Critical Linux Kernel Security Update: Live Patch 8 for SLE 15 SP6 Fixes High-Risk Vulnerabilities

 

SUSE releases critical Linux Kernel Live Patch 8 for SLE 15 SP6, fixing high-severity vulnerabilities (CVE-2025-21680, CVE-2024-58013, CVE-2024-57996). Learn how to secure your systems with this essential update and prevent potential exploits.

Overview of the Security Update

SUSE has issued an important security update (Live Patch 8 for SLE 15 SP6) addressing three critical vulnerabilities in the Linux Kernel (6.4.0-150600_23_38). This patch is essential for maintaining system integrity and preventing potential exploits.

Affected Products:

• openSUSE Leap 15.6

• SUSE Linux Enterprise Live Patching 15-SP6

• SUSE Linux Enterprise Real Time 15 SP6

• SUSE Linux Enterprise Server 15 SP6

• SUSE Linux Enterprise Server for SAP Applications 15 SP6

Key Vulnerabilities Patched (CVSS Scores 7.0-8.5)

1. CVE-2025-21680 – pktgen Out-of-Bounds Access (CVSS 8.5)

• Risk: High-severity memory corruption flaw in pktgen leading to potential privilege escalation.

• Impact: Attackers could execute arbitrary code with elevated permissions.

• Bug Reference: bsc#1236701

2. CVE-2024-58013 – Bluetooth MGMT Slab-Use-After-Free (CVSS 7.8)

• Risk: Memory corruption in Bluetooth management interface (mgmt_remove_adv_monitor_sync).

• Impact: Remote attackers could crash systems or execute malicious payloads via Bluetooth.

• Bug Reference: bsc#1239096

3. CVE-2024-57996 – net_sched sch_sfq 1-Packet Limit Exploit (CVSS 8.5)

• Risk: Denial-of-Service (DoS) vulnerability in the network scheduler (sch_sfq).

• Impact: Attackers could disrupt network traffic by exploiting improper packet handling.

• Bug Reference: bsc#1239077

How to Apply the Patch

Recommended Installation Methods:

• YaST Online Update (GUI-based)

• Command Line (zypper patch):

  bash

  Copy

  Download

  # For openSUSE Leap 15.6:
  zypper in -t patch SUSE-2025-1948=1
  
  # For SUSE Linux Enterprise Live Patching 15-SP6:
  zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP6-2025-1948=1

Verification Steps:

After patching, verify kernel version with:

bash

Copy

Download

uname -r

Ensure it matches 6.4.0-150600_23_38 or later.

Why This Update Matters for Enterprise Security

Linux kernel vulnerabilities pose serious risks to enterprise environments, including:
✔ Privilege escalation attacks (CVE-2025-21680)

✔ Bluetooth-based exploits (CVE-2024-58013)

✔ Network disruption via DoS (CVE-2024-57996)

Proactive patching is critical to prevent breaches, data leaks, and compliance violations.

Frequently Asked Questions (FAQ)

Q: Is this update mandatory?

A: Yes, due to the high CVSS scores (7.0-8.5), delaying installation increases exploit risks.

Q: Can these vulnerabilities be exploited remotely?

A: Some (like CVE-2024-58013) require local access, while others (CVE-2024-57996) may affect network stability.

Q: Where can I find official advisories?

A: Refer to SUSE’s security portal:

• CVE-2024-57996

• CVE-2024-58013

• CVE-2025-21680

Final Recommendations

🚀 Apply this patch immediately to mitigate risks.
🔒 Monitor logs for unusual activity post-update.
📢 Share this advisory with your IT team to ensure compliance.