Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 22 articles for you...
100

SUSE Linux Micro 6.0 Kernel Important CVE Fixes Advisory 2026-22426-1

An update that solves five vulnerabilities and has one fix can now be installed.. # Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise Micro 6.0) Announcement ID: SUSE-SU-2026:22426-1 Release Date: 2026-06-25T11:36:36Z Rating: important References: * bsc#1261640 * bsc#1263088 * bsc#1263902 * bsc#1266229 * bsc#1267625 * bsc#1268282 Cross-References: * CVE-2026-31402 * CVE-2026-31504 * CVE-2026-31694 * CVE-2026-43503 * CVE-2026-46323 CVSS scores: * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31402 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46323 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves five vulnerabilities andhas one fix can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-44.1 fixes various security issues The following security issues were fixed: * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261640). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263088). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263902). * CVE-2026-43503: final dirty.frag related fixes (bsc#1266229). * CVE-2026-46323: net: gro: don't merge zcopy skbs (bsc#1268282). * net/sched: fix pedit partial COW leading to page cache (bsc#1267625). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-kernel-493=1 ## Package List: * SUSE Linux Micro 6.0 (s390x x86_64) * kernel-livepatch-MICRO-6-0_Update_21-debugsource-2-1.1 * kernel-livepatch-6_4_0-44-default-debuginfo-2-1.1 * kernel-livepatch-6_4_0-44-default-2-1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46323.html * https://bugzilla.suse.com/show_bug.cgi?id=1261640 * https://bugzilla.suse.com/show_bug.cgi?id=1263088 * https://bugzilla.suse.com/show_bug.cgi?id=1263902 * https://bugzilla.suse.com/show_bug.cgi?id=1266229 * https://bugzilla.suse.com/show_bug.cgi?id=1267625 * https://bugzilla.suse.com/show_bug.cgi?id=1268282 . An important SUSE update addressing five vulnerabilities related to the Linux kernel is now available for installation.. SUSE update, kernel security, important patch, Linux vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jul 03, 2026 Important SuSE
202

openSUSE Kernel Important Update Security Issues 2026-2608-1

An update that solves five vulnerabilities and has one security fix can now be installed.. # Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP6) Announcement ID: SUSE-SU-2026:2608-1 Release Date: 2026-06-24T07:34:36Z Rating: important References: * bsc#1261640 * bsc#1263088 * bsc#1263902 * bsc#1266229 * bsc#1267625 * bsc#1268282 Cross-References: * CVE-2026-31402 * CVE-2026-31504 * CVE-2026-31694 * CVE-2026-43503 * CVE-2026-46323 CVSS scores: * CVE-2026-31402 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N * CVE-2026-31402 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2026-31402 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31504 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31504 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-31694 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-31694 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-43503 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-43503 ( SUSE ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-43503 ( NVD ): 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-46323 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-46323 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Live Patching 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves five vulnerabilities and has one security fix can nowbe installed. ## Description: This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.103 fixes various security issues The following security issues were fixed: * CVE-2026-31402: nfsd: fix heap overflow in NFSv4.0 LOCK replay cache (bsc#1261640). * CVE-2026-31504: net: fix fanout UAF in packet_release() via NETDEV_UP race (bsc#1263088). * CVE-2026-31694: fuse: reject oversized dirents in page cache (bsc#1263902). * CVE-2026-43503: final dirty.frag related fixes (bsc#1266229). * CVE-2026-46323: net: gro: don't merge zcopy skbs (bsc#1268282). * net/sched: fix pedit partial COW leading to page cache (bsc#1267625). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2608=1 * SUSE Linux Enterprise Live Patching 15-SP6 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2026-2608=1 ## Package List: * SUSE Linux Enterprise Live Patching 15-SP6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_103-default-3-150600.2.1 * kernel-livepatch-6_4_0-150600_23_103-default-debuginfo-3-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_24-debugsource-3-150600.2.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * kernel-livepatch-6_4_0-150600_23_103-default-3-150600.2.1 * kernel-livepatch-6_4_0-150600_23_103-default-debuginfo-3-150600.2.1 * kernel-livepatch-SLE15-SP6_Update_24-debugsource-3-150600.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-31402.html * https://www.suse.com/security/cve/CVE-2026-31504.html * https://www.suse.com/security/cve/CVE-2026-31694.html * https://www.suse.com/security/cve/CVE-2026-43503.html * https://www.suse.com/security/cve/CVE-2026-46323.html * https://bugzilla.suse.com/show_bug.cgi?id=1261640 * https://bugzilla.suse.com/show_bug.cgi?id=1263088 *https://bugzilla.suse.com/show_bug.cgi?id=1263902 * https://bugzilla.suse.com/show_bug.cgi?id=1266229 * https://bugzilla.suse.com/show_bug.cgi?id=1267625 * https://bugzilla.suse.com/show_bug.cgi?id=1268282 . Critical patch for openSUSE Kernel addressing five important security issues with prompt installation recommended.. openSUSE kernel patch, security fix, important vulnerabilities, enterprise Linux security. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 24, 2026 Important OpenSUSE
100

SUSE: Kernel-Livepatch Important Fixes for CVEs 2025:21107-1

* bsc#1242882 * bsc#1245778 * bsc#1248672 * bsc#1249537 . # Security update for kernel-livepatch-MICRO-6-0_Update_4 Announcement ID: SUSE-SU-2025:21107-1 Release Date: 2025-11-28T08:19:28Z Rating: important References: * bsc#1242882 * bsc#1245778 * bsc#1248672 * bsc#1249537 Cross-References: * CVE-2024-53141 * CVE-2025-23145 * CVE-2025-38500 * CVE-2025-38616 CVSS scores: * CVE-2024-53141 ( SUSE ): 8.5 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-53141 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-53141 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23145 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-23145 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23145 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2025-38500 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-38500 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38500 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-38616 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H * CVE-2025-38616 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves four vulnerabilities can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0_Update_4 fixes the following issues: * CVE-2025-23145: mptcp: fix NULL pointer in can_accept_new_subflow (bsc#1242882) * CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1245778) * CVE-2025-38500: xfrm: interface: fix use-after-free after changing collect_md xfrm interface (bsc#1248672) * CVE-2025-38616: tls: handle data disappearing from under the TLS ULP (bsc#1249537) ## Patch Instructions: To install this SUSE update use the SUSE recommendedinstallation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-219=1 ## Package List: * SUSE Linux Micro 6.1 (s390x x86_64) * kernel-livepatch-6_4_0-24-default-14-1.2 * kernel-livepatch-6_4_0-24-default-debuginfo-14-1.2 * kernel-livepatch-MICRO-6-0_Update_4-debugsource-14-1.2 ## References: * https://www.suse.com/security/cve/CVE-2024-53141.html * https://www.suse.com/security/cve/CVE-2025-23145.html * https://www.suse.com/security/cve/CVE-2025-38500.html * https://www.suse.com/security/cve/CVE-2025-38616.html * https://bugzilla.suse.com/show_bug.cgi?id=1242882 * https://bugzilla.suse.com/show_bug.cgi?id=1245778 * https://bugzilla.suse.com/show_bug.cgi?id=1248672 * https://bugzilla.suse.com/show_bug.cgi?id=1249537 . Kernel-livepatch-MICRO security update addresses critical issues and improves system stability for SUSE users.. SUSE kernel-livepatch security patch, important security update, 2025 security advisory. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Dec 09, 2025 Important SuSE
100

SUSE: Chrony Moderate Privilege Escalation Fix 2025:3868-1

* bsc#1194220 * bsc#1194229 * bsc#1213551 * bsc#1246544 . # Security update for chrony Announcement ID: SUSE-SU-2025:3868-1 Release Date: 2025-10-30T13:44:59Z Rating: moderate References: * bsc#1194220 * bsc#1194229 * bsc#1213551 * bsc#1246544 Affected Products: * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that has four security fixes can now be installed. ## Description: This update for chrony fixes the following issues: Security issues fixed: \- Race condition during socket creation by chronyc allows privilege escalation from user chrony to root (bsc#1246544). Other issues fixed: \- Improve connection retry intervals when facing NTS-KE related issues (bsc#1213551). * nts: use shorter NTS-KE retry interval when network is down. * ntp: don't adjust poll interval when waiting for NTS-KE. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3868=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * chrony-4.1-5.12.1 * chrony-debuginfo-4.1-5.12.1 * chrony-debugsource-4.1-5.12.1 ## References: * https://bugzilla.suse.com/show_bug.cgi?id=1194220 * https://bugzilla.suse.com/show_bug.cgi?id=1194229 * https://bugzilla.suse.com/show_bug.cgi?id=1213551 * https://bugzilla.suse.com/show_bug.cgi?id=1246544 . SUSE updates chrony to fix four moderate-level security issues, including privilege escalation vulnerabilities.. SUSE security update, chrony patch, moderate-level issues, network security. . LinuxSecurity.com Team

Calendar%202 Oct 30, 2025 SuSE
172

Ubuntu 20.04 LTS: Linux Kernel Important Issues Fix USN-7754-2

Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7754-2 September 17, 2025 linux-aws-fips, linux-fips, linux-gcp-fips vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-aws-fips: Linux kernel for Amazon Web Services (AWS) systems with FIPS - linux-fips: Linux kernel with FIPS - linux-gcp-fips: Linux kernel for Google Cloud Platform (GCP) systems with FIPS Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network traffic control; (CVE-2025-38350, CVE-2025-37752, CVE-2024-57996) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS linux-image-5.4.0-1124-fips 5.4.0-1124.134 Available with Ubuntu Pro linux-image-5.4.0-1150-aws-fips 5.4.0-1150.160+fips1 Available with Ubuntu Pro linux-image-5.4.0-1153-gcp-fips 5.4.0-1153.162+fips1 Available with Ubuntu Pro linux-image-aws-fips 5.4.0.1150.97 Available with Ubuntu Pro linux-image-aws-fips-5.4 5.4.0.1150.97 Available with Ubuntu Pro linux-image-fips 5.4.0.1124.121 Available with Ubuntu Pro linux-image-fips-5.4 5.4.0.1124.121 Available with Ubuntu Pro linux-image-gcp-fips 5.4.0.1153.95 Available with UbuntuPro linux-image-gcp-fips-5.4 5.4.0.1153.95 Available with Ubuntu Pro After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7754-2 https://ubuntu.com/security/notices/USN-7754-1 CVE-2024-57996, CVE-2025-37752, CVE-2025-38350 Package Information: . Various vulnerabilities in the Linux kernel addressed in Ubuntu for AWS and GCP to safeguard against potential system breaches.. Ubuntu Security Notice, linux-aws-fips, linux-gcp-fips, Linux kernel updates, system security. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Sep 17, 2025 Important Ubuntu
100

SUSE Linux Micro: Important Kernel-Livepatch Update 2025:20621-1

* bsc#1245776 * bsc#1245793 * bsc#1245797 Cross-References: . # Security update for kernel-livepatch-MICRO-6-0-RT_Update_5 Announcement ID: SUSE-SU-2025:20621-1 Release Date: 2025-08-25T12:45:12Z Rating: important References: * bsc#1245776 * bsc#1245793 * bsc#1245797 Cross-References: * CVE-2025-21702 * CVE-2025-37752 * CVE-2025-37797 CVSS scores: * CVE-2025-21702 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-37752 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-37797 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves three vulnerabilities can now be installed. ## Description: This update for kernel-livepatch-MICRO-6-0-RT_Update_5 fixes the following issues: * CVE-2025-37752: net_sched: sch_sfq: move the limit validation (bsc#1245776) * CVE-2025-37797: net_sched: hfsc: Fix a UAF vulnerability in class handling (bsc#1245793) * CVE-2025-21702: pfifo_tail_enqueue: Drop new packet when sch-> limit == 0 (bsc#1245797) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-kernel-69=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * kernel-livepatch-6_4_0-25-rt-5-1.1 * kernel-livepatch-MICRO-6-0-RT_Update_5-debugsource-5-1.1 * kernel-livepatch-6_4_0-25-rt-debuginfo-5-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-21702.html * https://www.suse.com/security/cve/CVE-2025-37752.html * https://www.suse.com/security/cve/CVE-2025-37797.html * https://bugzilla.suse.com/show_bug.cgi?id=1245776 * https://bugzilla.suse.com/show_bug.cgi?id=1245793 * https://bugzilla.suse.com/show_bug.cgi?id=1245797 . Revision for kernel-livepatch targeting vulnerabilities impacting SUSELinux Micro, essential for safeguarding and operational integrity of systems.. SUSE Linux Micro, kernel-livepatch, install update, network issues. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Aug 29, 2025 Important SuSE
172

Ubuntu 25.04: Linux-AWS Critical Kernel Issues USN-7649-2

Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7649-2 July 22, 2025 linux-aws vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.04 Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-aws: Linux kernel for Amazon Web Services (AWS) systems Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; - Compute Acceleration Framework; - Ublk userspace block driver; - Bluetooth drivers; - ARM SCMI message protocol; - GPU drivers; - IOMMU subsystem; - IRQ chip drivers; - Multiple devices driver; - Network drivers; - PCI subsystem; - PTP clock framework; - SPI subsystem; - BTRFS file system; - SMB network file system; - eXpress Data Path; - Universal MIDI packet (UMP) support module; - Tracing infrastructure; - Memory management; - IPv4 networking; - IPv6 networking; - Network traffic control; - AMD SoC Alsa drivers; - SoC Audio generic drivers; (CVE-2025-37974, CVE-2025-37931, CVE-2025-37990, CVE-2025-37921, CVE-2025-37917, CVE-2025-37908, CVE-2025-37906, CVE-2025-37896, CVE-2025-37919, CVE-2025-37909, CVE-2025-37934, CVE-2025-37897, CVE-2025-37912, CVE-2025-37923, CVE-2025-37904, CVE-2025-37894, CVE-2025-38216, CVE-2025-37930, CVE-2025-37935, CVE-2025-37910, CVE-2025-37933, CVE-2025-37916, CVE-2025-37907, CVE-2025-37913, CVE-2025-37905, CVE-2025-37918, CVE-2025-37915, CVE-2025-37927, CVE-2025-37991, CVE-2025-37929, CVE-2025-37924, CVE-2025-37920, CVE-2025-37901, CVE-2025-37900, CVE-2025-37922, CVE-2025-37898, CVE-2025-37946, CVE-2025-37914,CVE-2025-37936, CVE-2025-37926, CVE-2025-37899, CVE-2025-37895, CVE-2025-37903, CVE-2025-37911, CVE-2025-37891, CVE-2025-37928) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.04 linux-image-6.14.0-1009-aws 6.14.0-1009.9 linux-image-6.14.0-1009-aws-64k 6.14.0-1009.9 linux-image-aws 6.14.0-1009.9 linux-image-aws-6.14 6.14.0-1009.9 linux-image-aws-64k 6.14.0-1009.9 linux-image-aws-64k-6.14 6.14.0-1009.9 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7649-2 https://ubuntu.com/security/notices/USN-7649-1 CVE-2025-37891, CVE-2025-37894, CVE-2025-37895, CVE-2025-37896, CVE-2025-37897, CVE-2025-37898, CVE-2025-37899, CVE-2025-37900, CVE-2025-37901, CVE-2025-37903, CVE-2025-37904, CVE-2025-37905, CVE-2025-37906, CVE-2025-37907, CVE-2025-37908, CVE-2025-37909, CVE-2025-37910, CVE-2025-37911, CVE-2025-37912, CVE-2025-37913, CVE-2025-37914, CVE-2025-37915, CVE-2025-37916, CVE-2025-37917, CVE-2025-37918, CVE-2025-37919, CVE-2025-37920, CVE-2025-37921, CVE-2025-37922, CVE-2025-37923, CVE-2025-37924, CVE-2025-37926, CVE-2025-37927, CVE-2025-37928, CVE-2025-37929, CVE-2025-37930, CVE-2025-37931, CVE-2025-37933, CVE-2025-37934, CVE-2025-37935, CVE-2025-37936, CVE-2025-37946, CVE-2025-37974, CVE-2025-37990, CVE-2025-37991, CVE-2025-38216 Package Information: https://launchpad.net/ubuntu/+source/linux-aws/6.14.0-1009.9 . Addressing majorvulnerabilities in the Linux kernel for Ubuntu 25.04 on AWS significantly enhances system protection.. Linux security, kernel update, Ubuntu AWS, critical vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jul 22, 2025 Critical Ubuntu
172

Ubuntu 24.10 USN-7610-2 critical: addressing linux kernel vulnerabilities

Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7610-2 July 08, 2025 linux-lowlatency, linux-oem-6.11 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.10 - Ubuntu 24.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-lowlatency: Linux low latency kernel - linux-oem-6.11: Linux kernel for OEM systems Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; (CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-37932, CVE-2025-37890) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.10 linux-image-6.11.0-1016-lowlatency 6.11.0-1016.17 linux-image-6.11.0-1016-lowlatency-64k 6.11.0-1016.17 linux-image-lowlatency 6.11.0-1016.17 linux-image-lowlatency-6.11 6.11.0-1016.17 linux-image-lowlatency-64k 6.11.0-1016.17 linux-image-lowlatency-64k-6.11 6.11.0-1016.17 Ubuntu 24.04 LTS linux-image-6.11.0-1025-oem 6.11.0-1025.25 linux-image-oem-24.04b 6.11.0-1025.25 linux-image-oem-6.11 6.11.0-1025.25 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), astandard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7610-2 https://ubuntu.com/security/notices/USN-7610-1 CVE-2025-37798, CVE-2025-37890, CVE-2025-37932, CVE-2025-37997, CVE-2025-38000, CVE-2025-38001 Package Information: https://launchpad.net/ubuntu/+source/linux-lowlatency/6.11.0-1016.17 https://launchpad.net/ubuntu/+source/linux-oem-6.11/6.11.0-1025.25 . Recent enhancements for Ubuntu 24.10 and 24.04 LTS have been implemented to address kernel problems impacting your hardware.. Kernel Security, Ubuntu Updates, System Compromise, Network Control. . Severity: Critical. LinuxSecurity.com Team

Calendar%202 Jul 08, 2025 Critical Ubuntu
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200