Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Ubuntu 20.04.5 Security Advisory 2025-70714-8 for CVE-2023-51234

suse
Calendar Grey January 28, 2026
Dist Suse Esm H88
Get the latest SUSE Linux Enterprise kernel update addressing critical security issues with 14 fixes and guidance for patches.
An update that solves 14 vulnerabilities and has three fixes can now be installed.

Summary

## This update for the SUSE Linux Enterprise kernel 6.12.0-160000.5.1 fixes various security issues The following security issues were fixed: * CVE-2024-53164: net: sched: fix ordering of qlen adjustment (bsc#1246019). * CVE-2025-38500: xfrm: interface: fix use-after-free after changing collect_md xfrm interface (bsc#1248672). * CVE-2025-38554: mm: fix a UAF when vma->mm is freed after vma->vm_refcnt got dropped (bsc#1248301). * CVE-2025-38572: ipv6: reject malicious packets in ipv6_gso_segment() (bsc#1248400). * CVE-2025-38588: ipv6: prevent infinite loop in rt6_nlmsg_size() (bsc#1249241). * CVE-2025-38608: bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls (bsc#1248670). * CVE-2025-38616: tls: handle data disappearing from under the TLS ULP (bsc#1249537).

References

* bsc#1246019

* bsc#1248301

* bsc#1248400

* bsc#1248631

* bsc#1248670

* bsc#1248672

* bsc#1249207

* bsc#1249208

* bsc#1249241

* bsc#1249537

* bsc#1250192

* bsc#1251956

* bsc#1251982

* bsc#1252270

* bsc#1253437

* bsc#1254196

* bsc#1256928

Cross-

* CVE-2024-53164

* CVE-2025-38500

* CVE-2025-38554

* CVE-2025-38572

* CVE-2025-38588

* CVE-2025-38608

* CVE-2025-38616

* CVE-2025-38617

* CVE-2025-38618

* CVE-2025-38664

* CVE-2025-39682

* CVE-2025-39963

* CVE-2025-40204

* CVE-2025-40212

CVSS scores:

* CVE-2024-53164 ( SUSE ): 5.7

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2024-53164 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2024-53164 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-38500 ( SUSE ): 7.3

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:20149-1
Release Date: 2026-01-26T11:26:25Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here