Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 548
Alerts This Week
Warning Icon 1 548

openSUSE Kernel Vital Security Update for CVE-2026-23191 and CVE-2026-23268

opensuse
Calendar Grey April 24, 2026
Dist Opensuse Esm H88
Critical update for openSUSE kernel fixes significant security issues and risks; timely installation recommended.
An update that solves two vulnerabilities can now be installed.

Description

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.187 fixes

various security issues

The following security issues were fixed:

* CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger (bsc#1258396).

* CVE-2026-23268: apparmor: fix unprivileged local user can do privileged

policy management (bsc#1259859).

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* SUSE Linux Enterprise Live Patching 12-SP5

zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-1584=1 SUSE-SLE-Live-

Patching-12-SP5-2026-1585=1 SUSE-SLE-Live-Patching-12-SP5-2026-1586=1 SUSE-SLE-

Live-Patching-12-SP5-2026-1587=1 SUSE-SLE-Live-Patching-12-SP5-2026-1588=1 SUSE-

SLE-Live-Patching-12-SP5-2026-1589=1

* openSUSE Leap 15.4

zypper in -t patch SUSE-2026-1591=1

* SUSE Linux Enterprise Live Patching 15-SP4

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-1591=1

Package List

* SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64)

* kgraft-patch-4_12_14-122_290-default-5-2.1

* kgraft-patch-4_12_14-122_275-default-7-2.1

* kgraft-patch-4_12_14-122_283-default-5-2.1

* kgraft-patch-4_12_14-122_293-default-4-2.1

* kgraft-patch-4_12_14-122_272-default-9-2.1

* kgraft-patch-4_12_14-122_280-default-5-2.1

* openSUSE Leap 15.4 (ppc64le s390x x86_64)

* kernel-livepatch-5_14_21-150400_24_187-default-debuginfo-5-150400.2.1

* kernel-livepatch-5_14_21-150400_24_187-default-5-150400.2.1

* kernel-livepatch-SLE15-SP4_Update_47-debugsource-5-150400.2.1

* SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64)

* kernel-livepatch-5_14_21-150400_24_187-default-debuginfo-5-150400.2.1

* kernel-livepatch-5_14_21-150400_24_187-default-5-150400.2.1

* kernel-livepatch-SLE15-SP4_Update_47-debugsource-5-150400.2.1

References

* bsc#1258396

* bsc#1259859

## References:

* https://www.suse.com/security/cve/CVE-2026-23191.html

* https://www.suse.com/security/cve/CVE-2026-23268.html

* https://bugzilla.suse.com/show_bug.cgi?id=1258396

* https://bugzilla.suse.com/show_bug.cgi?id=1259859

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:1584-1
Release Date: 2026-04-24T06:34:01Z
Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.