Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-10263: arm64: Add workaround for Cortex-A76 erratum 1286807 (bsc#1266290). - CVE-2025-40253: s390/ctcm: Fix double-kfree (bsc#1255084). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-3150: bcache: fix cached_dev.sb_bio use-after-free and crash (bsc#1263169). - CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). - CVE-2026-23279: wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() (bsc#1260468). - CVE-2026-23303: smb: client: Don't log plaintext credentials in cifs_set_cifscreds (bsc#1260502). - CVE-2026-23367: wifi: radiotap: reject radiotap with unknown bits (bsc#1260731). - CVE-2026-23396: wifi: mac80211: fix NULL deref in mesh_matches_local() (bsc#1260729). - CVE-2026-23444: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure (bsc#1266307). - CVE-2026-23448: net: usb: cdc_ncm: add ndpoffset to NDP16 nframes bounds check (bsc#1261750). - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables (bsc#1261700). - CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). - CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). - CVE-2026-31447: ext4: reject mount if bigalloc with s_first_data_block != 0 (bsc#1262614). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31464: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() (bsc#1262656). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false (bsc#1267816). - CVE-2026-31498: Bluetooth: L2CAP: Fix ERTM re-init and zero pdu_len infinite loop (bsc#1262751). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). - CVE-2026-31516: xfrm: prevent policy_hthresh.work from racing with netns teardown (bsc#1262755). - CVE-2026-31532: can: af_can: export can_sock_destruct() (bsc#1262757). - CVE-2026-31540: drm/i915/gt: Check set_default_submission() before deferencing (bsc#1263011). - CVE-2026-31546: net: bonding: fix NULL deref in bond_debug_rlb_hash_show (bsc#1263006). - CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). - CVE-2026-31590: KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION (bsc#1263152). - CVE-2026-31596: ocfs2: handle invalid dinode in ocfs2_group_extend (bsc#1263319). - CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). - CVE-2026-31671: xfrm_user: fix info leak in build_report() (bsc#1263115). - CVE-2026-31673: af_unix: read UNIX_DIAG_VFS data under unix_state_lock (bsc#1263143). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31678: openvswitch: defer tunnel netdev_put to RCU release (bsc#1263562). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31778: ALSA: caiaq: fix stack out-of-bounds read in init_card (bsc#1263923). - CVE-2026-43020: Bluetooth: MGMT: validate LTK enc_size on load (bsc#1264006). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43026: netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent (bsc#1263932). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). - CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). - CVE-2026-43040: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info- leak (bsc#1264091). - CVE-2026-43052: wifi: mac80211: check tdls flag in ieee80211_tdls_oper (bsc#1263945). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43140: HID: magicmouse: Do not crash on missing msc->input (bsc#1264630). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). - CVE-2026-43234: team: avoid NETDEV_CHANGEMTU event when unregistering slave (bsc#1264409). - CVE-2026-43338: btrfs: re
AI Analysis
Technical Summary
The SUSE Linux Enterprise 12 SP5 kernel was updated to fix a broad set of security vulnerabilities, including CVE-2025-10263 and 83 additional CVEs. The fixes address issues such as erratum workarounds for ARM Cortex-A76, double free errors, use-after-free bugs in input drivers, race conditions in performance monitoring, NULL pointer dereferences in WiFi and networking code, plaintext credential logging in SMB clients, out-of-bounds memory accesses in media and SCSI subsystems, and multiple Bluetooth protocol flaws. The update mitigates these vulnerabilities to improve kernel security and stability. The advisory does not specify exact affected kernel versions but targets SUSE Linux Enterprise 12 SP5.
Potential Impact
The vulnerabilities fixed in this update impact multiple kernel components and could lead to system crashes, information leaks, privilege escalation, denial of service, or exposure of sensitive data such as plaintext credentials. The wide range of issues across networking, filesystems, device drivers, and Bluetooth stacks indicates a significant risk to system integrity and confidentiality if left unpatched. The severity is assessed as high due to the number and nature of vulnerabilities addressed.
Mitigation Recommendations
An official security update from the SUSE Product Security Team is available for SUSE Linux Enterprise 12 SP5 kernel that addresses these vulnerabilities. Applying this update is the recommended remediation. Since this is a kernel update, it is critical to follow vendor instructions for patching and rebooting affected systems. Patch status is confirmed by the vendor advisory SUSE-SU-2026:2450-1. No additional mitigations are specified beyond applying the official update.
Security update for the Linux Kernel
Description
The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-10263: arm64: Add workaround for Cortex-A76 erratum 1286807 (bsc#1266290). - CVE-2025-40253: s390/ctcm: Fix double-kfree (bsc#1255084). - CVE-2025-68822: Input: alps - fix use-after-free bugs caused by dev3_register_work (bsc#1256668). - CVE-2026-3150: bcache: fix cached_dev.sb_bio use-after-free and crash (bsc#1263169). - CVE-2026-23271: perf: Fix __perf_event_overflow() vs perf_remove_from_context() race (bsc#1260018). - CVE-2026-23279: wifi: mac80211: fix NULL pointer dereference in mesh_rx_csa_frame() (bsc#1260468). - CVE-2026-23303: smb: client: Don't log plaintext credentials in cifs_set_cifscreds (bsc#1260502). - CVE-2026-23367: wifi: radiotap: reject radiotap with unknown bits (bsc#1260731). - CVE-2026-23396: wifi: mac80211: fix NULL deref in mesh_matches_local() (bsc#1260729). - CVE-2026-23444: wifi: mac80211: always free skb on ieee80211_tx_prepare_skb() failure (bsc#1266307). - CVE-2026-23448: net: usb: cdc_ncm: add ndpoffset to NDP16 nframes bounds check (bsc#1261750). - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables (bsc#1261700). - CVE-2026-31415: ipv6: avoid overflows in ip6_datagram_send_ctl() (bsc#1262099). - CVE-2026-31421: net/sched: cls_fw: fix NULL pointer dereference on shared blocks (bsc#1262061). - CVE-2026-31447: ext4: reject mount if bigalloc with s_first_data_block != 0 (bsc#1262614). - CVE-2026-31452: ext4: convert inline data to extents when truncate exceeds inline size (bsc#1262620). - CVE-2026-31464: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() (bsc#1262656). - CVE-2026-31469: virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false (bsc#1267816). - CVE-2026-31498: Bluetooth: L2CAP: Fix ERTM re-init and zero pdu_len infinite loop (bsc#1262751). - CVE-2026-31500: Bluetooth: btintel: serialize btintel_hw_error() with hci_req_sync_lock (bsc#1262993). - CVE-2026-31515: af_key: validate families in pfkey_send_migrate() (bsc#1262752). - CVE-2026-31516: xfrm: prevent policy_hthresh.work from racing with netns teardown (bsc#1262755). - CVE-2026-31532: can: af_can: export can_sock_destruct() (bsc#1262757). - CVE-2026-31540: drm/i915/gt: Check set_default_submission() before deferencing (bsc#1263011). - CVE-2026-31546: net: bonding: fix NULL deref in bond_debug_rlb_hash_show (bsc#1263006). - CVE-2026-31588: KVM: x86: Use scratch field in MMIO fragment to hold small write values (bsc#1263165). - CVE-2026-31590: KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION (bsc#1263152). - CVE-2026-31596: ocfs2: handle invalid dinode in ocfs2_group_extend (bsc#1263319). - CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). - CVE-2026-31664: string.h: Introduce memset_after() for wiping trailing members/padding (bsc#1263578). - CVE-2026-31668: seg6: separate dst_cache for input and output paths in seg6 lwtunnel (bsc#1263140). - CVE-2026-31671: xfrm_user: fix info leak in build_report() (bsc#1263115). - CVE-2026-31673: af_unix: read UNIX_DIAG_VFS data under unix_state_lock (bsc#1263143). - CVE-2026-31674: netfilter: ip6t_rt: reject oversized addrnr in rt_mt6_check() (bsc#1263568). - CVE-2026-31678: openvswitch: defer tunnel netdev_put to RCU release (bsc#1263562). - CVE-2026-31759: usb: ulpi: fix double free in ulpi_register_interface() error path (bsc#1264076). - CVE-2026-31778: ALSA: caiaq: fix stack out-of-bounds read in init_card (bsc#1263923). - CVE-2026-43020: Bluetooth: MGMT: validate LTK enc_size on load (bsc#1264006). - CVE-2026-43024: netfilter: nf_tables: reject immediate NF_QUEUE verdict (bsc#1263930). - CVE-2026-43026: netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent (bsc#1263932). - CVE-2026-43028: netfilter: x_tables: ensure names are nul-terminated (bsc#1263934). - CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). - CVE-2026-43038: ipv6: icmp: clear skb2->cb in ip6_err_gen_icmpv6_unreach() (bsc#1264097). - CVE-2026-43040: net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info- leak (bsc#1264091). - CVE-2026-43052: wifi: mac80211: check tdls flag in ieee80211_tdls_oper (bsc#1263945). - CVE-2026-43077: crypto: algif_aead - Fix minimum RX size check for decryption (bsc#1264470). - CVE-2026-43140: HID: magicmouse: Do not crash on missing msc->input (bsc#1264630). - CVE-2026-43158: xfs: fix freemap adjustments when adding xattrs to leaf blocks (bsc#1264595). - CVE-2026-43187: xfs: delete attr leaf freemap entries when empty (bsc#1264603). - CVE-2026-43198: tcp: fix potential race in tcp_v6_syn_recv_sock() (bsc#1264610). - CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). - CVE-2026-43234: team: avoid NETDEV_CHANGEMTU event when unregistering slave (bsc#1264409). - CVE-2026-43338: btrfs: re
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The SUSE Linux Enterprise 12 SP5 kernel was updated to fix a broad set of security vulnerabilities, including CVE-2025-10263 and 83 additional CVEs. The fixes address issues such as erratum workarounds for ARM Cortex-A76, double free errors, use-after-free bugs in input drivers, race conditions in performance monitoring, NULL pointer dereferences in WiFi and networking code, plaintext credential logging in SMB clients, out-of-bounds memory accesses in media and SCSI subsystems, and multiple Bluetooth protocol flaws. The update mitigates these vulnerabilities to improve kernel security and stability. The advisory does not specify exact affected kernel versions but targets SUSE Linux Enterprise 12 SP5.
Potential Impact
The vulnerabilities fixed in this update impact multiple kernel components and could lead to system crashes, information leaks, privilege escalation, denial of service, or exposure of sensitive data such as plaintext credentials. The wide range of issues across networking, filesystems, device drivers, and Bluetooth stacks indicates a significant risk to system integrity and confidentiality if left unpatched. The severity is assessed as high due to the number and nature of vulnerabilities addressed.
Mitigation Recommendations
An official security update from the SUSE Product Security Team is available for SUSE Linux Enterprise 12 SP5 kernel that addresses these vulnerabilities. Applying this update is the recommended remediation. Since this is a kernel update, it is critical to follow vendor instructions for patching and rebooting affected systems. Patch status is confirmed by the vendor advisory SUSE-SU-2026:2450-1. No additional mitigations are specified beyond applying the official update.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- SUSE Product Security Team
- Advisory Id
- SUSE-SU-2026:2450-1
- Cve Count
- 84
- Additional Cves
- ["CVE-2025-40253","CVE-2025-68324","CVE-2025-68822","CVE-2026-23271","CVE-2026-23279","CVE-2026-23303","CVE-2026-23367","CVE-2026-23396","CVE-2026-23444","CVE-2026-23448","CVE-2026-31405","CVE-2026-31415","CVE-2026-31421","CVE-2026-31447","CVE-2026-31452","CVE-2026-31464","CVE-2026-31469","CVE-2026-31498","CVE-2026-3150","CVE-2026-31500","CVE-2026-31515","CVE-2026-31516","CVE-2026-31532","CVE-2026-31540","CVE-2026-31546","CVE-2026-31588","CVE-2026-31590","CVE-2026-31596","CVE-2026-31629","CVE-2026-31664","CVE-2026-31668","CVE-2026-31671","CVE-2026-31673","CVE-2026-31674","CVE-2026-31678","CVE-2026-31759","CVE-2026-31778","CVE-2026-43020","CVE-2026-43024","CVE-2026-43026","CVE-2026-43028","CVE-2026-43037","CVE-2026-43038","CVE-2026-43040","CVE-2026-43052","CVE-2026-43077","CVE-2026-43140","CVE-2026-43158","CVE-2026-43187","CVE-2026-43198","CVE-2026-43206","CVE-2026-43234","CVE-2026-43338","CVE-2026-43339","CVE-2026-43359","CVE-2026-43361","CVE-2026-43407","CVE-2026-43413","CVE-2026-43414","CVE-2026-43499","CVE-2026-43503","CVE-2026-45835","CVE-2026-45841","CVE-2026-45842","CVE-2026-45843","CVE-2026-45852","CVE-2026-45870","CVE-2026-45970","CVE-2026-45983","CVE-2026-46021","CVE-2026-46024","CVE-2026-46043","CVE-2026-46090","CVE-2026-46113","CVE-2026-46116","CVE-2026-46150","CVE-2026-46157","CVE-2026-46159","CVE-2026-46160","CVE-2026-46169","CVE-2026-46181","CVE-2026-46259","CVE-2026-46273"]
- Cvss Version
- null
Threat ID: 6a35935af198dc38c1067823
Added to database: 6/19/2026, 7:07:06 PM
Last enriched: 6/19/2026, 7:22:42 PM
Last updated: 6/20/2026, 12:07:28 AM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.