OPENSUSE-SU-2026:20513-1 Security update for sqlite3

This update for sqlite3 fixes the following issues: Update sqlite3 to version 3.51.3: Security issues: - CVE-2025-7709: Integer Overflow in FTS5 Extension bsc1254670. - CVE-2025-70873: SQLite zipfile extension may disclose uninitialized heap memory during inflation bsc1259619. Non security issue:...

SUSE-SU-2026:21095-1 Security update for sqlite3

This update for sqlite3 fixes the following issues: Update sqlite3 to version 3.51.3: Security issues: - CVE-2025-7709: Integer Overflow in FTS5 Extension bsc1254670. - CVE-2025-70873: SQLite zipfile extension may disclose uninitialized heap memory during inflation bsc1259619. Non security issue:...

SUSE-SU-2026:21173-1 Security update for sqlite3

This update for sqlite3 fixes the following issues: Update sqlite3 to version 3.51.3: Security issues: - CVE-2025-7709: Integer Overflow in FTS5 Extension bsc1254670. - CVE-2025-70873: SQLite zipfile extension may disclose uninitialized heap memory during inflation bsc1259619. Non security issue:...

openSUSE 16 Security Update : freerdp2 (openSUSE-SU-2026:20320-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20320-1 advisory. Changes in freerdp2: - Multiple CVE fixes: CVE-2026-24491, bsc1257981, CVE-2026-24675, bsc1257982, CVE-2026-24676, bsc1257983, CVE-2026-24679,...

Fedora 43 : apt / python-apt (2026-1c47e433df)

The remote Fedora 43 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2026-1c47e433df advisory. Update to latest upstream release apt 3.1.15 and python-apt 3.1.0 ---- Update to latest upstream release apt 3.1.15, also fix build problem with previous...

OPENSUSE-SU-2026:20320-1 Security update for freerdp2

This update for freerdp2 fixes the following issues: Changes in freerdp2: - Multiple CVE fixes: CVE-2026-24491, bsc1257981, CVE-2026-24675, bsc1257982, CVE-2026-24676, bsc1257983, CVE-2026-24679, bsc1257986, CVE-2026-24681, bsc1257988, CVE-2026-24682, bsc1257989, CVE-2026-24683, bsc1257990,...

curl: Path Traversal in curl file:// Protocol Handler Allows Unauthorized File Access

Summary During my manual review of the file path handling logic in curl's source code, I noticed the absence of proper validation for directory traversal sequences, which I then verified through practical testing. I discovered that curl allows unauthorized access to arbitrary files through the...

Security update for postgresql17, postgresql18

This update for postgresql17, postgresql18 fixes the following issues: Changes in postgresql18: Fix build with uring for post SLE15 code streams. Update to 18.1: https://www.postgresql.org/about/news/p-3171/ https://www.postgresql.org/docs/release/18.1/ bsc1253332, CVE-2025-12817: Missing check f...

PT-2025-43557

Name of the Vulnerable Software and Affected Versions Container-native Virtualization affected versions not specified Description A flaw exists that allows for privilege escalation within containers. The issue arises from the /etc/passwd file being created with group-writable permissions during t...

CVE-2025-58144

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. There are two issues related to the mapping of pages belonging to other domains: For one, an assertion is wrong there, where the case actually needs handling. A NULL...

CVE-2025-8799

A vulnerability was identified in Open5GS up to 2.7.5. Affected by this vulnerability is the function amfnpcfampolicycontrolbuildcreate/amfnsmfpdusessionbuildcreatesmcontext of the file src/amf/npcf-build.c of the component AMF. The manipulation leads to denial of service. The attack can be...

CVE-2025-53819

CVE-2025-53819 affects Nix (package manager). On macOS, builds using Nix 2.30.0 ran with elevated privileges (root) instead of the intended build user privileges, due to the privilege-dropping change. The issue is resolved by upgrading to Nix 2.30.1 or later; no public workarounds are documented....

SUSE-SU-2025:01778-1 Security update for open-vm-tools

This update for open-vm-tools fixes the following issues: Update to 12.5.2: Security fixes: - CVE-2025-22247: Fixed Insecure file handling bsc1243106 Other fixes: - Fixed GCC 15 compile time error bsc1241938 - Fixed building with containerd 1.7.25+ bsc1237147 Full changelog:...

Security update for open-vm-tools

This update for open-vm-tools fixes the following issues: Update to 12.5.2: Security fixes: CVE-2025-22247: Fixed Insecure file handling bsc1243106 Other fixes: Fixed GCC 15 compile time error bsc1241938 Fixed building with containerd 1.7.25+ bsc1237147 Ensure vmtoolsd.service and vgauthd.service...

CVE-2025-24216

The issue was addressed with improved memory handling. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6, macOS Sequoia 15.4, tvOS 18.4, visionOS 2.4, watchOS 11.4. Processing maliciously crafted web content may lead to an unexpected Safari crash...

podman security update

An update is available for podman. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The podman tool manages pods, container images, and containers. It is part of...

Linux Distros Unpatched Vulnerability : CVE-2024-11218

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in podman build and buildah. This issue occurs in a container breakout by using --jobs=2 and a race condition when building a maliciou...

Security update for tiff

This update for tiff fixes the following issues: CVE-2023-25435: Heap-buffer-overflow in extractContigSamplesShifted8bits in tiffcrop.c bsc1212607. CVE-2023-52356: Segment fault in libtiff in TIFFReadRGBATileExt leading to denial of service bsc1219213. Other bugfixes: Fixed tiff build issue on...

CVE-2025-22867 Arbitrary code execution during build on darwin in cmd/go

On Darwin, building a Go module which contains CGO can trigger arbitrary code execution when using the Apple version of ld, due to usage of the @executablepath, @loaderpath, or @rpath special values in a "cgo LDFLAGS" directive. This issue only affected go1.24rc2...

GHSA-VXCF-C7MX-PG53 Build corruption when using `PYO3_CONFIG_FILE` environment variable

In PyO3 0.23.0 the PYO3CONFIGFILE environment variable used to configure builds regressed such that changing the environment variable would no longer trigger PyO3 to reconfigure and recompile. In combination with workflows using tools such as maturin to build for multiple versions in a single...