Main Vulnerability Database SB2026021260

SB2026021260 - SUSE update for the Linux Kernel

Published: February 12, 2026

Security Bulletin ID SB2026021260

Severity

Low

Patch available

YES

Number of vulnerabilities 38

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 38 secuirty vulnerabilities.

1) NULL pointer dereference (CVE-ID: CVE-2023-53714)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ltdc_crtc_disable_vblank() function in drivers/gpu/drm/stm/ltdc.c. A local user can perform a denial of service (DoS) attack.

2) Improper error handling (CVE-ID: CVE-2024-42103)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper error handling within the btrfs_reclaim_bgs_work() function in fs/btrfs/block-group.c. A local user can perform a denial of service (DoS) attack.

3) Resource management error (CVE-ID: CVE-2024-53070)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the dwc3_suspend_common() function in drivers/usb/dwc3/core.c. A local user can perform a denial of service (DoS) attack.

4) Off-by-one (CVE-ID: CVE-2024-53149)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an off-by-one error within the pmic_glink_ucsi_connector_status() function in drivers/usb/typec/ucsi/ucsi_glink.c. A local user can perform a denial of service (DoS) attack.

5) Input validation error (CVE-ID: CVE-2025-22047)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the __apply_microcode_amd() function in arch/x86/kernel/cpu/microcode/amd.c. A local user can perform a denial of service (DoS) attack.

6) Input validation error (CVE-ID: CVE-2025-37813)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the xhci_queue_ctrl_tx() function in drivers/usb/host/xhci-ring.c. A local user can perform a denial of service (DoS) attack.

7) NULL pointer dereference (CVE-ID: CVE-2025-38243)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the replay_one_extent(), drop_one_dir_item() and unlink_inode_for_log_replay() functions in fs/btrfs/tree-log.c. A local user can perform a denial of service (DoS) attack.

8) Improper locking (CVE-ID: CVE-2025-38322)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the intel_pmu_read_event() function in arch/x86/events/intel/core.c. A local user can perform a denial of service (DoS) attack.

9) Improper locking (CVE-ID: CVE-2025-38379)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the free_xid() and smb2_reconnect_server() functions in fs/smb/client/smb2pdu.c. A local user can perform a denial of service (DoS) attack.

10) Improper locking (CVE-ID: CVE-2025-38539)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper locking within the __register_event() and __trace_add_event_dirs() functions in kernel/trace/trace_events.c. A local user can perform a denial of service (DoS) attack.

11) Use-after-free (CVE-ID: CVE-2025-39689)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the ftrace_regex_open() and ftrace_regex_release() functions in kernel/trace/ftrace.c. A local user can escalate privileges on the system.

12) Resource management error (CVE-ID: CVE-2025-39813)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the ftrace_dump() function in kernel/trace/trace.c. A local user can perform a denial of service (DoS) attack.

13) Resource management error (CVE-ID: CVE-2025-39829)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the register_ftrace_graph() function in kernel/trace/fgraph.c. A local user can perform a denial of service (DoS) attack.

14) Resource management error (CVE-ID: CVE-2025-39913)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the tcp_bpf_send_verdict() function in net/ipv4/tcp_bpf.c. A local user can perform a denial of service (DoS) attack.

15) NULL pointer dereference (CVE-ID: CVE-2025-40097)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the hda_component_manager_init() function in sound/hda/codecs/side-codecs/hda_component.c. A local user can perform a denial of service (DoS) attack.

16) Use-after-free (CVE-ID: CVE-2025-40202)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the deliver_response(), ipmi_set_gets_events(), i_ipmi_request(), handle_ipmb_get_msg_cmd(), handle_ipmb_direct_rcv_cmd(), handle_lan_get_msg_cmd(), handle_oem_get_msg_cmd(), handle_read_event_rsp(), smi_work() and free_recv_msg() functions in drivers/char/ipmi/ipmi_msghandler.c. A local user can escalate privileges on the system.

17) Use-after-free (CVE-ID: CVE-2025-40257)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the mptcp_remove_anno_list_by_saddr(), mptcp_pm_del_add_timer() and mptcp_pm_free_anno_list() functions in net/mptcp/pm.c. A local user can escalate privileges on the system.

18) Input validation error (CVE-ID: CVE-2025-40259)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to improper input validation within the sg_remove_sfp_usercontext() function in drivers/scsi/sg.c. A local user can perform a denial of service (DoS) attack.

19) Out-of-bounds read (CVE-ID: CVE-2025-68284)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the handle_auth_session_key() function in net/ceph/auth_x.c. A local user can perform a denial of service (DoS) attack.

20) Use-after-free (CVE-ID: CVE-2025-68285)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the monmap_show() and osdmap_show() functions in net/ceph/debugfs.c. A local user can escalate privileges on the system.

21) Memory leak (CVE-ID: CVE-2025-68775)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the handshake_req_cancel() function in net/handshake/request.c. A local user can perform a denial of service (DoS) attack.

22) Use-after-free (CVE-ID: CVE-2025-68804)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the cros_ec_ishtp_remove() function in drivers/platform/chrome/cros_ec_ishtp.c. A local user can escalate privileges on the system.

23) Use-after-free (CVE-ID: CVE-2025-68808)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the vidtv_channel_si_init() function in drivers/media/test-drivers/vidtv/vidtv_channel.c. A local user can escalate privileges on the system.

24) NULL pointer dereference (CVE-ID: CVE-2025-68813)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the __ip_vs_get_out_rt() function in net/netfilter/ipvs/ip_vs_xmit.c. A local user can perform a denial of service (DoS) attack.

25) Out-of-bounds read (CVE-ID: CVE-2025-68819)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the dtv5100_i2c_msg() function in drivers/media/usb/dvb-usb/dtv5100.c. A local user can perform a denial of service (DoS) attack.

26) Resource management error (CVE-ID: CVE-2025-71078)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the preload_age() function in arch/powerpc/mm/book3s64/slb.c. A local user can perform a denial of service (DoS) attack.

27) Memory leak (CVE-ID: CVE-2025-71081)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the stm32_sai_sub_parse_of(), stm32_sai_sub_probe() and stm32_sai_sub_remove() functions in sound/soc/stm/stm32_sai_sub.c. A local user can perform a denial of service (DoS) attack.

28) NULL pointer dereference (CVE-ID: CVE-2025-71083)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the ttm_bo_vm_access() function in drivers/gpu/drm/ttm/ttm_bo_vm.c. A local user can perform a denial of service (DoS) attack.

29) Resource management error (CVE-ID: CVE-2025-71085)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to resource management error within the calipso_skbuff_setattr() function in net/ipv6/calipso.c. A local user can perform a denial of service (DoS) attack.

30) Double free (CVE-ID: CVE-2025-71089)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a double free error within the iommu_sva_bind_device() function in drivers/iommu/iommu-sva.c. A local user can perform a denial of service (DoS) attack.

31) Race condition (CVE-ID: CVE-2025-71111)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition in drivers/hwmon/w83791d.c. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

32) Out-of-bounds read (CVE-ID: CVE-2025-71112)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the hclge_set_vlan_filter() function in drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_main.c. A local user can perform a denial of service (DoS) attack.

33) NULL pointer dereference (CVE-ID: CVE-2025-71120)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the gss_read_proxy_verf() function in net/sunrpc/auth_gss/svcauth_gss.c. A local user can perform a denial of service (DoS) attack.

34) Out-of-bounds read (CVE-ID: CVE-2025-71136)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to an out-of-bounds read error within the adv7842_cp_log_status() function in drivers/media/i2c/adv7842.c. A local user can perform a denial of service (DoS) attack.

35) Memory leak (CVE-ID: CVE-2025-71147)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to memory leak within the tpm2_load_cmd() function in security/keys/trusted-keys/trusted_tpm2.c. A local user can perform a denial of service (DoS) attack.

36) Use-after-free (CVE-ID: CVE-2026-22999)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the qfq_change_class() function in net/sched/sch_qfq.c. A local user can escalate privileges on the system.

37) Use-after-free (CVE-ID: CVE-2026-23001)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the macvlan_hash_lookup_source(), macvlan_hash_add_source(), macvlan_hash_add(), macvlan_flush_sources(), macvlan_forward_source() and macvlan_fill_info_macaddr() functions in drivers/net/macvlan.c. A local user can escalate privileges on the system.

38) Use-after-free (CVE-ID: CVE-2026-23010)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the inet6_addr_del() function in net/ipv6/addrconf.c. A local user can escalate privileges on the system.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2026/suse-su-20260471-1/

Vulnerable Software

SUSE Linux Enterprise Server 15 SP6: LTSS
SUSE Linux Enterprise High Availability Extension 15: SP6
SUSE Linux Enterprise Live Patching: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP6
SUSE Linux Enterprise Server 15: SP6
kernel-64kb: before 6.4.0-150600.23.87.1
dtb-arm: before 6.4.0-150600.23.87.1
dtb-rockchip: before 6.4.0-150600.23.87.1
reiserfs-kmp-64kb: before 6.4.0-150600.23.87.1
kselftests-kmp-64kb: before 6.4.0-150600.23.87.1
dlm-kmp-64kb-debuginfo: before 6.4.0-150600.23.87.1
dtb-xilinx: before 6.4.0-150600.23.87.1
dtb-exynos: before 6.4.0-150600.23.87.1
ocfs2-kmp-64kb: before 6.4.0-150600.23.87.1
dtb-apple: before 6.4.0-150600.23.87.1
kernel-64kb-optional: before 6.4.0-150600.23.87.1
kernel-64kb-extra: before 6.4.0-150600.23.87.1
dtb-cavium: before 6.4.0-150600.23.87.1
ocfs2-kmp-64kb-debuginfo: before 6.4.0-150600.23.87.1
dtb-socionext: before 6.4.0-150600.23.87.1
dtb-allwinner: before 6.4.0-150600.23.87.1
kernel-64kb-extra-debuginfo: before 6.4.0-150600.23.87.1
dtb-sprd: before 6.4.0-150600.23.87.1
reiserfs-kmp-64kb-debuginfo: before 6.4.0-150600.23.87.1
dtb-amd: before 6.4.0-150600.23.87.1
dtb-altera: before 6.4.0-150600.23.87.1
dtb-apm: before 6.4.0-150600.23.87.1
cluster-md-kmp-64kb-debuginfo: before 6.4.0-150600.23.87.1
dtb-renesas: before 6.4.0-150600.23.87.1
dtb-lg: before 6.4.0-150600.23.87.1
dlm-kmp-64kb: before 6.4.0-150600.23.87.1
kernel-64kb-optional-debuginfo: before 6.4.0-150600.23.87.1
dtb-hisilicon: before 6.4.0-150600.23.87.1
dtb-amazon: before 6.4.0-150600.23.87.1
dtb-freescale: before 6.4.0-150600.23.87.1
dtb-qcom: before 6.4.0-150600.23.87.1
gfs2-kmp-64kb: before 6.4.0-150600.23.87.1
kselftests-kmp-64kb-debuginfo: before 6.4.0-150600.23.87.1
cluster-md-kmp-64kb: before 6.4.0-150600.23.87.1
gfs2-kmp-64kb-debuginfo: before 6.4.0-150600.23.87.1
dtb-nvidia: before 6.4.0-150600.23.87.1
dtb-broadcom: before 6.4.0-150600.23.87.1
dtb-mediatek: before 6.4.0-150600.23.87.1
dtb-marvell: before 6.4.0-150600.23.87.1
kernel-64kb-debuginfo: before 6.4.0-150600.23.87.1
kernel-64kb-debugsource: before 6.4.0-150600.23.87.1
kernel-64kb-devel-debuginfo: before 6.4.0-150600.23.87.1
kernel-64kb-devel: before 6.4.0-150600.23.87.1
dtb-amlogic: before 6.4.0-150600.23.87.1
dtb-aarch64: before 6.4.0-150600.23.87.1
kernel-zfcpdump-debugsource: before 6.4.0-150600.23.87.1
kernel-zfcpdump-debuginfo: before 6.4.0-150600.23.87.1
kernel-zfcpdump: before 6.4.0-150600.23.87.1
kernel-kvmsmall: before 6.4.0-150600.23.87.1
kernel-livepatch-6_4_0-150600_23_87-default: before 1-150600.13.3.1
kernel-livepatch-6_4_0-150600_23_87-default-debuginfo: before 1-150600.13.3.1
kernel-default-livepatch-devel: before 6.4.0-150600.23.87.1
kernel-livepatch-SLE15-SP6_Update_20-debugsource: before 1-150600.13.3.1
kernel-default: before 6.4.0-150600.23.87.1
kernel-default-optional-debuginfo: before 6.4.0-150600.23.87.1
kernel-obs-qa: before 6.4.0-150600.23.87.1
kernel-default-devel: before 6.4.0-150600.23.87.1
gfs2-kmp-default-debuginfo: before 6.4.0-150600.23.87.1
cluster-md-kmp-default: before 6.4.0-150600.23.87.1
kselftests-kmp-default-debuginfo: before 6.4.0-150600.23.87.1
kselftests-kmp-default: before 6.4.0-150600.23.87.1
kernel-syms: before 6.4.0-150600.23.87.1
cluster-md-kmp-default-debuginfo: before 6.4.0-150600.23.87.1
kernel-default-optional: before 6.4.0-150600.23.87.1
kernel-default-debugsource: before 6.4.0-150600.23.87.1
dlm-kmp-default-debuginfo: before 6.4.0-150600.23.87.1
ocfs2-kmp-default-debuginfo: before 6.4.0-150600.23.87.1
kernel-default-extra-debuginfo: before 6.4.0-150600.23.87.1
gfs2-kmp-default: before 6.4.0-150600.23.87.1
kernel-obs-build-debugsource: before 6.4.0-150600.23.87.1
kernel-default-devel-debuginfo: before 6.4.0-150600.23.87.1
kernel-obs-build: before 6.4.0-150600.23.87.1
kernel-default-livepatch: before 6.4.0-150600.23.87.1
reiserfs-kmp-default-debuginfo: before 6.4.0-150600.23.87.1
kernel-default-debuginfo: before 6.4.0-150600.23.87.1
dlm-kmp-default: before 6.4.0-150600.23.87.1
reiserfs-kmp-default: before 6.4.0-150600.23.87.1
ocfs2-kmp-default: before 6.4.0-150600.23.87.1
kernel-default-extra: before 6.4.0-150600.23.87.1
kernel-kvmsmall-debugsource: before 6.4.0-150600.23.87.1
kernel-kvmsmall-debuginfo: before 6.4.0-150600.23.87.1
kernel-default-base-rebuild: before 6.4.0-150600.23.87.1.150600.12.40.1
kernel-kvmsmall-devel-debuginfo: before 6.4.0-150600.23.87.1
kernel-default-base: before 6.4.0-150600.23.87.1.150600.12.40.1
kernel-kvmsmall-devel: before 6.4.0-150600.23.87.1
kernel-debug-vdso: before 6.4.0-150600.23.87.1
kernel-debug-vdso-debuginfo: before 6.4.0-150600.23.87.1
kernel-kvmsmall-vdso: before 6.4.0-150600.23.87.1
kernel-kvmsmall-vdso-debuginfo: before 6.4.0-150600.23.87.1
kernel-default-vdso: before 6.4.0-150600.23.87.1
kernel-default-vdso-debuginfo: before 6.4.0-150600.23.87.1
kernel-debug-debugsource: before 6.4.0-150600.23.87.1
kernel-debug-devel: before 6.4.0-150600.23.87.1
kernel-debug-devel-debuginfo: before 6.4.0-150600.23.87.1
kernel-debug-debuginfo: before 6.4.0-150600.23.87.1
kernel-debug: before 6.4.0-150600.23.87.1
kernel-devel: before 6.4.0-150600.23.87.1
kernel-docs-html: before 6.4.0-150600.23.87.1
kernel-macros: before 6.4.0-150600.23.87.1
kernel-source-vanilla: before 6.4.0-150600.23.87.1
kernel-source: before 6.4.0-150600.23.87.1
kernel-docs: before 6.4.0-150600.23.87.1