Описание
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix various security issues
The following security issues were fixed:
- CVE-2026-31431: The copy.fail security issue is fixed by revert to operating out-of-place in algif_aead (bsc#1262573).
Список пакетов
SUSE Linux Enterprise Live Patching 15 SP7
kernel-livepatch-6_4_0-150700_7_40-rt-1-150700.1.3.2
SUSE Real Time Module 15 SP7
cluster-md-kmp-rt-6.4.0-150700.7.40.1
dlm-kmp-rt-6.4.0-150700.7.40.1
gfs2-kmp-rt-6.4.0-150700.7.40.1
kernel-devel-rt-6.4.0-150700.7.40.1
kernel-rt-6.4.0-150700.7.40.1
kernel-rt-devel-6.4.0-150700.7.40.1
kernel-source-rt-6.4.0-150700.7.40.1
kernel-syms-rt-6.4.0-150700.7.40.1
ocfs2-kmp-rt-6.4.0-150700.7.40.1
Ссылки
- Link for SUSE-SU-2026:1678-1
- E-Mail link for SUSE-SU-2026:1678-1
- SUSE Security Ratings
- SUSE Bug 1262573
- SUSE CVE CVE-2026-31431 page
Описание
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This mostly reverts commit 72548b093ee3 except for the copying of the associated data. There is no benefit in operating in-place in algif_aead since the source and destination come from different mappings. Get rid of all the complexity added for in-place operation and just copy the AD directly.
Затронутые продукты
SUSE Linux Enterprise Live Patching 15 SP7:kernel-livepatch-6_4_0-150700_7_40-rt-1-150700.1.3.2
SUSE Real Time Module 15 SP7:cluster-md-kmp-rt-6.4.0-150700.7.40.1
SUSE Real Time Module 15 SP7:dlm-kmp-rt-6.4.0-150700.7.40.1
SUSE Real Time Module 15 SP7:gfs2-kmp-rt-6.4.0-150700.7.40.1
Ссылки
- CVE-2026-31431
- SUSE Bug 1262573
- SUSE Bug 1263689
- SUSE Bug 1263938
- SUSE Bug 1263939
- SUSE Bug 1264274
- SUSE Bug 1265460