSE critical improvement

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* SUSE Linux Enterprise Live Patching 15-SP4

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2025-1257=1

* openSUSE Leap 15.4

zypper in -t patch SUSE-2025-1257=1

Package List

* SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64)

* kernel-livepatch-SLE15-SP4_Update_25-debugsource-16-150400.2.1

* kernel-livepatch-5_14_21-150400_24_116-default-16-150400.2.1

* kernel-livepatch-5_14_21-150400_24_116-default-debuginfo-16-150400.2.1

* openSUSE Leap 15.4 (ppc64le s390x x86_64)

* kernel-livepatch-SLE15-SP4_Update_25-debugsource-16-150400.2.1

* kernel-livepatch-5_14_21-150400_24_116-default-16-150400.2.1

* kernel-livepatch-5_14_21-150400_24_116-default-debuginfo-16-150400.2.1

References

* bsc#1228714

* bsc#1235218

## References:

* https://www.suse.com/security/cve/CVE-2024-41090.html

* https://www.suse.com/security/cve/CVE-2024-56600.html

* https://bugzilla.suse.com/show_bug.cgi?id=1228714

* https://bugzilla.suse.com/show_bug.cgi?id=1235218

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:1257-1
Release Date: 2025-04-14T16:33:37Z
Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4

Topics%20covered

Topics Covered

security advisory kernel update important fix network issue openSUSE critical improvement

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here