In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk->skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk->skb can only be NULL if chunk->head_skb is not. Check for frag_list instead and do it just before replacing chunk->skb. We're sure that otherwise chunk->skb is non-NULL because of outer if() condition.

Уязвимость компонента net/sctp ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

ELSA-2026-3685: kernel security update (IMPORTANT)

Important: kernel security update

In the Linux kernel, the following vulnerability has been resolved: libceph: fix potential use-after-free in have_mon_and_osd_map() The wait loop in __ceph_open_session() can race with the client receiving a new monmap or osdmap shortly after the initial map is received. Both ceph_monc_handle_map() and handle_one_map() install a new map immediately after freeing the old one kfree(monc->monmap); monc->monmap = monmap; ceph_osdmap_destroy(osdc->osdmap); osdc->osdmap = newmap; under client->monc.mutex and client->osdc.lock respectively, but because neither is taken in have_mon_and_osd_map() it's possible for client->monc.monmap->epoch and client->osdc.osdmap->epoch arms in client->monc.monmap && client->monc.monmap->epoch && client->osdc.osdmap && client->osdc.osdmap->epoch; condition to dereference an already freed map. This happens to be reproducible with generic/395 and generic/397 with KASAN enabled: BUG: KASAN: slab-use-after-free in have_...

ELSA-2026-0786: kernel security update (IMPORTANT)

Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5)

Moderate: kernel security update

ELSA-2026-0445: kernel security update (MODERATE)

Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise 15 SP7)

Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise 15 SP7 RT)

ELSA-2026-0755: kernel security update (MODERATE)

Important: kernel security update

ELSA-2026-0793: kernel security update (IMPORTANT)

Important: kernel security update

ELSA-2026-0453: kernel security update (IMPORTANT)

Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP7)

Security update for the Linux Kernel (Live Patch 18 for SUSE Linux Enterprise 15 SP6)

Security update for the Linux Kernel (Live Patch 76 for SUSE Linux Enterprise 12 SP5)

Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP7 RT)