SUSE-SU-2025:21038-1 Security update for podman

This update for podman fixes the following issues: - CVE-2025-31133,CVE-2025-52565,CVE-2025-52881: Fixed various container breakouts bsc1252376: - Fixed podman & buildah with runc 1.3.2 fail with lots of warnings as rootless bsc1252543...

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issue: Mozilla Thunderbird is updated to 140.4. changed: Account Hub is now disabled by default for second email account bmo1992027 changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 bmo1952100 fixed: Users could not read mail...

[SECURITY] Fedora 42 Update: dolphin-emu-2503a-4.fc42

Dolphin is a Gamecube, Wii and Triforce the arcade machine based on the Gamecube emulator, which supports full HD video with several enhancements su ch as compatibility with all PC controllers, turbo speed, networked multi player, and more. Most games run perfectly or with minor bugs...

[SECURITY] Fedora 42 Update: python-starlette-0.47.3-2.fc42

Starlette is a lightweight ASGI framework/toolkit, which is ideal for building async web services in Python. It is production-ready, and gives you the following: =E2=80=A2 A lightweight, low-complexity HTTP web framework. =E2=80=A2 WebSocket support. =E2=80=A2 In-process background tasks. =E2=80=...

Amazon Linux 2023 : cuda-compat-13-0 (ALAS2023NVIDIA-2025-259)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-259 advisory. NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalatio...

Debian dla-4366 : python3-swift - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4366 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4366-1 [email protected] https://www.debian.org/lts/security/...

SUSE SLES15 Security Update : qatengine, qatlib (SUSE-SU-2025:3942-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3942-1 advisory. Note that the 1.6.1 release included in 1.7.0 fixes the following vulnerabilities: bsc1233363 CVE-2024-28885 bsc1233365...

SUSE SLES15 Security Update : qatengine, qatlib (SUSE-SU-2025:3943-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3943-1 advisory. Note that the 1.6.1 release included in 1.7.0 fixes the following vulnerabilities: bsc1233363 CVE-2024-28885 bsc1233365...

xorg: xmayland: Value overflow in XkbSetCompatMap()

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989562)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989562 advisory. In the Linux kernel, the following vulnerability has been resolved: arm64: compat: Do not treat syscall number as ESRELx for a bad syscall If a compat process tries ...

CVE-2025-65073

OpenStack Keystone before 26.0.1, 27.0.0, and 28.0.0 allows a /v3/ec2tokens or /v3/s3tokens request with a valid AWS Signature to provide Keystone authorization...

Veeam ONE v13 Upgrade Fails With "Failed to configure the product. Some configuration actions failed to complete."

Article Applicability This error occurs only when upgrading to Veeam ONE build 13.0.0.5630. This issue was resolved starting in Veeam ONE build 13.0.1.5860. Challenge The upgrade to Veeam ONE build 13.0.0.5630 fails with the following error during step 3 Upgrading Veeam ONE Server...: Failed to...

xorg: xmayland: Value overflow in XkbSetCompatMap()

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

FreeBSD : Firefox -- Mitigation bypass (a4bebda9-b808-11f0-8016-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a4bebda9-b808-11f0-8016-b42e991fc52e advisory. https://bugzilla.mozilla.org/showbug.cgi?id=1978453 reports: Mitigation bypass in the Web Compatibility...

ALSA-2025:19489 Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

Astra Linux – Vulnerability in Firefox

Mitigation bypass in Web Compatibility: Tooling component. This vulnerability has been fixed in Firefox 143 and Thunderbird 143...

[SECURITY] Fedora 42 Update: xorg-x11-server-Xwayland-24.1.9-1.fc42

Xwayland is an X server for running X clients under Wayland...

ixgbevf: fix mailbox API compatibility by negotiating supported features

...

SUSE CVE-2025-40104

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: fix mailbox API compatibility by negotiating supported features There was backward compatibility in the terms of mailbox API. Various drivers from various OSes supporting 10G adapters from Intel portfolio could easily...