Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: kernel-livepatch-MICRO Important Updates Address Multiple Issues

suse
Calendar Grey September 26, 2025
Dist Suse Esm H88
Critical update for SUSE Linux Micro 6.0 addressing multiple vulnerabilities, enhancing system stability and security.
* bsc#1231862 * bsc#1245685 * bsc#1245795 * bsc#1246001 * bsc#1246356

Summary

## This update for kernel-livepatch-MICRO-6-0_Update_2 fixes the following issues: * CVE-2024-49860: ACPI: sysfs: validate return type of _STR method (bsc#1231862) * CVE-2025-38177: kernel: sch_hfsc: make hfsc_qlen_notify() idempotent (bsc#1246356) * CVE-2025-38109: net/mlx5: fix ECVF vports unload on shutdown flow (bsc#1245685) * CVE-2025-38181: calipso: fix null-ptr-deref in calipso_req_{set,del}attr() (bsc#1246001) * CVE-2025-21756: vsock: Keep the binding until socket destruction (bsc#1245795) * CVE-2025-38498: do_change_type(): refuse to operate on unmounted/not ours mounts (bsc#1247499) * CVE-2025-38555: usb: gadget : fix use-after-free in composite_dev_cleanup() (bsc#1248298) ## Patch Instructions:

Topics%20covered

Topics Covered

security advisory security issue SuSE DoS important kernel livepatch

References

* bsc#1231862

* bsc#1245685

* bsc#1245795

* bsc#1246001

* bsc#1246356

* bsc#1247499

* bsc#1248298

Cross-

* CVE-2024-49860

* CVE-2025-21756

* CVE-2025-38109

* CVE-2025-38177

* CVE-2025-38181

* CVE-2025-38498

* CVE-2025-38555

CVSS scores:

* CVE-2024-49860 ( SUSE ): 8.5

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

* CVE-2024-49860 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2024-49860 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

* CVE-2025-21756 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2025-21756 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2025-38109 ( SUSE ): 8.5

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:20723-1
Release Date: 2025-09-23T07:54:18Z
Rating: important

Topics%20covered

Topics Covered

security advisory security issue SuSE DoS important kernel livepatch

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here