## This update for the SUSE Linux Enterprise kernel 6.12.0-160000.5.1 fixes various security issues The following security issues were fixed: * CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1246019). * CVE-2025-38500: xfrm: interface: fix use-after-free after changing collect_md xfrm interface (bsc#1248672). * CVE-2025-38554: mm: fix a UAF when vma->mm is freed after vma->vm_refcnt got dropped (bsc#1248301). * CVE-2025-38572: ipv6: reject malicious packets in ipv6_gso_segment() (bsc#1248400). * CVE-2025-38588: ipv6: prevent infinite loop in rt6_nlmsg_size() (bsc#1249241). * CVE-2025-38608: bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls (bsc#1248670). * CVE-2025-38616: tls: handle data disappearing from under the TLS ULP (bsc#1249537).
* bsc#1246019
* bsc#1248301
* bsc#1248400
* bsc#1248631
* bsc#1248670
* bsc#1248672
* bsc#1249207
* bsc#1249208
* bsc#1249241
* bsc#1249537
* bsc#1250192
* bsc#1251982
* bsc#1252270
* bsc#1253437
* bsc#1254196
Cross-
* CVE-2024-53164
* CVE-2025-38500
* CVE-2025-38554
* CVE-2025-38572
* CVE-2025-38588
* CVE-2025-38608
* CVE-2025-38616
* CVE-2025-38617
* CVE-2025-38618
* CVE-2025-38664
* CVE-2025-39682
* CVE-2025-39963
* CVE-2025-40204
* CVE-2025-40212
CVSS scores:
* CVE-2024-53164 ( SUSE ): 5.7
CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-53164 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-53164 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
* CVE-2025-38500 ( SUSE ): 7.3
Get the latest Linux and open source security news straight to your inbox.