Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
•added 2026/06/03 3:31 p.m.•6 views

Security update for python-pyOpenSSL

This update for python-pyOpenSSL fixes the following issue CVE-2026-40475: improper input handling of null bytes can lead to silent data truncation and security-state inconsistency bsc1262803. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.8CVSS5.8AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/06/03 3:31 p.m.•6 views

Security update for python3-pyOpenSSL

This update for python3-pyOpenSSL fixes the following issue CVE-2026-40475: improper input handling of null bytes can lead to silent data truncation and security-state inconsistency bsc1262803. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.8CVSS5.8AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/06/03 2:21 p.m.•6 views

Security update for salt

This update for salt fixes the following issue: Security issues fixed: CVE-2026-31958: python-tornado: parsing large multipart bodies with many parts can cause a denial of service bsc1259554. Other updates and bugfixes: Use non vendored Tornado with Python 3.11 bsc1257583, bsc1259700 Harden Torna...

8.7CVSS7.2AI score0.00375EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/06/03 2:19 p.m.•6 views

Security update 5.0.8 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service bsc1259554 CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow...

8.7CVSS7.5AI score0.00704EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2026/06/03 2:16 p.m.•6 views

Security update for salt

This update for salt fixes the following issue: Security issues fixed: CVE-2026-31958: python-tornado: parsing large multipart bodies with many parts can cause a denial of service bsc1259554. Other updates and bugfixes: Use non vendored Tornado with Python 3.11 bsc1257583, bsc1259700 Harden Torna...

8.7CVSS7.2AI score0.00375EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/06/03 2:15 p.m.•6 views

Security update 5.0.8 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2026-31958: tornado: Fixed parsing large multipart bodies with many parts can cause a denial of service bsc1259554 CVE-2026-27459: pyOpenSSL: Fixed issue with large cookie value that can lead to a buffer overflow...

8.7CVSS7.5AI score0.00704EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2026/06/03 1:34 p.m.•6 views

Security update 5.0.8 for Multi-Linux Manager Client Tools, Salt Bundle and Salt

This update fixes the following issues: golang-github-prometheus-nodeexporter: Version 1.10.2: meminfo: Fix typo in Zswap metric name Version 1.10.1: filesystem: Fix mount points being collected multiple times filesystem: Refactor mountinfo parsing bsc1261810 meminfo: Add Zswap/Zswapped metrics...

8.7CVSS7AI score0.00704EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/05/22 5:55 a.m.•6 views

Security update for rootlesskit

This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

5.8AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/05/22 5:54 a.m.•6 views

Security update for rootlesskit

This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15....

5.8AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/05/20 7:14 a.m.•6 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues CVE-2026-31853: heap buffer overflow leads to crash in the SFW decoder of 32-bit systems when processing extremely large images bsc1259528. CVE-2026-42050: Stack buffer overflow in XTileImage bsc1265048. Patch Instructions: To install this SU...

8.6CVSS5.9AI score0.0013EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/05/18 4:33 p.m.•6 views

Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.124 fixes one security issue The following security issue was fixed: CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264459. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.8CVSS6AI score0.93235EPSS
Exploits31References4
SUSE Linux
SUSE Linux
•added 2026/05/07 1:54 p.m.•6 views

Security update for freeipmi

This update for freeipmi fixes the following issue: CVE-2026-33554: improper memory handling and data validation can lead to stack buffer overflows and acceptance of malformed payloads/responses bsc1260414. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

7.6CVSS5.9AI score0.00403EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/05/07 7:15 a.m.•6 views

Security update for xen

This update for xen fixes the following issues: Update to Xen 4.20.3 bug fix release bsc1027519 jscPED-8907. CVE-2025-54505: Floating Point Divider State Sampling on AMD CPUs AMD-SN-7053 bsc1262428. CVE-2026-23557: Xenstored DoS via XSRESETWATCHES command bsc1262178. CVE-2026-23558: grant table v...

7.8CVSS5.8AI score0.00191EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/05/07 7:1 a.m.•6 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues Updated to Mozilla Thunderbird 140.10.1: MFSA 2026-34 bsc1262230: CVE-2026-6746: Use-after-free in the DOM: Core & HTML component. CVE-2026-6747: Use-after-free in the WebRTC component. CVE-2026-6748: Uninitialized memory in the...

9.8CVSS5.8AI score0.04938EPSS
Exploits1References62
SUSE Linux
SUSE Linux
•added 2026/05/06 12:33 p.m.•6 views

Security update for the Linux Kernel (Live Patch 40 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise kernel 5.14.21-150400.24.164 fixes various security issues The following security issues were fixed: CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size bsc1258073. CVE-2025-39977: futex: Prevent use-after-free during...

7.8CVSS6.9AI score0.96267EPSS
Exploits228References20
SUSE Linux
SUSE Linux
•added 2026/05/06 12:11 p.m.•6 views

Security update for libpng12

This update for libpng12 fixes the following issues: Update to version 1.2.59 jscPED-16191. Security issues : CVE-2017-12652: missing chunk length check can lead to sensitive information disclosure, data corruption or crash bsc1141493. CVE-2026-33416: use-after-free via pointer aliasing in...

9.2CVSS7.5AI score0.04113EPSS
Exploits2References14
SUSE Linux
SUSE Linux
•added 2026/05/06 11:4 a.m.•6 views

Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.6 fixes various security issues The following security issues were fixed: CVE-2025-38375: virtio-net: ensure the received length does not exceed allocated size bsc1258073. CVE-2025-39977: futex: Prevent use-after-free during...

7.8CVSS6.8AI score0.96267EPSS
Exploits228References24
SUSE Linux
SUSE Linux
•added 2026/05/06 10:28 a.m.•6 views

Security update for the Linux Kernel (Live Patch 79 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise kernel 4.12.14-122.299 fixes one security issue The following security issue was fixed: CVE-2026-31431: crypto: algifaead - Revert to operating out-of-place bsc1263689. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

7.8CVSS6.1AI score0.96267EPSS
Exploits228References4
SUSE Linux
SUSE Linux
•added 2026/05/06 1:49 a.m.•6 views

Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.28 fixes various security issues The following security issues were fixed: CVE-2025-71066: net/sched: ets: Always remove class from active list before deleting in etsqdiscchange bsc1258005. CVE-2026-23004: dst: fix races in...

7.8CVSS6.7AI score0.96267EPSS
Exploits228References16
SUSE Linux
SUSE Linux
•added 2026/05/06 12:22 a.m.•6 views

Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.25 fixes various security issues The following security issues were fixed: CVE-2025-39977: futex: Prevent use-after-free during requeue-PI bsc1252048. CVE-2025-71066: net/sched: ets: Always remove class from active list before...

7.8CVSS7AI score0.96267EPSS
Exploits228References20
SUSE Linux
SUSE Linux
•added 2026/04/30 12:5 p.m.•6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-39998: scsi: target: targetcoreconfigfs: Add length check to avoid buffer overflow bsc1252073. CVE-2025-68794: iomap: adjust read range correctly for...

8.7CVSS6.2AI score0.00812EPSS
Exploits3References188
SUSE Linux
SUSE Linux
•added 2026/04/28 6:3 p.m.•6 views

Security update for python-requests

This update for python-requests fixes the following issues: CVE-2026-25645: extractzippedpaths uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation bsc1260589. Patch Instructions: To install this SUSE update use the SUSE...

6.8CVSS4.5AI score0.00182EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/28 1:27 p.m.•6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-39998: scsi: target: targetcoreconfigfs: Add length check to avoid buffer overflow bsc1252073. CVE-2026-23103: ipvlan: Make the addrslock be per port bsc1257773...

8.7CVSS5.7AI score0.00812EPSS
Exploits3References66
SUSE Linux
SUSE Linux
•added 2026/04/28 11:33 a.m.•6 views

Security update for freerdp2

This update for freerdp2 fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...

8.8CVSS5.8AI score0.00656EPSS
Exploits14References62
SUSE Linux
SUSE Linux
•added 2026/04/27 12:4 p.m.•6 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...

8.2CVSS5.7AI score0.00599EPSS
Exploits13References58
SUSE Linux
SUSE Linux
•added 2026/04/27 8:4 a.m.•6 views

Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.11 fixes various security issues The following security issues were fixed: CVE-2025-40309: Bluetooth: SCO: Fix UAF on scoconnfree bsc1255066. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management...

7.3CVSS5.3AI score0.00145EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/24 2:25 p.m.•6 views

Security update for cups

This update for cups fixes the following issues: CVE-2026-34980: Shared PostScript queue lets anonymous Print-Job requests reach lp code execution over the network bsc1261569. CVE-2026-34990: Local print admin token disclosure using temporary printers bsc1261568. Patch Instructions: To install th...

7.8CVSS6.2AI score0.00502EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/04/24 11:51 a.m.•6 views

Security update for python-ecdsa

This update for python-ecdsa fixes the following issues: CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be raised from the public API functions bsc1261009. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

6.3CVSS5.2AI score0.00476EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/24 11:48 a.m.•6 views

Security update for tomcat

This update for tomcat fixes the following issues: Security fixes: CVE-2026-24880: Request smuggling via invalid chunk extension bsc1261850. CVE-2026-25854: Occasionally open redirect bsc1261851. CVE-2026-29129: TLS cipher order is not preserved bsc1261852. CVE-2026-29145: OCSP checks sometimes...

8.7CVSS5.6AI score0.03494EPSS
Exploits1References40
SUSE Linux
SUSE Linux
•added 2026/04/24 11:46 a.m.•6 views

Security update for flatpak

This update for flatpak fixes the following issues: CVE-2026-34078: Arbitrary code execution via crafted symlinks in sandbox-expose options bsc1261769. CVE-2026-34079: Arbitrary file deletion on host via improper cache file path validation bsc1261770. Patch Instructions: To install this SUSE upda...

8.2CVSS8AI score0.0168EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/24 9:4 a.m.•6 views

Security update for the Linux Kernel (Live Patch 48 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.194 fixes various security issues The following security issues were fixed: CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger bsc1258396. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy...

7.3CVSS5.2AI score0.00134EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/23 3:52 p.m.•6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2025-38234: sched/rt: Fix race in pushrttask bsc1246057. CVE-2025-68818: scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path"...

8.7CVSS5.8AI score0.00173EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/04/23 5:47 a.m.•6 views

Security update for the Linux Kernel (Live Patch 32 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.127 fixes various security issues The following security issues were fixed: CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger bsc1258396. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy...

7.3CVSS5.8AI score0.00134EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/22 4:24 p.m.•6 views

Security update for tomcat11

This update for tomcat11 fixes the following issues: Security fixes: CVE-2026-24880: Request smuggling via invalid chunk extension bsc1261850. CVE-2026-25854: Occasionally open redirect bsc1261851. CVE-2026-29129: TLS cipher order is not preserved bsc1261852. CVE-2026-29145: OCSP checks sometimes...

8.7CVSS5.8AI score0.15831EPSS
Exploits6References40
SUSE Linux
SUSE Linux
•added 2026/04/21 10:34 a.m.•6 views

Security update for the Linux Kernel (Live Patch 19 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.84 fixes one security issue The following security issue was fixed: CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management bsc1259859. Patch Instructions: To install this SUSE update use the SUSE...

7.3CVSS5.8AI score0.00134EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/21 9:21 a.m.•6 views

Security update 5.1.3 for Multi-Linux Manager Client Tools

This update fixes the following issues: spacecmd: Version 5.1.13-0 Updated translation strings uyuni-tools: Version 5.1.26-0 Fixed applying PTF with images from RPMs bsc1252548 Ssl Key file can miss if CA password is blank bsc1254154 mgrpxy ssh tuning should happens before crypto policies...

8.7CVSS5.7AI score0.00375EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/04/21 9:21 a.m.•6 views

Security update 5.1.3 for Multi-Linux Manager Client Tools

This update fixes the following issues: spacecmd: Version 5.1.13-0 Updated translation strings uyuni-tools: Version 5.1.26-0 Fixed applying PTF with images from RPMs bsc1252548 Ssl Key file can miss if CA password is blank bsc1254154 mgrpxy ssh tuning should happens before crypto policies...

8.7CVSS5.7AI score0.00375EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/04/21 6:28 a.m.•6 views

Security update for flatpak

This update for flatpak fixes the following issues: CVE-2026-34078: Arbitrary code execution via crafted symlinks in sandbox-expose options bsc1261769. CVE-2026-34079: Arbitrary file deletion on host via improper cache file path validation bsc1261770. Patch Instructions: To install this SUSE upda...

8.2CVSS7.6AI score0.0168EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/21 6:27 a.m.•6 views

Security update for nodejs22

This update for nodejs22 fixes the following issues: Update to version 22.22.2. CVE-2026-21717: trivially predictable hash collisions due to flaw in V8's string hashing mechanism allows for performance degradation via a crafted request bsc1260494. CVE-2026-21716: incomplete fix for CVE-2024-36137...

8.7CVSS6.8AI score0.26356EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/04/20 4:18 p.m.•6 views

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issue: CVE-2026-33535: Out-of-Bounds write of a zero byte in X11 display interaction bsc1260874. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

4CVSS5.7AI score0.00141EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/20 4:17 p.m.•6 views

Security update for python312

This update for python312 fixes the following issues: CVE-2026-3446: Base64 decoding stops at first padded quad by default bsc1261970. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

6CVSS5.7AI score0.00188EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/04/20 4:15 p.m.•6 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24484: denial of service via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-28493: integer overflow in the SIXEL decoder leads to out-of-bounds write bsc1259446. CVE-2026-28494: missing bounds checks in the morphology...

8.8CVSS6AI score0.00475EPSS
Exploits0References84
SUSE Linux
SUSE Linux
•added 2026/04/20 3:55 p.m.•6 views

Security update for buildah

This update for buildah rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/04/20 3:54 p.m.•6 views

Security update for rekor

This update for rekor rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/04/20 10:9 a.m.•6 views

Security update for gegl

This update for gegl fixes the following issue: CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lead to a heap buffer overflow bsc1259749. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.4CVSS6AI score0.00615EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/20 10:9 a.m.•6 views

Security update for gegl

This update for gegl fixes the following issue: CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lead to a heap buffer overflow bsc1259749. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.4CVSS6AI score0.00615EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/20 8:34 a.m.•6 views

Security update for the Linux Kernel (Live Patch 6 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.22 fixes various security issues The following security issues were fixed: CVE-2025-40309: Bluetooth: SCO: Fix UAF on scoconnfree bsc1255066. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management...

7.3CVSS5.8AI score0.00145EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/20 7:34 a.m.•6 views

Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.136 fixes various security issues The following security issues were fixed: CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger bsc1258396. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy...

7.3CVSS5.8AI score0.00134EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/19 3:34 p.m.•6 views

Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.6 fixes various security issues The following security issues were fixed: CVE-2025-40309: Bluetooth: SCO: Fix UAF on scoconnfree bsc1255066. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management...

7.3CVSS5.8AI score0.00145EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/17 1:44 p.m.•6 views

Security update for openvswitch3

This update for openvswitch3 fixes the following issues: CVE-2026-34956: invalid memory access via crafted FTP payloads in userspace conntrack flows specifying the FTP alg handler bsc1261273. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS5.7AI score0.00405EPSS
Exploits0References4
Total number of security vulnerabilities5000