OPENSUSE-SU-2025:15340-1 php8-8.4.10-1.1 on GA media

These are all security issues fixed in the php8-8.4.10-1.1 package on the GA media of openSUSE Tumbleweed...

CVE-2025-53630

An integer overflow flaw was found in llama.cpp. This flaw exists in the ggufinitfromfileimpl function in ggml/src/gguf.cpp and can lead to heap out-of-bounds read/write. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Produc...

CVE-2025-6948

An issue has been discovered in GitLab CE/EE affecting all versions from 17.11 before 17.11.6, 18.0 before 18.0.4, and 18.1 before 18.1.2 that, under certain conditions, could have allowed a successful attacker to execute actions on behalf of users by injecting malicious content...

CVE-2025-38311

In the Linux kernel, the following vulnerability has been resolved: iavf: get rid of the crit lock Get rid of the crit lock. That frees us from the error prone logic of trylocks. Thanks to netdevlock by Jakub it is now easy, and in most cases we were protected by it already - replace crit lock by...

CVE-2025-38286

In the Linux kernel, the following vulnerability has been resolved: pinctrl: at91: Fix possible out-of-boundary access at91gpioprobe doesn't check that given OF alias is not available or something went wrong when trying to get it. This might have consequences when accessing gpiochips array with...

Amazon Linux 2023 : tomcat9, tomcat9-admin-webapps, tomcat9-el-3.0-api (ALAS2023-2025-1065)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1065 advisory. Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability in Apache Commons FileUpload. This issue affects Apache Commons FileUpload: from 1.0 before...

EulerOS 2.0 SP10 : libsoup (EulerOS-SA-2025-1780)

According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contain...

[slackware-security] git

New git packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/git-2.46.4-i586-1slack15.0.txz: Upgraded. This update fixes various security issues. For more information, see:...

Microsoft Windows Multiple Vulnerabilities (KB5062553)

This host is missing an important security update according to Microsoft KB5062553 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

OPENSUSE-SU-2025:15328-1 go1.23-1.23.11-1.1 on GA media

These are all security issues fixed in the go1.23-1.23.11-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15326-1 chmlib-devel-0.40-26.1 on GA media

These are all security issues fixed in the chmlib-devel-0.40-26.1 package on the GA media of openSUSE Tumbleweed...

libxml2-2-2.13.8-2.1 on GA media (moderate)

libxml2-2-2.13.8-2.1 on GA media Announcement ID: openSUSE-SU-2025:15321-1 Rating: moderate Cross-References: CVE-2025-49794 CVE-2025-49795 CVE-2025-49796 CVE-2025-6021 CVE-2025-6170 CVSS scores: CVE-2025-49794 SUSE : 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H CVE-2025-49795 SUSE : 7.5...

avif-tools-1.3.0-2.1 on GA media (moderate)

avif-tools-1.3.0-2.1 on GA media Announcement ID: openSUSE-SU-2025:15320-1 Rating: moderate Cross-References: CVE-2025-48174 CVSS scores: CVE-2025-48174 SUSE : 6.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L CVE-2025-48174 SUSE : 7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N...

OPENSUSE-SU-2025:15334-1 libraptor-devel-2.0.16-5.1 on GA media

These are all security issues fixed in the libraptor-devel-2.0.16-5.1 package on the GA media of openSUSE Tumbleweed...

USN-7609-4: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; CVE-2025-38001, CVE-2025-37798, CVE-2025-37932,...

USN-7611-2: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-3793...

USN-7608-5: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; CVE-2025-37890...

USN-7594-3: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - RISC-V architecture; - User-Mode Linux UML; - x...

2025-07 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5062557)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

2025-07 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5062560)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...