Security update for yq (important)

openSUSE security update: security update for yq ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20892-1 Rating: important References: bsc1241719 bsc1251339 bsc1251540 bsc1266248 bsc1267053 bsc1267199 Cross-References: CVE-2024-45338 CVE-2025-22872...

CLEANSTART-2026-TD06078 Security fixes for CVE-2025-47911, CVE-2025-58190, CVE-2025-61726, CVE-2025-61728, CVE-2025-61730, CVE-2025-68121, CVE-2026-32280, CVE-2026-32281, CVE-2026-32289, CVE-2026-33811, CVE-2026-33814, CVE-2026-39817, CVE-2026-39819, CVE-2026-39820, CVE-2026-39823, CVE-2026-39825, CVE-2026-39826, CVE-2026-39836, CVE-2026-42499, CVE-2026-42501 applied in versions: 2.4.0-r0, 2.4.0-r3, 2.5.0-r0, 2.5.0-r1

Multiple security vulnerabilities affect the spark-operator package. These issues are resolved in later releases. See references for individual vulnerability details...

Amazon Linux 2023 : yq (ALAS2023-2026-1582)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1582 advisory. The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service DoS if an attacker provides specially...

USN-8089-3 adsys, juju-core, lxd vulnerabilities

USN-8089-1 fixed vulnerabilities in Go Networking. This update provides the corresponding update to code vendored in LXD, ADSys, and Juju Core. Original advisory details: Bahruz Jabiyev, Tommaso Innocenti, Anthony Gavazzi, Steven Sprecher, and Kaan Onarlioglu discovered that servers using Go...

CLEANSTART-2026-HX97842 Security fixes for CVE-2025-47911, CVE-2025-47913, CVE-2025-47914, CVE-2025-54410, CVE-2025-58181, CVE-2025-58190, CVE-2025-61727, CVE-2025-61729, CVE-2025-68121, CVE-2026-1229, CVE-2026-24051, CVE-2026-25679, CVE-2026-26958, CVE-2026-27139, CVE-2026-27142, CVE-2026-33186 applied in versions: 2.2.2-r6, 2.3.2-r4, 2.4.4-r2, 2.5.0-r0, 2.5.0-r1

Multiple security vulnerabilities affect the openbao-fips package. These issues are resolved in later releases. See references for individual vulnerability details...

Security update for v2ray-core (important)

openSUSE Security Update: Security update for v2ray-core Announcement ID: openSUSE-SU-2026:0103-1 Rating: important References: 1251404 1260329 Cross-References: CVE-2025-47911 CVE-2026-33186 CVSS scores: CVE-2025-47911 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N...

CVE-2025-47911 affecting package gh for versions less than 2.62.0-13

CVE-2025-47911 affecting package gh for versions less than 2.62.0-13. A patched version of the package is available...

CVE-2025-47911 affecting package cf-cli for versions less than 8.7.11-5

CVE-2025-47911 affecting package cf-cli for versions less than 8.7.11-5. A patched version of the package is available...

CVE-2025-47911 affecting package docker-buildx for versions less than 0.14.0-10

CVE-2025-47911 affecting package docker-buildx for versions less than 0.14.0-10. A patched version of the package is available...

CVE-2025-47911 affecting package docker-compose for versions less than 2.27.0-8

CVE-2025-47911 affecting package docker-compose for versions less than 2.27.0-8. A patched version of the package is available...

CVE-2025-47911 affecting package sriov-network-device-plugin for versions less than 3.7.0-5

CVE-2025-47911 affecting package sriov-network-device-plugin for versions less than 3.7.0-5. A patched version of the package is available...

CVE-2025-47911 affecting package cloud-provider-kubevirt for versions less than 0.5.1-3

CVE-2025-47911 affecting package cloud-provider-kubevirt for versions less than 0.5.1-3. A patched version of the package is available...

CVE-2025-47911 affecting package multus for versions less than 4.0.2-7

CVE-2025-47911 affecting package multus for versions less than 4.0.2-7. A patched version of the package is available...

CVE-2025-47911 affecting package kubernetes for versions less than 1.30.10-21

CVE-2025-47911 affecting package kubernetes for versions less than 1.30.10-21. A patched version of the package is available...

CVE-2025-47911 affecting package cni-plugins for versions less than 1.4.0-5

CVE-2025-47911 affecting package cni-plugins for versions less than 1.4.0-5. A patched version of the package is available...

CVE-2025-47911 affecting package kube-vip-cloud-provider for versions less than 0.0.10-5

CVE-2025-47911 affecting package kube-vip-cloud-provider for versions less than 0.0.10-5. A patched version of the package is available...

CVE-2025-47911 affecting package telegraf for versions less than 1.31.0-15

CVE-2025-47911 affecting package telegraf for versions less than 1.31.0-15. A patched version of the package is available...

CVE-2025-47911 affecting package cert-manager for versions less than 1.11.2-27

CVE-2025-47911 affecting package cert-manager for versions less than 1.11.2-27. A patched version of the package is available...

CVE-2025-47911 affecting package cri-o for versions less than 1.22.3-20

CVE-2025-47911 affecting package cri-o for versions less than 1.22.3-20. A patched version of the package is available...

CVE-2025-47911 affecting package gh for versions less than 2.13.0-26

CVE-2025-47911 affecting package gh for versions less than 2.13.0-26. A patched version of the package is available...