kernel update [SLES15 SP6 6.4.0-150600.23.81.3]

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security
issues

The following security issues were fixed:

• CVE-2022-50253: bpf: make sure skb->len != 0 when redirecting to a tunneling
  device (bsc#1249912).
• CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in
  lio_target_nacl_info_show() (bsc#1251786).
• CVE-2025-21710: tcp: correct handling of extreme memory squeeze
  (bsc#1237888).
• CVE-2025-37916: pds_core: remove write-after-free of client_id
  (bsc#1243474).
• CVE-2025-38359: s390/mm: Fix in_atomic() handling in
  do_secure_storage_access() (bsc#1247076).
• CVE-2025-38361: drm/amd/display: Check dce_hwseq before dereferencing it
  (bsc#1247079).
• CVE-2025-39788: scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE
  (bsc#1249547).
• CVE-2025-39805: net: macb: fix unregister_netdev call order in macb_remove()
  (bsc#1249982).
• CVE-2025-39819: fs/smb: Fix inconsistent refcnt update (bsc#1250176).
• CVE-2025-39859: ptp: ocp: fix use-after-free bugs causing by
  ptp_ocp_watchdog (bsc#1250252).
• CVE-2025-39944: octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp()
  (bsc#1251120).
• CVE-2025-39980: nexthop: Forbid FDB status change while nexthop is in a
  group (bsc#1252063).
• CVE-2025-40001: scsi: mvsas: Fix use-after-free bugs in mvs_work_queue
  (bsc#1252303).
• CVE-2025-40021: tracing: dynevent: Add a missing lockdown check on dynevent
  (bsc#1252681).
• CVE-2025-40027: net/9p: fix double req put in p9_fd_cancelled (bsc#1252763).
• CVE-2025-40030: pinctrl: check the return value of
  pinmux_ops::get_function_name() (bsc#1252773).
• CVE-2025-40038: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP
  isn't valid (bsc#1252817).
• CVE-2025-40040: mm/ksm: fix flag-dropping behavior in ksm_madvise
  (bsc#1252780).
• CVE-2025-40048: uio_hv_generic: Let userspace take care of interrupt mask
  (bsc#1252862).
• CVE-2025-40055: ocfs2: fix double free in user_cluster_connect()
  (bsc#1252821).
• CVE-2025-40059: coresight: Fix incorrect handling for return value of
  devm_kzalloc (bsc#1252809).
• CVE-2025-40064: smc: Fix use-after-free in __pnet_find_base_ndev()
  (bsc#1252845).
• CVE-2025-40070: pps: fix warning in pps_register_cdev when register device
  fail (bsc#1252836).
• CVE-2025-40074: ipv4: start using dst_dev_rcu() (bsc#1252794).
• CVE-2025-40075: tcp_metrics: use dst_dev_net_rcu() (bsc#1252795).
• CVE-2025-40083: net/sched: sch_qfq: Fix null-deref in agg_dequeue
  (bsc#1252912).
• CVE-2025-40098: ALSA: hda: cs35l41: Fix NULL pointer dereference in
  cs35l41_get_acpi_mute_state() (bsc#1252917).
• CVE-2025-40105: vfs: Don't leak disconnected dentries on umount
  (bsc#1252928).
• CVE-2025-40139: smc: Use __sk_dst_get() and dst_dev_rcu() in in
  smc_clc_prfx_set() (bsc#1253409).
• CVE-2025-40149: tls: Use __sk_dst_get() and dst_dev_rcu() in
  get_netdev_for_sock() (bsc#1253355).
• CVE-2025-40159: xsk: Harden userspace-supplied xdp_desc validation
  (bsc#1253403).
• CVE-2025-40168: smc: Use __sk_dst_get() and dst_dev_rcu() in
  smc_clc_prfx_match() (bsc#1253427).
• CVE-2025-40169: bpf: Reject negative offsets for ALU ops (bsc#1253416).
• CVE-2025-40173: net/ip6_tunnel: Prevent perpetual tunnel growth
  (bsc#1253421).
• CVE-2025-40176: tls: wait for pending async decryptions if tls_strp_msg_hold
  fails (bsc#1253425).
• CVE-2025-40204: sctp: Fix MAC comparison to be constant-time (bsc#1253436).

The following non security issues were fixed:
https://lists.suse.com/pipermail/sle-security-updates/2025-December/023573.html