{"id":"SUSE-SU-2026:1770-1","summary":"Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5)","details":"\nThis update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.133 fixes various security issues\n\nThe following security issues were fixed:\n\n- CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size (bsc#1258073).\n- CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in ets_qdisc_change (bsc#1258005).\n- CVE-2026-23004: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list() (bsc#1258655).\n- CVE-2026-23204: net/sched: cls_u32: use skb_header_pointer_careful() (bsc#1259126).\n- CVE-2026-31431: crypto: algif_aead - Revert to operating out-of-place (bsc#1263689).\n","modified":"2026-05-09T07:45:35.116849Z","published":"2026-05-08T11:05:11Z","related":["CVE-2025-38375","CVE-2025-71066","CVE-2026-23004","CVE-2026-23204","CVE-2026-31431"],"upstream":["CVE-2025-38375","CVE-2025-71066","CVE-2026-23004","CVE-2026-23204","CVE-2026-31431"],"references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2026/suse-su-20261770-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1258005"},{"type":"REPORT","url":"https://bugzilla.suse.com/1258073"},{"type":"REPORT","url":"https://bugzilla.suse.com/1258655"},{"type":"REPORT","url":"https://bugzilla.suse.com/1259126"},{"type":"REPORT","url":"https://bugzilla.suse.com/1263689"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38375"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-71066"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-23004"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-23204"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2026-31431"}],"schema_version":"1.7.5"}