The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues
The following security issues were fixed:
Dirty Frag fixes:
- CVE-2026-43500: supported.conf: drop rxrpc completely (bsc#1264450)
- CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags (bsc#1264449).
Patch instructions:
To install this openSUSE security update use the suse recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Leap 16.0
zypper in -t patch openSUSE-Leap-16.0-734=1
- openSUSE Leap 16.0:
cluster-md-kmp-64kb-6.12.0-160000.30.1
cluster-md-kmp-azure-6.12.0-160000.30.1
cluster-md-kmp-default-6.12.0-160000.30.1
cluster-md-kmp-rt-6.12.0-160000.30.1
dlm-kmp-64kb-6.12.0-160000.30.1
dlm-kmp-azure-6.12.0-160000.30.1
dlm-kmp-default-6.12.0-160000.30.1
dlm-kmp-rt-6.12.0-160000.30.1
dtb-allwinner-6.12.0-160000.30.1
dtb-altera-6.12.0-160000.30.1
dtb-amazon-6.12.0-160000.30.1
dtb-amd-6.12.0-160000.30.1
dtb-amlogic-6.12.0-160000.30.1
dtb-apm-6.12.0-160000.30.1
dtb-apple-6.12.0-160000.30.1
dtb-arm-6.12.0-160000.30.1
dtb-broadcom-6.12.0-160000.30.1
dtb-cavium-6.12.0-160000.30.1
dtb-exynos-6.12.0-160000.30.1
dtb-freescale-6.12.0-160000.30.1
dtb-hisilicon-6.12.0-160000.30.1
dtb-lg-6.12.0-160000.30.1
dtb-marvell-6.12.0-160000.30.1
dtb-mediatek-6.12.0-160000.30.1
dtb-nvidia-6.12.0-160000.30.1
dtb-qcom-6.12.0-160000.30.1
dtb-renesas-6.12.0-160000.30.1
dtb-rockchip-6.12.0-160000.30.1
dtb-socionext-6.12.0-160000.30.1
dtb-sprd-6.12.0-160000.30.1
dtb-xilinx-6.12.0-160000.30.1
gfs2-kmp-64kb-6.12.0-160000.3...
Read the Full Advisory* bsc#1264449
* bsc#1264450
References:
* https://www.suse.com/security/cve/CVE-2026-43284.html
* https://www.suse.com/security/cve/CVE-2026-43500.html
Get the latest Linux and open source security news straight to your inbox.