SUSE-SU-2026:2331-1
Vulnerability Summary
Timeline
Description
Security update for the Linux Kernel The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: - CVE-2026-31405: media: dvb-net: fix OOB access in ULE extension header tables (bsc#1261700). - CVE-2026-31629: nfc: llcp: add missing return after LLCP_CLOSED checks (bsc#1263790). - CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmc_release (bsc#1264093). - CVE-2026-43037: ip6_tunnel: clear skb2->cb in ip4ip6_err() (bsc#1263995). - CVE-2026-43206: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() (bsc#1264551). - CVE-2026-43499: rtmutex: Use waiter::task instead of current in remove_waiter() (bsc#1266001). - CVE-2026-43501: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows (bsc#1266009). - CVE-2026-45852: RDMA/rxe: Fix double free in rxe_srq_from_init (bsc#1266711). - CVE-2026-45970: bonding: alb: fix UAF in rlb_arp_recv during bond up/down (bsc#1267205). - CVE-2026-46021: thermal: core: Fix thermal zone governor cleanup issues (bsc#1267220). - CVE-2026-46043: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv (bsc#1266901). - CVE-2026-46113: KVM: x86/mmu: Add helper to convert SPTE value to its shadow page (bsc#1266969). - CVE-2026-46243: smb: client: reject userspace cifs.spnego descriptions (bsc#1266238). The following non security issues were fixed: - arm64: tlb: Allow XZR argument to TLBI ops (git-fixes). - arm64: tlb: Optimize ARM64_WORKAROUND_REPEAT_TLBI (git-fixes).
Affected Systems
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.15.170.1
- suse•kernel-rt&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.15.170.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.3
< 5.14.21-150400.15.170.1
- suse•kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.4
< 5.14.21-150400.15.170.1
References (27)
- https://www.suse.com/support/update/announcement/2026/suse-su-20262331-1/
- https://bugzilla.suse.com/1261700
- https://bugzilla.suse.com/1263790
- https://bugzilla.suse.com/1263995
- https://bugzilla.suse.com/1264093
- https://bugzilla.suse.com/1264551
- https://bugzilla.suse.com/1266001
- https://bugzilla.suse.com/1266009
- https://bugzilla.suse.com/1266238
- https://bugzilla.suse.com/1266711
- https://bugzilla.suse.com/1266901
- https://bugzilla.suse.com/1266969
- https://bugzilla.suse.com/1267205
- https://bugzilla.suse.com/1267220
- https://www.suse.com/security/cve/CVE-2026-31405
- https://www.suse.com/security/cve/CVE-2026-31629
- https://www.suse.com/security/cve/CVE-2026-31758
- https://www.suse.com/security/cve/CVE-2026-43037
- https://www.suse.com/security/cve/CVE-2026-43206
- https://www.suse.com/security/cve/CVE-2026-43499
- https://www.suse.com/security/cve/CVE-2026-43501
- https://www.suse.com/security/cve/CVE-2026-45852
- https://www.suse.com/security/cve/CVE-2026-45970
- https://www.suse.com/security/cve/CVE-2026-46021
- https://www.suse.com/security/cve/CVE-2026-46043
- https://www.suse.com/security/cve/CVE-2026-46113
- https://www.suse.com/security/cve/CVE-2026-46243