Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 568
Alerts This Week
Warning Icon 1 568

SUSE Linux Enterprise 11 SP4 Kernel Important Security Update 2026-2839-1

suse
Calendar Grey July 10, 2026
Dist Suse Esm H88
SUSE's advisory 2026-2839-1 addresses important kernel security issues for Enterprise Server 11 SP4. Take necessary actions today.
An update that solves 10 vulnerabilities and has one security fix can now be installed.

Summary

## The SUSE Linux Enterprise 11 SP4 kernel was updated to fix various security issues The following security issues were fixed: * CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work (bsc#1255416). * CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). * CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). * CVE-2026-46090: ALSA: aloop: Fix peer runtime UAF during format-change stop (bsc#1267531). * CVE-2026-46113: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN (bsc#1266969). * CVE-2026-46266: inet: RAW sockets using IPPROTO_RAW MUST drop incoming ICMP (bsc#1267684). * CVE-2026-46331: net/sched: fix pedit partial COW leading to page cache (bsc#1265421).

References

* bsc#1255416

* bsc#1264610

* bsc#1265421

* bsc#1266214

* bsc#1266969

* bsc#1267205

* bsc#1267531

* bsc#1267684

* bsc#1269100

* bsc#1269574

* bsc#1270059

Cross-

* CVE-2025-68324

* CVE-2026-43198

* CVE-2026-45970

* CVE-2026-46090

* CVE-2026-46113

* CVE-2026-46266

* CVE-2026-46331

* CVE-2026-52918

* CVE-2026-53253

* CVE-2026-53359

CVSS scores:

* CVE-2025-68324 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

* CVE-2026-43198 ( SUSE ): 7.3

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

* CVE-2026-43198 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2026-43198 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

* CVE-2026-43198 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

* CVE-2026-45970 ( SUSE ): 7.3

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:2839-1
Release Date: 2026-07-10T09:09:31Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.