suse/kernel-64kb&distro=SUSE Linux Enterprise Module for Basesystem 15 SP7

Vulnerabilities (2,262)

• CVE-2026-23021Jan 31, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: net: usb: pegasus: fix memory leak in update_eth_regs_async() When asynchronously writing to the device registers and if usb_submit_urb() fail, the code fail to release allocated to this point resources.

• CVE-2026-23017Jan 31, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: idpf: fix error handling in the init_task on load If the init_task fails during a driver load, we end up without vports and netdevs, effectively failing the entire process. In that state a subsequent reset will

• CVE-2025-71184Jan 31, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL dereference on root when tracing inode eviction When evicting an inode the first thing we do is to setup tracing for it, which implies fetching the root's id. But in btrfs_evict_inode() the root

• CVE-2025-71182Jan 31, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: can: j1939: make j1939_session_activate() fail if device is no longer registered syzbot is still reporting unregister_netdevice: waiting for vcan0 to become free. Usage count = 2 even after commit 93a27b589

• CVE-2026-23010HigJan 25, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix use-after-free in inet6_addr_del(). syzbot reported use-after-free of inet6_ifaddr in inet6_addr_del(). [0] The cited commit accidentally moved ipv6_del_addr() for mngtmpaddr before reading its ifp->

• CVE-2026-23004HigJan 25, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() syzbot was able to crash the kernel in rt6_uncached_list_flush_dev() in an interesting way [1] Crash happens in list_del_init()/INIT_LIST_HE

• CVE-2026-23003HigJan 25, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: use skb_vlan_inet_prepare() in __ip6_tnl_rcv() Blamed commit did not take care of VLAN encapsulations as spotted by syzbot [1]. Use skb_vlan_inet_prepare() instead of pskb_inet_may_pull(). [1] BU

• CVE-2026-23001HigJan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlan_forward_source() Add RCU protection on (struct macvlan_source_entry)->vlan. Whenever macvlan_hash_del_source() is called, we must clear entry->vlan pointer before RCU grace

• CVE-2026-22999HigJan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: do not free existing class in qfq_change_class() Fixes qfq_change_class() error case. cl->qdisc and cl should only be freed if a new class and qdisc were allocated, or we risk various UAF.

• CVE-2026-22998HigJan 25, 2026
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec Commit efa56305908b ("nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length") added ttag bounds checking and data_offset va

• CVE-2026-22997HigJan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts Since j1939_session_deactivate_activate_next() in j1939_tp_rxtimer() is called only when the timer is enabled

• CVE-2026-23011Jan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: ipv4: ip_gre: make ipgre_header() robust Analog to commit db5b4e39c4e6 ("ip6_gre: make ip6gre_header() robust") Over the years, syzbot found many ways to crash the kernel in ipgre_header() [1]. This involves

• CVE-2026-23006Jan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: ASoC: tlv320adcx140: fix null pointer The "snd_soc_component" in "adcx140_priv" was only used once but never set. It was only used for reaching "dev" which is already present in "adcx140_priv".

• CVE-2026-23005Jan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Clear XSTATE_BV[i] in guest XSAVE state whenever XFD[i]=1 When loading guest XSAVE state via KVM_SET_XSAVE, and when updating XFD in response to a guest WRMSR, clear XFD-disabled features in the saved

• CVE-2026-23000Jan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix crash on profile change rollback failure mlx5e_netdev_change_profile can fail to attach a new profile and can fail to rollback to old profile, in such case, we could end up with a dangling netdev

• CVE-2026-22996Jan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv mlx5e_priv is an unstable structure that can be memset(0) if profile attaching fails, mlx5e_priv in mlx5e_dev devlink private is used to reference the

• CVE-2025-71163Jan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix device leaks on compat bind and unbind Make sure to drop the reference taken when looking up the idxd device as part of the compat bind and unbind sysfs interface.

• CVE-2025-71162Jan 25, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: dmaengine: tegra-adma: Fix use-after-free A use-after-free bug exists in the Tegra ADMA driver when audio streams are terminated, particularly during XRUN conditions. The issue occurs when the DMA buffer is fre

• CVE-2026-22993MedJan 23, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: idpf: Fix RSS LUT NULL ptr issue after soft reset During soft reset, the RSS LUT is freed and not restored unless the interface is up. If an ethtool command that accesses the rss lut is attempted immediately af

• CVE-2026-22992HigJan 23, 2026
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: libceph: return the handler error from mon_handle_auth_done() Currently any error from ceph_auth_handle_reply_done() is propagated via finish_auth() but isn't returned from mon_handle_auth_done(). This results