Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
•added 2026/04/15 2:35 p.m.•6 views

Security update for libpng16

This update for libpng16 fixes the following issues: CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary code execution bsc1260754. CVE-2026-33636: out-of-bounds read/write in the palette expansion on ARM Neon can lead to information leak and...

9.2CVSS6.4AI score0.01052EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/15 1:37 p.m.•6 views

Security update for netty, netty-tcnative

This update for netty, netty-tcnative fixes the following issues: Upidate to 4.1.132: CVE-2026-33870: incorrectly parses quoted strings in HTTP/1.1 can lead to request smuggling bsc1261031. CVE-2026-33871: sending a flood of CONTINUATION frames can lead to a denial of service bsc1261043. Changelo...

8.7CVSS5.9AI score0.01125EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/15 10:18 a.m.•6 views

Security update for Mesa

This update for Mesa fixes the following issue: CVE-2026-40393: out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party bsc1261998. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like...

6.8CVSS6.3AI score0.00348EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/14 1:15 p.m.•6 views

Security update for clamav

This update for clamav fixes the following issues: Update to clamav 1.5.2: Security issue: CVE-2026-20031: improper error handling in the HTML CSS module when splitting UTF-8 strings can lead to denial of service conditions via a crafted HTML file bsc1259207. Non security issue: Support...

6.9CVSS5.8AI score0.00414EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2026/04/14 12:40 p.m.•6 views

Security update for go1.25

This update for go1.25 fixes the following issues: Update to go1.25.9 bsc1244485. CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. CVE-2026-27144: cmd/compile: no-op...

7.5CVSS5.9AI score0.00658EPSS
Exploits0References38
SUSE Linux
SUSE Linux
•added 2026/04/14 10:44 a.m.•6 views

Security update for libpng16

This update for libpng16 fixes the following issue: CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary code execution bsc1260754. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdat...

9.2CVSS6.8AI score0.01052EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/14 10:42 a.m.•6 views

Security update for libssh

This update for libssh fixes the following issues: CVE-2026-3731: Denial of Service via out-of-bounds read in SFTP extension name handler bsc1259377. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...

6.9CVSS6.4AI score0.00631EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 3:54 p.m.•6 views

Security update for nodejs24

This update for nodejs24 fixes the following issues: Update to 24.14.1 CVE-2026-21637: synchronous exceptions thrown during certain callbacks bypass the standard TLS error handling paths and can cause a denial of service bsc1256576. CVE-2026-21710: uncaught TypeError exception can cause a denial ...

8.7CVSS6.8AI score0.26356EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/04/10 2:57 p.m.•6 views

Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.1AI score0.00981EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/09 2:22 p.m.•6 views

Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.53 fixes various security issues The following security issues were fixed: CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689...

8.7CVSS6.6AI score0.00344EPSS
Exploits7References32
SUSE Linux
SUSE Linux
•added 2026/04/08 12:27 p.m.•6 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00981EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/02 12:43 p.m.•6 views

Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: CVE-2026-32853: crafted FramebufferUpdate message can lead to information disclosure or denial of service bsc1260431. CVE-2026-32854: crafted HTTP requests can cause a denial of service bsc1260429. Patch Instructions: To install this SUSE...

8.2CVSS5.9AI score0.05322EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/04/01 1:41 p.m.•6 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-26271: Buffer Overread in FreeRDP Icon Processing bsc1258979. CVE-2026-26955: Out-of-bounds Write in freerdp bsc1258982. CVE-2026-26965: Out-of-bounds Write in freerdp bsc1258985. CVE-2026-31806: improper validation of server messages c...

8.8CVSS6.6AI score0.00656EPSS
Exploits5References24
SUSE Linux
SUSE Linux
•added 2026/03/31 11:56 a.m.•6 views

Security update for python-pyasn1

This update for python-pyasn1 fixes the following issues: CVE-2026-30922: Denial of Service via Unbounded Recursion bsc1259803. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.7CVSS7AI score0.0058EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/30 9:16 a.m.•6 views

Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools

This update fixes the following issues: spacecmd: Version 5.2.6-0 Update translation strings uyuni-tools: Version 5.2.5-0 Remove migrate command Remove template script from mgradm: use the one in the image Split the TFTP server into a separate container Explicitly start proxy pods after operation...

8.7CVSS6.7AI score0.00407EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2026/03/30 9:15 a.m.•6 views

Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools

This update fixes the following issues: spacecmd: Version 5.2.6-0 Update translation strings uyuni-tools: Version 5.2.5-0 Remove migrate command Remove template script from mgradm: use the one in the image Split the TFTP server into a separate container Explicitly start proxy pods after operation...

8.7CVSS6.7AI score0.00407EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2026/03/25 11:34 a.m.•6 views

Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.113 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2023-53257: wifi: mac80211: check S1G action frame size...

8.7CVSS6AI score0.00278EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2026/03/25 10:21 a.m.•6 views

Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes

Description: This update fixes the following issues: release-notes-susemanager-proxy: Update to SUSE Manager 4.3.17 CVEs Fixed: CVE-2024-29371, CVE-2026-27727, CVE-2026-27830 Bugs mentioned: bsc1227577, bsc1227579, bsc1236799, bsc1243241, bsc1244724 bsc1248741, bsc1251995, bsc1253068, bsc1253773...

9.8CVSS5.8AI score0.01535EPSS
Exploits4References120
SUSE Linux
SUSE Linux
•added 2026/03/25 9:32 a.m.•6 views

Security update for libsoup

This update for libsoup fixes the following issue: CVE-2026-0716: improper bounds handling may allow out-of-bounds read bsc1256418. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.3CVSS5.8AI score0.00257EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/24 7:23 a.m.•6 views

Security update for systemd

This update for systemd fixes the following issue: CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. udev: check for invalid chars in various fields received from the kernel bsc1259697. Changelog: cbf8ee66ee machined: reject invalid cla...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/24 7:22 a.m.•6 views

Security update for systemd

This update for systemd fixes the following issues: CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. CVE-2026-29111: local unprivileged user can trigger an assert in systemd bsc1259418. udev: check for invalid chars in various fields...

7.8CVSS5.8AI score0.00142EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2026/03/23 10:20 p.m.•6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2025-21738: ata: libata-sff: Ensure that we cannot write outside the allocated buffer bsc1238917. CVE-2025-40242: gfs2: Fix unlikely race in gdlmputlock bsc1255075...

8.5CVSS6.9AI score0.00197EPSS
Exploits0References48
SUSE Linux
SUSE Linux
•added 2026/03/23 4:48 p.m.•6 views

Security update for util-linux

This update for util-linux fixes the following issues: CVE-2026-3184: Fix full hostname usage for PAM to ensure correct access control for "login -h" bsc1258859. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS5.8AI score0.00436EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/23 1:5 p.m.•6 views

Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.280 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2022-50756: nvme-pci: fix mempool alloc size bsc1256217...

8.7CVSS6.7AI score0.00206EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/03/19 10:34 a.m.•6 views

Security update for freerdp

This update for freerdp fixes the following issue: CVE-2026-24491: Heap-use-after-free in videotimer additional fix bsc1257981. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.3CVSS5.7AI score0.00467EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/19 8:23 a.m.•6 views

Security update for jq

This update for jq fixes the following issue: CVE-2025-9403: test suite assertion failure in JSON parsing consistency validation bsc1248600. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...

4.8CVSS5.8AI score0.00194EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/18 7:47 a.m.•6 views

Security update for kubernetes

This update for kubernetes rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/03/18 7:47 a.m.•6 views

Security update for gvfs

This update for gvfs fixes the following issues: CVE-2026-28295: fixed by using control connection address for PASV data bsc1258953. CVE-2026-28296: fixed by rejecting paths containing CR/LF characters bsc1258954. Patch Instructions: To install this SUSE update use the SUSE recommended installati...

7.3CVSS5.8AI score0.0036EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/03/17 4:32 p.m.•6 views

Security update for kea

This update for kea fixes the following issues: Update to release 2.6.3 bsc1243240: CVE-2025-32801: Loading a malicious hook library can lead to local privilege escalation. CVE-2025-32802: Insecure handling of file paths allows multiple local attacks. CVE-2025-32803: Insecure file permissions can...

8.5CVSS5.8AI score0.00235EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/03/17 9:38 a.m.•6 views

Security update for freerdp

This update for freerdp fixes the following issue: CVE-2026-24491: Heap-use-after-free in videotimer additional fix bsc1257981. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.3CVSS5.7AI score0.00467EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/13 9:4 a.m.•6 views

Security update for python

This update for python fixes the following issue: CVE-2026-1299: header injection when an email is serialized due to improper newline quoting in BytesGenerator bsc1257181. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...

8.3CVSS5.8AI score0.0056EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/06 8:15 a.m.•6 views

Security update for python-tornado

This update for python-tornado fixes the following issue: CVE-2025-67724: missing validation of the supplied reason phrase bsc1254903. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

5.4CVSS5.8AI score0.00185EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 4:38 p.m.•6 views

Security update for qemu

This update for qemu fixes the following issues: Security issue: CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto bsc1255400. Non security issues: hw/virtio: Also include md stubs in case CONFIGVIRTIOPCI is not set jscPED-14271. s390x/pv: prepare for memory devices jscPED-14271...

6.8CVSS5.8AI score0.00137EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/05 3:17 p.m.•6 views

Security update for ocaml

This update for ocaml fixes the following issues: CVE-2026-28364: missing bounds validation in readblock can lead to arbitrary code execution bsc1258992. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.8CVSS6.5AI score0.0021EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 3:16 p.m.•6 views

Security update for openCryptoki

This update for openCryptoki fixes the following issues: CVE-2026-23893: Fixed privilege escalation or data exposure via symlink following bsc1257116 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...

6.8CVSS5.9AI score0.00162EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 11:43 a.m.•6 views

Security update for python-Django

This update for python-Django fixes the following issue: CVE-2026-25674: race condition can lead to potential incorrect permissions on newly created file system objects bsc1259142. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...

6.3CVSS5.9AI score0.00341EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 3:5 a.m.•6 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2026-1467: lack of input sanitization can lead to unintended or unauthorized HTTP requests bsc1257398. CVE-2026-1539: proxy authentication credentials leaked via the Proxy-Authorization header when handling HTTP redirects bsc1257441...

8.8CVSS5.9AI score0.00423EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/03/04 12:58 p.m.•6 views

Security update for python-pip

This update for python-pip fixes the following issues: CVE-2026-1703: Fixed a potential path traversal in python-pip. bsc1257599 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

3.1CVSS5.9AI score0.0039EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/04 12:34 p.m.•6 views

Security update for python

This update for python fixes the following issues: CVE-2024-7592: excess CPU resource consumption in http.cookies module bsc1229596 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

2.6CVSS5.9AI score0.02303EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/04 9:33 a.m.•6 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2026-1467: lack of input sanitization can lead to unintended or unauthorized HTTP requests bsc1257398. CVE-2026-1539: proxy authentication credentials leaked via the Proxy-Authorization header when handling HTTP redirects bsc1257441...

8.8CVSS5.9AI score0.00423EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/03/03 1:25 p.m.•6 views

Security update for libssh

This update for libssh fixes the following issues: CVE-2026-0964: improper sanitation of paths received from SCP servers can cause path traversal bsc1258049. CVE-2026-0965: possible denial of service when parsing unexpected configuration files bsc1258045. CVE-2026-0966: buffer underflow in...

6.5CVSS6AI score0.00582EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/03/03 1:19 p.m.•6 views

Security update for evolution-data-server

This update for evolution-data-server fixes the following issue: CVE-2026-2604: arbitrary file deletion via inconsistent URI handling bsc1258307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...

6.8CVSS6AI score0.00189EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/02 7:4 a.m.•6 views

Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.3 fixes one security issue The following security issue was fixed: CVE-2025-38129: pagepool: fix use-after-free in pagepoolrecycleinring bsc1258139. Patch Instructions: To install this SUSE update use the SUSE recommended installati...

8.5CVSS6.9AI score0.00161EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/27 3:14 p.m.•6 views

Security update for gpg2

This update for gpg2 fixes the following issues: Security fix: Fixed GnuPG accepting Path Separators and Path Traversals in Literal Data bsc1256389 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

5.9AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2026/02/27 3:14 p.m.•6 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters bsc1257029. CVE-2025-12781: inadequate parameter check can cause data integrity issues bsc1257108. CVE-2025-15282:...

8.7CVSS6AI score0.0055EPSS
Exploits1References28
SUSE Linux
SUSE Linux
•added 2026/02/27 3:12 p.m.•6 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Thunderbird 140.7.2 CVE-2026-2447: Fixed a heap buffer overflow in libvpx. bsc1258231 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

9.2CVSS6.1AI score0.006EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/27 3:11 p.m.•6 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-32049: denial of Service attack to websocket server bsc1240751. CVE-2026-2369: buffer overread due to integer underflow when handling zero-length resources bsc1258120. CVE-2026-2443: out-of-bounds read when processing specially crafted...

8.3CVSS6.1AI score0.00764EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2026/02/27 3:8 p.m.•6 views

Security update for go1

This update for go1 fixes the following issues: Update to version 1.24.13 jscSLE-18320, bsc1236217. Security issues fixed: CVE-2025-61732: cmd/cgo: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. CVE-2025-68119: cmd/go: unexpected code execution when...

9.6CVSS6.3AI score0.00765EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2026/02/26 3:21 p.m.•6 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20260210 release bsc1258046 CVE-2024-24853: Updated fix for incorrect behavior order in transition between executive monitor and SMI transfer monitor STM in some IntelR Processor may allow a privileged...

7.3CVSS5.4AI score0.00232EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/26 3:16 p.m.•6 views

Security update for python3

This update for python3 fixes the following issues: CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters bsc1257029. CVE-2026-0672: HTTP header injection via user-controlled cookie values and parameters when using...

8.7CVSS5.5AI score0.0055EPSS
Exploits0References24
Total number of security vulnerabilities5000