Lucene search
K
SuseMost viewed

5449 matches found

SUSE Linux
SUSE Linux
•added 2026/05/25 1:59 p.m.•8 views

Security update for xz

This update for xz fixes the following issue CVE-2026-34743: buffer overflow in lzmaindexappend bsc1261280. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your...

7.5CVSS5.9AI score0.00351EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/22 5:54 a.m.•8 views

Security update for rekor

This update for rekor rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...

5.8AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/05/22 5:53 a.m.•8 views

Security update for container-suseconnect

This update for container-suseconnect rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product:...

5.8AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/05/21 11:57 a.m.•8 views

Security update for php8

This update for php8 fixes the following issues CVE-2025-14179: improper handling of NULL bytes by the PDO Firebird driver when preparing SQL queries can lead to SQL injection bsc1264778. CVE-2026-6722: use-after-free in SOAP using Apache map can lead to remote code execution bsc1264776...

9.8CVSS6.5AI score0.0078EPSS
Exploits1References32
SUSE Linux
SUSE Linux
•added 2026/05/20 9:35 a.m.•8 views

Security update for runc

This update for runc rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...

5.8AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/05/19 8:22 a.m.•8 views

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issue CVE-2026-42050: Stack buffer overflow in XTileImage bsc1265048. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...

5.5CVSS5.9AI score0.0013EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/18 1:19 p.m.•8 views

Security update for PackageKit

This update for PackageKit fixes the following issue: CVE-2026-41651: Do not allow re-invoking methods on non-new transactions bsc1262220. Special Instructions and Notes: Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zyppe...

9.3CVSS5.8AI score0.0046EPSS
Exploits10References4
SUSE Linux
SUSE Linux
•added 2026/05/18 8:12 a.m.•8 views

Security update for tiff

This update for tiff fixes the following issue CVE-2026-4775: signed integer overflow in the putcontig8bitYCbCr44tile function bsc1260411. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

8.8CVSS5.8AI score0.00553EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/18 8:7 a.m.•8 views

Security update for python-python-multipart

This update for python-python-multipart fixes the following issue CVE-2026-42561: denial of service vulnerability in multipart part header parsing bsc1265250. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.5CVSS5.8AI score0.00549EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/18 8:2 a.m.•8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache bsc1264013. CVE-2026-46300: net: skbuff: propagate shared-frag marker...

8.8CVSS6.1AI score0.93235EPSS
Exploits47References20
SUSE Linux
SUSE Linux
•added 2026/05/18 7:58 a.m.•8 views

Security update for php8

This update for php8 fixes the following issues CVE-2025-14179: improper handling of NULL bytes by the PDO Firebird driver when preparing SQL queries can lead to SQL injection bsc1264778. CVE-2026-6722: use-after-free in SOAP using Apache map can lead to remote code execution bsc1264776...

9.8CVSS6.5AI score0.0078EPSS
Exploits1References32
SUSE Linux
SUSE Linux
•added 2026/05/18 7:55 a.m.•8 views

Security update for perl-Crypt-URandom

This update for perl-Crypt-URandom fixes the following issue: CVE-2026-2474: negative length parameter in the XS function can lead to a heap-based buffer overflow bsc1258266. Changes for perl-Crypt-URandom: updated to 0.550.0 0.55 Fix for sysread/read failures. Thanks to Miha Purg for GH20 Fix fo...

8.2CVSS6AI score0.00295EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/18 7:53 a.m.•8 views

Security update for nginx

This update for nginx fixes the following issues Security issues: CVE-2026-1642: plain text data injection into the response from an upstream proxied server bsc1257675. CVE-2026-27654: buffer overflow in the NGINX worker process via the ngxhttpdavmodule module bsc1260416. CVE-2026-27784: NGINX...

8.3CVSS7.7AI score0.21621EPSS
Exploits0References18
SUSE Linux
SUSE Linux
•added 2026/05/18 7:41 a.m.•8 views

Security update for perl-Text-CSV_XS

This update for perl-Text-CSVXS fixes the following issue CVE-2026-7111: use-after-free when registered callbacks extend the Perl argument stack may enable type confusion or memory corruption bsc1263690. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods...

8.6CVSS5.8AI score0.00158EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/18 7:40 a.m.•8 views

Security update for dnsmasq

This update for dnsmasq fixes the following issues Security issues: CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. CVE-2026-4891: heap-based out-of-bounds read vulnerability in the DNSSEC validation bsc1265002. CVE-2026-4892: heap-based out-of-bounds write vulnerability in...

9.2CVSS6AI score0.07237EPSS
Exploits4References34
SUSE Linux
SUSE Linux
•added 2026/05/18 7:38 a.m.•8 views

Security update for xen

This update for xen fixes the following issue CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption bsc1264066. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like...

7.4CVSS5.8AI score0.00258EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/18 7:34 a.m.•8 views

Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.280 fixes one security issue The following security issue was fixed: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264459. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.8CVSS6AI score0.93235EPSS
Exploits31References4
SUSE Linux
SUSE Linux
•added 2026/05/17 7:34 p.m.•8 views

Security update for the Linux Kernel (Live Patch 40 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.164 fixes one security issue The following security issue was fixed: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264459. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.8CVSS6AI score0.93235EPSS
Exploits31References4
SUSE Linux
SUSE Linux
•added 2026/05/17 5:18 p.m.•8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache bsc1264013. CVE-2026-46300: net: skbuff: propagate shared-frag marker through...

8.8CVSS6.1AI score0.03663EPSS
Exploits17References12
SUSE Linux
SUSE Linux
•added 2026/05/17 3:34 p.m.•8 views

Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.34 fixes one security issue The following security issue was fixed: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264459. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.8CVSS6AI score0.93235EPSS
Exploits31References4
SUSE Linux
SUSE Linux
•added 2026/05/15 3:36 p.m.•8 views

Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-53.40 fixes one security issue The following security issue was fixed: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264459. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.8CVSS6AI score0.93235EPSS
Exploits31References4
SUSE Linux
SUSE Linux
•added 2026/05/14 10:34 p.m.•8 views

Security update for go1.25

This update for go1.25 fixes the following issues Security issues: CVE-2026-33811: net: crash when handling long CNAME response bsc1264508. CVE-2026-33814: net/http: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1264506. CVE-2026-39817: cmd/go: "go tool pack" does not...

7.5CVSS5.9AI score0.00813EPSS
Exploits0References48
SUSE Linux
SUSE Linux
•added 2026/05/13 3:24 p.m.•8 views

Security update for log4j

This update for log4j fixes the following issues: CVE-2026-34477: TLS connections vulnerable to interception due to incomplete hostname verification configuration checks bsc1262050. CVE-2026-34479: silent log event loss due to improper XML escaping in Log4j1XmlLayout bsc1262091. CVE-2026-34480:...

6.5CVSS5.8AI score0.0086EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2026/05/13 10:5 a.m.•8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix the following issue: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264449. CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present bsc1264450. Special Instructions and Notes: Plea...

8.8CVSS6AI score0.93235EPSS
Exploits33References8
SUSE Linux
SUSE Linux
•added 2026/05/08 8:58 a.m.•8 views

Security update for strongswan

This update for strongswan fixes the following issues: CVE-2026-35329: NULL pointer dereference when processing padding in PKCS7 bsc1261717. CVE-2026-35330: integer underflow when handling EAP-SIM/AKA attributes bsc1261705. CVE-2026-35331: acceptance of certificates violating X.509 name constrain...

9.2CVSS5.8AI score
Exploits6References24
SUSE Linux
SUSE Linux
•added 2026/05/07 1:55 p.m.•8 views

Security update for freeipmi

This update for freeipmi fixes the following issue: CVE-2026-33554: improper memory handling and data validation can lead to stack buffer overflows and acceptance of malformed payloads/responses bsc1260414. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

7.6CVSS5.9AI score0.00403EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/07 11:52 a.m.•8 views

Security update for librsvg

This update for librsvg fixes the following issue: CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257922. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.7CVSS5.8AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/07 10:49 a.m.•8 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: Update to version 2.52.1. Security issues fixed: CVE-2026-20643: processing maliciously crafted web content may bypass Same Origin Policy bsc1261172. CVE-2026-20664: processing maliciously crafted web content may lead to an unexpected proces...

6.5CVSS5.6AI score0.0072EPSS
Exploits2References32
SUSE Linux
SUSE Linux
•added 2026/05/07 12:42 a.m.•8 views

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.31+11 April 2026 CPU. Security issues fixed: CVE-2026-22007: Security: unauthenticated attacker with logon to the infrastructure where java executes can gain unauthorized read access to a subset of...

8.7CVSS5.9AI score0.00702EPSS
Exploits0References34
SUSE Linux
SUSE Linux
•added 2026/05/06 3:5 p.m.•8 views

Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.34 fixes one security issue The following security issue was fixed: CVE-2026-31431: crypto: algifaead - Revert to operating out-of-place bsc1263689. Patch Instructions: To install this SUSE update use the SUSE recommended installati...

7.8CVSS6.1AI score0.96267EPSS
Exploits228References4
SUSE Linux
SUSE Linux
•added 2026/04/28 1:31 p.m.•8 views

Security update for python-requests

This update for python-requests fixes the following issues: CVE-2026-25645: extractzippedpaths uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation bsc1260589. Patch Instructions: To install this SUSE update use the SUSE...

6.8CVSS4.5AI score0.00182EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/28 11:10 a.m.•8 views

Security update for bouncycastle

This update for bouncycastle fixes the following issues: Update to version 1.84. Security issues fixed: CVE-2025-14813: GOSTCTR implementation unable to process more than 255 blocks correctly bsc1262225. CVE-2026-0636: LDAP injection in LDAPStoreHelper.java leads to information disclosure...

8.8CVSS5.7AI score0.00758EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/23 3:52 p.m.•9 views

Security update for tomcat

This update for tomcat fixes the following issues: Security fixes: CVE-2026-24880: Request smuggling via invalid chunk extension bsc1261850. CVE-2026-25854: Occasionally open redirect bsc1261851. CVE-2026-29129: TLS cipher order is not preserved bsc1261852. CVE-2026-29145: OCSP checks sometimes...

8.7CVSS7.4AI score0.15831EPSS
Exploits6References40
SUSE Linux
SUSE Linux
•added 2026/04/21 11:7 p.m.•8 views

Security update for the Linux Kernel (Live Patch 71 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.269 fixes various security issues The following security issues were fixed: CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger bsc1258396. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy managemen...

7.3CVSS5.8AI score0.00134EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/21 12:4 p.m.•8 views

Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.3 fixes various security issues The following security issues were fixed: CVE-2025-40309: Bluetooth: SCO: Fix UAF on scoconnfree bsc1255066. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management...

7.3CVSS6AI score0.00145EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/21 7:34 a.m.•8 views

Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.65 fixes various security issues The following security issues were fixed: CVE-2025-40309: Bluetooth: SCO: Fix UAF on scoconnfree bsc1255066. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management...

7.3CVSS6AI score0.00145EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/20 4:16 p.m.•8 views

Security update for glibc-livepatches

This update for glibc-livepatches fixes the following issue: CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application bsc1261209. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.7CVSS5.7AI score0.00357EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/20 4:16 p.m.•8 views

Security update for libpng15

This update for libpng15 fixes the following issues: CVE-2026-34757: use-after-free in pngsetPLTE, pngsettRNS and pngsethIST can lead to information disclosure and data corruption bsc1261957. CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary co...

9.2CVSS6.8AI score0.01052EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/04/20 4:16 p.m.•8 views

Security update for ncurses

This update for ncurses fixes the following issue: CVE-2025-69720: buffer overflow in function analyzestringof progs/infocmp.c bsc1259924. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

4.4CVSS6AI score0.00414EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/17 10:13 a.m.•8 views

Security update for libcap

This update for libcap fixes the following issue: CVE-2026-4878: Address a potential TOCTOU race condition in capsetfile bsc1261809. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

7.3CVSS5.7AI score0.00188EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/16 7:19 a.m.•8 views

Security update for kea

This update for kea fixes the following issues: Update to release 2.6.5: A large number of bracket pairs in a JSON payload directed to any endpoint would result in a stack overflow, due to recursive calls when parsing the JSON. This has been fixed. CVE-2026-3608 bsc1260380 A null dereference is n...

8.7CVSS7.3AI score0.01361EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/15 2:14 p.m.•8 views

Security update for himmelblau

This update for himmelblau fixes the following issues: Update to version 2.3.9+git0.a9fd29b; jscPED-14511: CVE-2026-34397: Fix LPE due to name collision during NSS fake-primary group lookup bsc1261324. CVE-2026-31979: Fix race condition when accessiung /tmp/krb5ccuid bsc1259548. CVE-2026-25727:...

8.7CVSS5.8AI score0.00707EPSS
Exploits4References32
SUSE Linux
SUSE Linux
•added 2026/04/15 12:26 p.m.•8 views

Security update for vim

This update for vim fixes the following issues: Update to version 9.2.0280. CVE-2026-34982: missing input validation allows for a modeline sandbox bypass and can lead to arbitrary OS command execution bsc1261271. CVE-2026-34714: missing checks allow for a tabpanel modeline escape and can lead to...

9.3CVSS6.4AI score0.00834EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/04/14 5:19 p.m.•8 views

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. CVE-2026-34000: XKB out-of-bounds read in CheckSetGeom bsc1260923. CVE-2026-34001: XSYNC use-after-free in miSyncTriggerFence bsc1260924. CVE-2026-34002: XKB...

7.3CVSS6.1AI score0.00489EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/14 5:11 p.m.•8 views

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. CVE-2026-34000: XKB out-of-bounds read in CheckSetGeom bsc1260923. CVE-2026-34001: XSYNC use-after-free in miSyncTriggerFence bsc1260924. CVE-2026-34002: XKB...

7.3CVSS6.1AI score0.00489EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/14 5:9 p.m.•8 views

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. CVE-2026-34000: XKB out-of-bounds read in CheckSetGeom bsc1260923. CVE-2026-34001: XSYNC use-after-free in miSyncTriggerFence bsc1260924. CVE-2026-34002: XKB...

7.3CVSS6.1AI score0.00489EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/14 5:4 p.m.•8 views

Security update for xwayland

This update for xwayland fixes the following issues: CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. CVE-2026-34000: XKB out-of-bounds read in CheckSetGeom bsc1260923. CVE-2026-34001: XSYNC use-after-free in miSyncTriggerFence bsc1260924. CVE-2026-34002: XKB out-of-bounds rea...

7.3CVSS6.1AI score0.00489EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/14 12:42 p.m.•8 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to 149.0.2 and 140.9.1esr bsc1261663. CVE-2026-5731: Memory safety bugs fixed in Firefox ESR 115.34.1, Firefox ESR 140.9.1, Thunderbird ESR 140.9.1, Firefox 149.0.2 and Thunderbird 149.0.2. CVE-2026-5732: Incorrect boundary...

8.8CVSS5.9AI score0.0035EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2026/04/14 11:7 a.m.•8 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-header bsc1260251. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.8AI score0.01557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/13 12:32 p.m.•8 views

Security update for python39

This update for python39 fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. CVE-2026-3644: incomplete control character validation in http.cookies can lead to input...

8.2CVSS5.9AI score0.00621EPSS
Exploits0References16
Total number of security vulnerabilities5000