Lucene search
K
SuseMost viewed

5411 matches found

SUSE Linux
SUSE Linux
•added 2026/04/20 3:58 p.m.•7 views

Security update for rootlesskit

This update for rootlesskit rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Lea...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/04/17 7:21 a.m.•7 views

Security update for smc-tools

This update for smc-tools fixes the following issue: Update to smc-tools v1.8.7: predictable /tmp file allows for local denial of service bsc1230052. Changelog: Update to v1.8.7: smcrnics: fix regression when PFT not available smcd/smcr: prevent DoS on statistics workfile present in /tmp/ Update ...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2026/04/16 4:44 p.m.•7 views

Security update for NetworkManager

This update for NetworkManager fixes the following issues: CVE-2025-9615: non-admin users are allowed to use certificates from other users bsc1257359. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/16 2:25 p.m.•7 views

Security update for shim

This update for shim fixes the following issues: shim is updated to version 16.1: shimstartimage: fix guid/handle pairing when uninstalling protocols Fix uncompressed ipv6 netboot fix test segfaults caused by uninitialized memory SbatLevelVariable.txt: minor typo fix. Realloc needs to allocate on...

6.7CVSS6.6AI score0.00378EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2026/04/16 12:35 p.m.•7 views

Security update for util-linux

This update for util-linux fixes the following issues: Security issue: CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859. Non security issues: recognize fuse "portal" as a virtual file system bsc1234736. fdisk: fix possible partition overlay and da...

6.3CVSS5.8AI score0.00436EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/16 9:18 a.m.•7 views

Security update for vim

This update for vim fixes the following issues: Update to version 9.2.0280. CVE-2026-34982: missing input validation allows for a modeline sandbox bypass and can lead to arbitrary OS command execution bsc1261271. CVE-2026-34714: missing checks allow for a tabpanel modeline escape and can lead to...

9.3CVSS6.8AI score0.00834EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/04/16 7:19 a.m.•7 views

Security update for kea

This update for kea fixes the following issues: Update to release 2.6.5: A large number of bracket pairs in a JSON payload directed to any endpoint would result in a stack overflow, due to recursive calls when parsing the JSON. This has been fixed. CVE-2026-3608 bsc1260380 A null dereference is n...

8.7CVSS7.3AI score0.01361EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/15 2:28 p.m.•7 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: Update to version 2.52.1. Security issues fixed: CVE-2023-43010: processing maliciously crafted web content may lead to memory corruption bsc1259950. CVE-2025-31223: processing maliciously crafted web content may lead to memory corruption...

8.8CVSS5.8AI score0.01481EPSS
Exploits4References100
SUSE Linux
SUSE Linux
•added 2026/04/15 1:37 p.m.•7 views

Security update for python313

This update for python313 fixes the following issues: Update to v3.13.13 CVE-2025-13462: incorrect parsing of TarInfo header when GNU long name and type AREGTYPE are combined bsc1259611. CVE-2026-2297: cpython: incorrectly handled hook in FileLoader can lead to validation bypass bsc1259240...

8.3CVSS5.9AI score0.00621EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2026/04/14 5:9 p.m.•7 views

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. CVE-2026-34000: XKB out-of-bounds read in CheckSetGeom bsc1260923. CVE-2026-34001: XSYNC use-after-free in miSyncTriggerFence bsc1260924. CVE-2026-34002: XKB...

7.3CVSS6.1AI score0.00489EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/14 5:4 p.m.•7 views

Security update for xwayland

This update for xwayland fixes the following issues: CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. CVE-2026-34000: XKB out-of-bounds read in CheckSetGeom bsc1260923. CVE-2026-34001: XSYNC use-after-free in miSyncTriggerFence bsc1260924. CVE-2026-34002: XKB out-of-bounds rea...

7.3CVSS6.1AI score0.00489EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/14 11:7 a.m.•7 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-header bsc1260251. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.8AI score0.01557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/13 12:32 p.m.•7 views

Security update for python39

This update for python39 fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. CVE-2026-3644: incomplete control character validation in http.cookies can lead to input...

8.2CVSS5.9AI score0.00621EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/04/13 8:10 a.m.•7 views

Security update for python312

This update for python312 fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. CVE-2026-3479: improper resource argument validation in pkgutil.getdata can lead to path...

8.2CVSS5.9AI score0.00621EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/10 7:4 a.m.•7 views

Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.179 fixes various security issues The following security issues were fixed: CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689...

8.7CVSS6.7AI score0.00204EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/04/08 7:12 a.m.•7 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260251 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.9AI score0.01557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/30 9:17 a.m.•7 views

Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools

This update fixes the following issues: spacecmd: Version 5.2.6-0 Update translation strings uyuni-tools: Version 5.2.5-0 Remove migrate command Remove template script from mgradm: use the one in the image Split the TFTP server into a separate container Explicitly start proxy pods after operation...

8.7CVSS6.8AI score0.00407EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2026/03/25 10:17 a.m.•7 views

Security update for salt

This update for salt fixes the following issues: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

8.7CVSS5.8AI score0.01525EPSS
Exploits0References22
SUSE Linux
SUSE Linux
•added 2026/03/25 10:13 a.m.•7 views

Security update 5.0.7 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

8.7CVSS5.8AI score0.01525EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/24 2:34 p.m.•7 views

Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.179 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2023-53781: smc: Fix use-after-free in tcpwritetimerhandl...

8.7CVSS6.8AI score0.00196EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/03/20 1:41 p.m.•7 views

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issues: CVE-2026-28691: missing check in the JBIG decoder can lead to an uninitialized pointer dereference bsc1259455. CVE-2026-30883: missing bounds check when encoding a PNG image can lead to a heap buffer over-write bsc1259467. Patch...

8.8CVSS6AI score0.00353EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/03/18 8:52 a.m.•7 views

Security update for curl

This update for curl fixes the following issues: CVE-2026-1965: bad reuse of HTTP Negotiate connection bsc1259362. CVE-2026-3783: token leak with redirect and netrc bsc1259363. CVE-2026-3784: wrong proxy connection reuse with credentials bsc1259364. Patch Instructions: To install this SUSE update...

7.5CVSS5.7AI score0.00333EPSS
Exploits2References12
SUSE Linux
SUSE Linux
•added 2026/03/17 7:57 p.m.•7 views

Security update for curl

This update for curl fixes the following issues: CVE-2026-1965: bad reuse of HTTP Negotiate connection bsc1259362. CVE-2026-3783: token leak with redirect and netrc bsc1259363. CVE-2026-3784: wrong proxy connection reuse with credentials bsc1259364. CVE-2026-3805: use after free in SMB connection...

7.5CVSS5.8AI score0.00715EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2026/03/05 7:55 p.m.•7 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2026-1467: lack of input sanitization can lead to unintended or unauthorized HTTP requests bsc1257398. CVE-2026-1539: proxy authentication credentials leaked via the Proxy-Authorization header when handling HTTP redirects bsc1257441...

8.8CVSS5.8AI score0.00423EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/03/05 3:18 p.m.•7 views

Security update for openvpn

This update for openvpn fixes the following issues: Updated to version 2.6.10 that fixes: CVE-2025-13086: improper validation of IP addresses that can cause denial of service bsc1254486 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS5.9AI score0.0061EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 3:16 p.m.•7 views

Security update for php-composer2

This update for php-composer2 fixes the following issues: CVE-2025-67746: Fixed ANSI control characters injection in the terminal output of various Composer commands via attacker controlled remote sources. bsc1255768 Patch Instructions: To install this SUSE update use the SUSE recommended...

3.3CVSS6AI score0.00405EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 9:6 a.m.•7 views

Security update for mozilla-nss

This update for mozilla-nss fixes the following issues: Update to NSS 3.112.3: CVE-2026-2781: Avoid integer overflow in platform-independent ghash bsc1258568 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS6AI score0.0036EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 8:34 a.m.•7 views

Security update for mozilla-nss

This update for mozilla-nss fixes the following issues: Update to NSS 3.112.3: CVE-2026-2781: Avoid integer overflow in platform-independent ghash bsc1258568 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS6AI score0.0036EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/01 7:33 p.m.•7 views

Security update for the Linux Kernel (Live Patch 33 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.130 fixes various security issues The following security issues were fixed: CVE-2022-50700: wifi: ath10k: Delay the unmapping of the buffer bsc1255577. CVE-2023-54142: gtp: Fix use-after-free in gtpencapdestroy bsc1256097...

8.5CVSS7AI score0.00195EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/02/26 3:10 p.m.•7 views

Security update for erlang

This update for erlang fixes the following issues: CVE-2025-48039:Fixed an excessive use of system resources. bsc1249469 CVE-2025-48038:Fixed an excessive use of system resources. bsc1249470 CVE-2025-48040:Fixed an excessive resource consumption. bsc1249472 Patch Instructions: To install this SUS...

6.9CVSS5.4AI score0.00402EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/02/26 3:7 p.m.•7 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-32049: denial of Service attack to websocket server bsc1240751. CVE-2026-2369: buffer overread due to integer underflow when handling zero-length resources bsc1258120. CVE-2026-2443: out-of-bounds read when processing specially crafted...

8.3CVSS5.7AI score0.00728EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2026/02/25 9:47 a.m.•7 views

Security update 5.1.2 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Backported security patches for Salt vendored tornado: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header paramete...

8.7CVSS5.5AI score0.00396EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/02/25 9:46 a.m.•7 views

Security update 5.1.2 for Multi-Linux Manager Client Tools

This update fixes the following issues: dracut-saltboot: Update to version 1.1.0 Retry DHCP requests up to 3 times bsc1253004 golang-github-QubitProducts-exporterexporter: Non-customer-facing optimization around source building golang-github-boynux-squidexporter: Update to version 1.13.0...

8.7CVSS5.7AI score0.00689EPSS
Exploits1References56
SUSE Linux
SUSE Linux
•added 2026/02/24 11:19 a.m.•7 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS5.5AI score0.00725EPSS
Exploits3References34
SUSE Linux
SUSE Linux
•added 2026/02/24 10:17 a.m.•7 views

Security update for libxslt

This update for libxslt fixes the following issues: CVE-2025-11731: fixed a type confusion in exsltFuncResultComp function leading to denial of service bsc1251979 CVE-2025-10911: last fix caused a regression, patch was temporary disabled bsc1250553 Patch Instructions: To install this SUSE update...

8.7CVSS5.4AI score0.00258EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/23 3:58 p.m.•7 views

Security update for libpng16

This update for libpng16 fixes the following issues: CVE-2026-25646: heap buffer overflow vulnerability in pngsetdither/pngsetquantize bsc1258020. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

8.3CVSS5.7AI score0.00955EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/02/23 3:57 p.m.•7 views

Security update for libpng16

This update for libpng16 fixes the following issues: CVE-2025-28162: memory leaks when running pngimage bsc1257364. CVE-2025-28164: memory leaks when running pngimage bsc1257365. CVE-2026-22695: heap buffer over-read in pngimagefinishread bsc1256525. CVE-2026-22801: integer truncation causing hea...

8.3CVSS5.7AI score0.00955EPSS
Exploits4References20
SUSE Linux
SUSE Linux
•added 2026/02/20 10:5 a.m.•7 views

Security update for python

This update for python fixes the following issues: CVE-2026-0672: Fixed a HTTP header injection via user-controlled cookie values and parameters when using http.cookies.Morsel. bsc1257031 CVE-2026-0865: Fixed a bug where a user-controlled header containing newlines can allow injecting HTTP header...

8.7CVSS5.5AI score0.00463EPSS
Exploits0References18
SUSE Linux
SUSE Linux
•added 2026/02/19 11:38 a.m.•7 views

Security update for apptainer

This update for apptainer fixes the following issues: CVE-2025-58190: Fixed a HTML parser misimplementation of a part of the HTML specification for table related tags. bsc1258048. CVE-2025-47911: Fixed an issue where the HTML parser takes a very long time or even never returns. bsc1258047. Patch...

6.9CVSS5.5AI score0.00502EPSS
Exploits1References10
SUSE Linux
SUSE Linux
•added 2026/02/16 10:33 a.m.•7 views

Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.16 fixes various security issues The following security issues were fixed: CVE-2025-40129: sunrpc: fix null pointer dereference on zero-length checksum bsc1253473. CVE-2025-40186: tcp: Don't call reqskfastopenremove in tcpconnreques...

8.7CVSS5.4AI score0.00184EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/16 5:33 a.m.•7 views

Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.65 fixes various security issues The following security issues were fixed: CVE-2025-39742: RDMA: hfi1: fix possible divide-by-zero in findhwthreadmask bsc1249480. CVE-2025-40129: sunrpc: fix null pointer dereference on zero-length...

8.7CVSS7.2AI score0.00184EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/02/13 2:57 p.m.•7 views

Security update for cargo-auditable

This update for cargo-auditable fixes the following issues: Update to version 0.7.20. Security issues fixed: CVE-2026-25727: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257906. Other updates and bugfixes: Update to version 0.7.20: mention cargo-dist...

8.7CVSS5.8AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/12 6:22 p.m.•7 views

Security update for munge

This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed f...

7.7CVSS5.8AI score0.00302EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/12 3:35 p.m.•7 views

Security update for helm

This update for helm rebuilds it against the current GO security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...

5.5AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/02/12 3:34 p.m.•7 views

Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-t

This update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container,...

6CVSS8.2AI score0.00317EPSS
Exploits1References10
SUSE Linux
SUSE Linux
•added 2026/02/12 11:32 a.m.•7 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255594. CVE-2025-38129: pagepool: fix inconsistency for pagepoolringlock bsc1245723...

8.7CVSS7.8AI score0.08906EPSS
Exploits0References102
SUSE Linux
SUSE Linux
•added 2026/02/12 11:22 a.m.•7 views

Security update for rust-keylime

This update for rust-keylime fixes the following issues: Update to version 0.2.8+116. Security issues fixed: CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257908. Other updates and bugfixes: Update vendored crates time to version...

8.7CVSS5.8AI score0.00291EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/02/11 9:26 a.m.•7 views

Security update for qemu

This update for qemu fixes the following issues: CVE-2025-11234: Fixed use-after-free in websocket handshake code can lead to denial of service bsc1250984. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS5.7AI score0.00783EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/10 8:35 a.m.•7 views

Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Upgrade to upstream tag jdk-17.0.18+8 January 2026 CPU Security fixes: CVE-2026-21925: Fixed Oracle Java SE component RMI bsc1257034. CVE-2026-21932: Fixed Oracle Java SE component AWT and JavaFX bsc1257036. CVE-2026-21933: Fixed Oracle...

7.5CVSS5.9AI score0.00864EPSS
Exploits1References22
SUSE Linux
SUSE Linux
•added 2026/02/05 2:23 p.m.•7 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0989: Fixed call stack exhaustion leading to application crash due to RelaxNG parser not limiting the recursion depth when resolving include directives bsc1256805 Patch Instructions: To install this SUSE update use the SUSE recommended...

4.8CVSS5.4AI score0.0039EPSS
Exploits1References4
Total number of security vulnerabilities5000