Security update for xorg-x11-server (important)

openSUSE security update: security update for xorg-x11-server ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20896-1 Rating: important References: bsc1266294 bsc1266295 bsc1266296 bsc1266297 bsc1266298 bsc1266299 bsc1266300 bsc1266301 bsc1266302...

MGASA-2026-0163 Updated bind packages fix security vulnerabilities

Updated bind package fixes security vulnerabilities: BIND 9 server memory exhaustion during GSS-API TKEY negotiation CVE-2026-3039 Amplification vulnerabilities via self-pointed glue records CVE-2026-3592 Heap use-after-free vulnerability in BIND 9 DNS-over-HTTPS implementation CVE-2026-3593...

postgresql16-16.14-1.1 on GA media (moderate)

postgresql16-16.14-1.1 on GA media Announcement ID: openSUSE-SU-2026:10808-1 Rating: moderate Cross-References: CVE-2026-6472 CVE-2026-6473 CVE-2026-6474 CVE-2026-6475 CVE-2026-6477 CVE-2026-6478 CVE-2026-6479 CVE-2026-6637 CVE-2026-6638 CVSS scores: CVE-2026-6472 SUSE : 5.4...

Security update for trivy (important)

openSUSE Security Update: Security update for trivy Announcement ID: openSUSE-SU-2026:0163-1 Rating: important References: 1255366 1258094 1258513 1260193 1260971 1261052 1262389 1262893 Cross-References: CVE-2025-64702 CVE-2025-66564 CVE-2025-69725 CVE-2026-25934 CVE-2026-33186 CVE-2026-33747...

go1.25-1.25.9-1.1 on GA media (moderate)

go1.25-1.25.9-1.1 on GA media Announcement ID: openSUSE-SU-2026:10514-1 Rating: moderate Cross-References: CVE-2026-27140 CVE-2026-27143 CVE-2026-27144 CVE-2026-32280 CVE-2026-32281 CVE-2026-32282 CVE-2026-32283 CVE-2026-32288 CVE-2026-32289 CVSS scores: CVE-2026-27143 SUSE : 7.4...

CLSA-2026-1775657177 kernel: Fix of 9 CVEs

ovl: Filter invalid inodes with missing lookup function CVE-2024-56570 - ALSA: aloop: Fix racy access at PCM trigger CVE-2026-23191 - media: imon: reorganize serialization CVE-2025-39993 - usb: xhci: Fix inverted ringxrunevent check in handletxevent CVE-2025-37882 - Revert "VFS: Impose ordering...

Fedora 43 : freerdp (2026-f6fe509803)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-f6fe509803 advisory. Update to 3.24.2 It fixes CVE-2026-33952, CVE-2026-33977, CVE-2026-33982, CVE-2026-33983, CVE-2026-33984, CVE-2026-33985, CVE-2026-33986,...

Security update for exiv2 (important)

openSUSE security update: security update for exiv2 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20410-1 Rating: important References: bsc1219870 bsc1219871 bsc1227528 bsc1237347 bsc1248962 bsc1248963 bsc1259083 bsc1259084 bsc1259085...

ISC BIND 9 安全漏洞

ISC BIND 9 is a domain name system software developed by the ISC organization. Vulnerabilities exist in versions of ISC BIND 9 such as 9.16.50 and earlier, 9.18.46 and earlier, 9.20.20 and earlier, 9.21.19 and earlier, 9.16.50-S1 and earlier, 9.18.46-S1 and earlier, and 9.20.20-S1 and earlier...

ruby4.0-rubygem-rails-html-sanitizer-1.6.0-1.9 on GA media (moderate)

ruby4.0-rubygem-rails-html-sanitizer-1.6.0-1.9 on GA media Announcement ID: openSUSE-SU-2026:10361-1 Rating: moderate Cross-References: CVE-2015-7578 CVE-2015-7579 CVE-2015-7580 CVE-2018-3741 CVE-2022-23517 CVE-2022-23518 CVE-2022-23519 CVE-2022-23520 CVE-2022-32209 CVSS scores: CVE-2018-3741 SUS...

March Microsoft Patch Tuesday

March Microsoft Patch Tuesday. A total of 79 vulnerabilities, about one and a half times more than in February. What's truly unusual is that this time there were no vulnerabilities with signs of exploitation in the wild or a public exploit! 🤔 At least not yet. 😏 The following vulnerabilities can ...

Microsoft Patch Tuesday for March 2026 — Snort rules and prominent vulnerabilities

Microsoft has released its monthly security update for March 2026 which includes 79 vulnerabilities, including three that Microsoft marked as "critical." The remaining vulnerabilities listed are classified as "important." Microsoft assessed that exploitation of the three "critical" vulnerabilitie...

openSUSE Security Advisory (SUSE-SU-2026:0777-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Bypassing Windows Administrator Protection

Posted by James Forshaw A headline feature introduced in the latest release of Windows 11, 25H2 is Administrator Protection. The goal of this feature is to replace User Account Control UAC with a more robust and importantly, securable system to allow a local user to access administrator privilege...

Security update for MozillaThunderbird (important)

openSUSE security update: security update for mozillathunderbird ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20002-1 Rating: important References: bsc1253188 Cross-References: CVE-2025-13012 CVE-2025-13013 CVE-2025-13014 CVE-2025-13015...

nvidia-open-driver-G07-signed-check-590.44.01-1.1 on GA media (moderate)

nvidia-open-driver-G07-signed-check-590.44.01-1.1 on GA media Announcement ID: openSUSE-SU-2025:15804-1 Rating: moderate Cross-References: CVE-2024-0090 CVE-2024-0091 CVE-2024-0131 CVE-2024-0150 CVE-2025-23277 CVE-2025-23278 CVE-2025-23279 CVE-2025-23283 CVE-2025-23286 CVSS scores: CVE-2024-0090...

Socomec DIRIS Digiware M series and Easy Config, PDF XChange Editor vulnerabilities

Cisco Talos' Vulnerability Discovery & Research team recently disclosed an out-of-bounds read vulnerability in PDF XChange Editor, and ten vulnerabilities in Socomec DIRIS Digiware M series and Easy Config products. The vulnerabilities mentioned in this blog post have been patched by their...

TencentOS Server 3: unbound (TSSA-2024:0083)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0083 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

MozillaThunderbird-140.5.0-1.1 on GA media (moderate)

MozillaThunderbird-140.5.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:15738-1 Rating: moderate Cross-References: CVE-2025-13012 CVE-2025-13013 CVE-2025-13014 CVE-2025-13015 CVE-2025-13016 CVE-2025-13017 CVE-2025-13018 CVE-2025-13019 CVE-2025-13020 CVSS scores: CVE-2025-13012 SUSE : 7.5...

CLSA-2025-1757692837 microcode_ctl: Fix of 9 CVEs

Update Intel CPU microcode to 20250812, addresses: CVE-2024-28047, CVE-2024-31157, CVE-2024-39279, CVE-2024-28956, CVE-2024-43420, CVE-2024-45332, CVE-2025-24495, CVE-2025-20623, CVE-2025-20012 - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c000401; - Addition...