SUSE Package Hub - SUSE-PackageHub-16.0-687

Update Info

SUSE-PackageHub-16.0-687

Security update for the Linux Kernel RT (Live Patch 5 for SUSE Linux Enterprise 16)

Type: security

Severity: important

Issued: 2026-05-05

Description:

This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.26.1 fixes various security issues

The following security issues were fixed:

- CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1258655).
- CVE-2026-23204: net/sched: cls_u32: use skb_header_pointer_careful() (bsc#1259126).
- CVE-2026-23437: net: shaper: protect late read accesses to the hierarchy (bsc#1261845).
- CVE-2026-31406: xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini() (bsc#1261630).
- CVE-2026-31431: crypto: algif_aead - Revert to operating out-of-place (bsc#1263689).

References

CVE: CVE-2026-31431
CVE: CVE-2026-31406
CVE: CVE-2026-23437
CVE: CVE-2026-23204
CVE: CVE-2026-23004
Bugzilla: 1263689 VUL-0: CVE-2026-31431: kernel live patch: crypto: algif_aead - Revert to operating out-of-place
Bugzilla: 1261845 VUL-0: CVE-2026-23437: kernel live patch: net: shaper: protect late read accesses to the hierarchy
Bugzilla: 1261630 VUL-0: CVE-2026-31406: kernel live patch: xfrm: Fix work re-schedule after cancel in xfrm_nat_keepalive_net_fini()
Bugzilla: 1259126 VUL-0: CVE-2026-23204: kernel live patch: net/sched: cls_u32: use skb_header_pointer_careful()
Bugzilla: 1258655 VUL-0: CVE-2026-23004: kernel live patch: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list()

Packages

kernel-livepatch-SLE16-RT_Update_5-4-160000.1.1