{"id":"SUSE-SU-2026:1768-1","summary":"Security update for the Linux Kernel (Live Patch 39 for SUSE Linux Enterprise 15 SP4)","details":"\nThis update for the SUSE Linux Enterprise kernel 5.14.21-150400.24.161 fixes various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size (bsc#1258073).\n- CVE-2025-39977: futex: Prevent use-after-free during requeue-PI (bsc#1252048).\n- CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1258655).\n- CVE-2026-23204: net/sched: cls_u32: use skb_header_pointer_careful() (bsc#1259126).\n- CVE-2026-31431: crypto: algif_aead - Revert to operating out-of-place (bsc#1263689).\n","modified":"2026-05-09T07:45:41.066254Z","published":"2026-05-08T11:04:47Z","related":["CVE-2025-38375","CVE-2025-39977","CVE-2026-23004","CVE-2026-23204","CVE-2026-31431"],"upstream":["CVE-2025-38375","CVE-2025-39977","CVE-2026-23004","CVE-2026-23204","CVE-2026-31431"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20261768-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1252048"},{"type":"REPORT","url":"https://bugzilla.suse.com/1258073"},{"type":"REPORT","url":"https://bugzilla.suse.com/1258655"},{"type":"REPORT","url":"https://bugzilla.suse.com/1259126"},{"type":"REPORT","url":"https://bugzilla.suse.com/1263689"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38375"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-39977"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-23004"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-23204"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-31431"}],"schema_version":"1.7.5"}