Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
added 2025/11/12 7:35 p.m.6 views

Security update for netty, netty-tcnative

This update for netty, netty-tcnative fixes the following issues: CVE-2025-59419: fixed SMTP command injection vulnerability that allowed email forgery bsc1252097 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.9CVSS7.3AI score0.01617EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/11/12 10:33 a.m.6 views

Security update for containerd

This update for containerd fixes the following issues: Update to containerd v1.7.29 CVE-2024-25621: Fixed an overly broad default permission vulnerability. bsc1253126 CVE-2025-64329: Fixed a goroutine leaks which can lead to memory exhaustion on the host. bsc1253132 Patch Instructions: To install...

7.3CVSS5.5AI score0.00159EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2025/11/11 6:35 p.m.6 views

Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-15070051 fixes several issues. The following security issues were fixed: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631. CVE-2025-38511: drm/xe/pf: Clear all LMTT pages on alloc bsc1248176. CVE-2025-38617: net/packet: fix...

8.5CVSS7.9AI score0.00288EPSS
Exploits0References20
SUSE Linux
SUSE Linux
added 2025/11/11 5:20 p.m.6 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.7CVSS7.9AI score0.0129EPSS
Exploits2References808
SUSE Linux
SUSE Linux
added 2025/11/10 3:5 p.m.6 views

Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u472 icedtea-3.37.0: CVE-2025-53057: Fixed certificate handling leading to unauthorized creation, deletion or modification access to critical data bsc1252414 CVE-2025-53066: Fixed Path factories leading to...

8.7CVSS7.1AI score0.00633EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/11/10 2:22 p.m.6 views

Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u472 icedtea-3.37.0: CVE-2025-53057: Fixed certificate handling leading to unauthorized creation, deletion or modification access to critical data bsc1252414 CVE-2025-53066: Fixed Path factories leading to...

8.7CVSS7.1AI score0.00633EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/11/10 8:0 a.m.6 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issue: Mozilla Thunderbird is updated to 140.4. changed: Account Hub is now disabled by default for second email account bmo1992027 changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 bmo1952100 fixed: Users could not read mail...

9.8CVSS8AI score0.00465EPSS
Exploits0References18
SUSE Linux
SUSE Linux
added 2025/11/07 3:51 p.m.6 views

Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Upgrade to upstream tag jdk-17.0.17+10 October 2025 CPU: CVE-2025-53057: Fixed unauthenticated attacker can achieve unauthorized creation, deletion or modification access to critical data bsc1252414. CVE-2025-53066: Fixed unauthenticated...

8.7CVSS7.8AI score0.00633EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2025/11/05 4:26 p.m.6 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_8

This update for kernel-livepatch-MICRO-6-0-RTUpdate8 fixes the following issues: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631 CVE-2025-38618: vsock: Do not allow binding to VMADDRPORTANY bsc1249207 CVE-2025-38617: net/packet: fix a race in packetsetring and...

7.3CVSS7.9AI score0.00288EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/11/03 10:32 a.m.6 views

Security update for nodejs18

This update for nodejs18 fixes the following issues: CVE-2025-7783: Switched away from Math.random in boundary values for multipart form-encoded data bsc1246818 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.2CVSS7AI score0.01735EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/11/02 12:16 p.m.6 views

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231,...

8.8CVSS7.2AI score0.00481EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/10/31 2:55 p.m.6 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-43718: fixed uncontrolled recursion in the regex-based metadata parser when processing specially crafted PDF files bsc1250908 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.8CVSS6.7AI score0.00124EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/28 10:31 a.m.6 views

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.29+7 October 2025 CPU: CVE-2025-53057: Fixed unauthenticated attacker can achieve unauthorized creation, deletion or modification access to critical data bsc1252414. CVE-2025-53066: Fixed unauthenticated...

8.7CVSS7.2AI score0.00633EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2025/10/27 12:59 p.m.6 views

Security update for erlang

This update for erlang fixes the following issues: CVE-2025-48041: fixed erlang exhaustion of file handles in SSH bsc1249473 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...

7.5CVSS7AI score0.00359EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/24 1:27 p.m.6 views

Security update for python-python-socketio

This update for python-python-socketio fixes the following issues: CVE-2025-61765: fixed by using json, rather than pickle for serialization bsc1251193 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.4CVSS7AI score0.00446EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/24 1:25 p.m.6 views

Security update for ruby2.5

This update for ruby2.5 fixes the following issues: CVE-2025-24294: resolv: insufficient checks on the length of a decompressed domain name when processing a DNS packet can lead to a denial of service due to excessive resource consumption bsc1246430. Patch Instructions: To install this SUSE updat...

6.9CVSS6.9AI score0.00539EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/24 10:13 a.m.6 views

Security update for kernel-livepatch-MICRO-6-0_Update_2

This update for kernel-livepatch-MICRO-6-0Update2 fixes the following issues: CVE-2024-49974: NFSD: limit the number of concurrent async COPY operations bsc1232384 CVE-2025-21971: netsched: Prevent creation of classes with TCHROOT bsc1245794 CVE-2025-38206: exfat: fix double free in delayedfree...

9.2CVSS7.2AI score0.00528EPSS
Exploits1References40
SUSE Linux
SUSE Linux
added 2025/10/24 6:35 a.m.6 views

Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-1507005316 fixes one issue. The following security issue was fixed: CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7.1CVSS6.3AI score0.00202EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/10/23 4:1 p.m.6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-53261: coresight: Fix memory leak in acpibuffer-pointer bsc1249770. CVE-2024-58090: sched/core: Prevent rescheduling when interrupts are disable...

8.7CVSS6.4AI score0.02163EPSS
Exploits4References1490
SUSE Linux
SUSE Linux
added 2025/10/23 3:26 p.m.6 views

Security update for haproxy

This update for haproxy fixes the following issues: CVE-2025-11230: Fixed mjson JSON decoder excessive resource consumption bsc1250983 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

6.9CVSS7AI score0.00469EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/23 10:26 a.m.6 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-11021: Ignored invalid date when processing cookies to prevent out-of-bounds read bsc1250562. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.2CVSS6.9AI score0.00594EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/23 5:46 a.m.6 views

Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-15050055116 fixes several issues. The following security issues were fixed: CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...

8.5CVSS7.9AI score0.00202EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added 2025/10/20 8:26 a.m.6 views

Security update for samba

This update for samba fixes the following issues: CVE-2025-9640: Fixed uninitialized memory disclosure via vfsstreamsxattr bsc1251279. CVE-2025-10230: Fixed command Injection in WINS server hook script bsc1251280. Update to 4.21.8: netrLogonSamLogonEx returns NRSTATUSACCESSDENIED with...

10CVSS7AI score0.39677EPSS
Exploits2References8
SUSE Linux
SUSE Linux
added 2025/10/18 11:3 a.m.6 views

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-15070073 fixes several issues. The following security issues were fixed: CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns bsc1248673...

9.2CVSS9.3AI score0.00528EPSS
Exploits1References32
SUSE Linux
SUSE Linux
added 2025/10/18 10:3 a.m.6 views

Security update for the Linux Kernel RT (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001014 fixes several issues. The following security issues were fixed: CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...

9.2CVSS7.9AI score0.00528EPSS
Exploits1References40
SUSE Linux
SUSE Linux
added 2025/10/15 1:37 p.m.6 views

Security update for samba

This update for samba fixes the following issues: CVE-2025-9640: Fixed uninitialized memory disclosure via vfsstreamsxattr bsc1251279. CVE-2025-10230: Fixed command Injection in WINS server hook script bsc1251280. Patch Instructions: To install this SUSE update use the SUSE recommended installati...

10CVSS7.1AI score0.39677EPSS
Exploits2References8
SUSE Linux
SUSE Linux
added 2025/10/15 12:17 p.m.6 views

Security update for qt6-base

This update for qt6-base fixes the following issues: CVE-2025-5455: processing of malformed data in qDecodeDataUrl can trigger assertion and cause a crash bsc1243958. CVE-2025-30348: complex algorithm used in encodeText in QDom when processing XML data can cause low performance bsc1239896. Patch...

6.9CVSS7AI score0.00343EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/10/13 6:59 a.m.6 views

Security update for open-vm-tools

This update for open-vm-tools fixes the following issues: CVE-2025-41244: fixed a local privilege escalation vulnerability bnc1250373. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

8.5CVSS7AI score0.0788EPSS
Exploits3References6
SUSE Linux
SUSE Linux
added 2025/10/12 5:3 p.m.6 views

Security update for the Linux Kernel (Live Patch 64 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122244 fixes several issues. The following security issues were fixed: CVE-2024-53168: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket bsc1243650. CVE-2025-38477: net/sched: schqfq: Fix race condition on qfqaggregate bsc1247315. CVE-2025-21791...

8.5CVSS7.6AI score0.00239EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/10/11 10:33 p.m.6 views

Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005583 fixes several issues. The following security issues were fixed: CVE-2024-53168: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket bsc1243650. CVE-2024-50154: tcp/dccp: Do not use timerpending in reqskqueueunlink bsc1233072...

8.5CVSS7.6AI score0.00571EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2025/10/10 6:33 p.m.6 views

Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024141 fixes several issues. The following security issues were fixed: CVE-2024-53168: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket bsc1243650. CVE-2024-50154: tcp/dccp: Do not use timerpending in reqskqueueunlink bsc1233072...

8.5CVSS7AI score0.00571EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2025/10/10 3:14 p.m.6 views

Security update for podofo

This update for podofo fixes the following issues: fixed a free-after-use in PdfTokenizer bsc1249105 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your produc...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/10 10:33 a.m.6 views

Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: Update to version 1.25.1, released 2025-09-03 bsc1244485. Security issues fixed: CVE-2025-47910: net/http: CrossOriginProtection insecure bypass patterns not limited to exact matches bsc1249141. Other issues fixed: go74822 cmd/go: "get...

5.4CVSS6.8AI score0.00308EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/10/08 9:4 p.m.6 views

Security update for redis7

This update for redis7 fixes the following issues: CVE-2025-49844: Malicious Lua scripts may lead to remote code execution. bsc1250995 CVE-2025-46817: Malicious Lua scripts may lead to integer overflow and potential remote code execution. bsc1250995 CVE-2025-46818: Malicious Lua scripts can be...

9.9CVSS7.9AI score0.86767EPSS
Exploits15References10
SUSE Linux
SUSE Linux
added 2025/10/08 6:35 p.m.6 views

Security update for redis7

This update for redis7 fixes the following issues: CVE-2025-49844: Malicious Lua scripts may lead to remote code execution. bsc1250995 CVE-2025-46817: Malicious Lua scripts may lead to integer overflow and potential remote code execution. bsc1250995 CVE-2025-46818: Malicious Lua scripts can be...

9.9CVSS8.2AI score0.86767EPSS
Exploits15References10
SUSE Linux
SUSE Linux
added 2025/10/08 7:36 a.m.6 views

Security update for cairo

This update for cairo fixes the following issues: CVE-2019-6461: Avoid assert when drawing arcs with NaN angles bsc1122338 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...

3.3CVSS6.4AI score0.02117EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/10/07 5:5 p.m.6 views

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-15070073 fixes several issues. The following security issues were fixed: CVE-2025-38477: net/sched: schqfq: Fix race condition on qfqaggregate bsc1247315. CVE-2025-38089: sunrpc: handle SVCGARBAGE during svc auth processing as auth error bsc1245509. Patch...

8.7CVSS7AI score0.00271EPSS
Exploits2References8
SUSE Linux
SUSE Linux
added 2025/10/07 3:45 p.m.6 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_2

This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: CVE-2024-50154: tcp/dccp: Don't use timerpending in reqskqueueunlink bsc1233072 CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing bsc1237048 CVE-2025-21791: vrf: use RCU protection in l3mdevl3out bsc1240744...

8.7CVSS7.5AI score0.00571EPSS
Exploits3References24
SUSE Linux
SUSE Linux
added 2025/10/07 11:33 a.m.6 views

Security update for rubygem-puma

This update for rubygem-puma fixes the following issues: Update to version 5.6.9. CVE-2024-45614: improper header normalization allows for clients to clobber proxy set headers, which can lead to information leaks bsc1230848, fixed in an earlier update. CVE-2024-21647: unbounded resource consumpti...

7.3CVSS6.8AI score0.00958EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/10/07 7:8 a.m.6 views

Security update for logback

This update for logback fixes the following issues: CVE-2025-11226: fixed the ACE vulnerability in conditional configuration file processing bsc1250715 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.3CVSS6.8AI score0.00181EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/03 10:41 a.m.6 views

Security update for frr

This update for frr fixes the following issues: CVE-2024-55553: excessive resource consumption may lead to denial of service due to repeated RIB revalidation when processing several RPKI updates bsc1235237. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

6.9CVSS6.9AI score0.00823EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/10/01 1:49 p.m.6 views

Security update for podman

This update for podman fixes the following issues: CVE-2025-6032: Fixed machine init command failing to verify TLS certificate bsc1245320 Fix conditional Requires remove deprecated sleversion macro Update to version 5.4.2: Add release notes for v5.4.2 Fix a potential deadlock during podman cp...

9CVSS6.2AI score0.00397EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/09/29 9:2 a.m.6 views

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Updated CUDA variant to 580.82.07: CVE-2025-23277: Fixed access memory outside bounds permitted under normal use cases in NVIDIA Display Driver bsc1247528. CVE-2025-23278: Fixed improper index validation by issuing a call...

7.8CVSS7.2AI score0.00212EPSS
Exploits0References54
SUSE Linux
SUSE Linux
added 2025/09/29 8:50 a.m.6 views

Security update for apache2-mod_security2

This update for apache2-modsecurity2 fixes the following issues: CVE-2025-54571: Fixed insufficient return value handling on modsecurity leads to xss and source code disclosure bsc1247674 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.9CVSS7AI score0.00263EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/09/28 1:4 a.m.6 views

Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002322 fixes several issues. The following security issues were fixed: CVE-2024-49860: ACPI: sysfs: validate return type of STR method bsc1231862. CVE-2025-38177: schhfsc: make hfscqlennotify idempotent bsc1246356. CVE-2025-38109: net/mlx5: fix ECVF vpor...

8.5CVSS7.8AI score0.00844EPSS
Exploits3References28
SUSE Linux
SUSE Linux
added 2025/09/27 9:33 a.m.6 views

Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024164 fixes several issues. The following security issues were fixed: CVE-2025-38177: schhfsc: make hfscqlennotify idempotent bsc1246356. CVE-2025-38181: calipso: Fix null-ptr-deref in calipsoreqset,delattr bsc1246001. CVE-2025-38498: dochangetype:...

8.5CVSS7.7AI score0.00844EPSS
Exploits3References26
SUSE Linux
SUSE Linux
added 2025/09/24 1:56 p.m.6 views

Security update for tiff

This update for tiff fixes the following issues: CVE-2025-9165: local execution manipulation leading to memory leak bsc1248330. CVE-2025-8534: null pointer dereference in function PSLvl2page bsc1247582. CVE-2025-8961: segmentation fault via main function of tiffcrop utility bsc1248117. Patch...

4.8CVSS6.7AI score0.00196EPSS
Exploits3References12
SUSE Linux
SUSE Linux
added 2025/09/24 1:3 p.m.6 views

Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2025-38177: schhfsc: make hfscqlennotify idempotent bsc1246356. CVE-2025-38109: net/mlx5: fix ECVF vports unload on shutdown flow bsc1245685. CVE-2025-38181: calipso: Fix...

8.5CVSS7.8AI score0.00844EPSS
Exploits3References24
SUSE Linux
SUSE Linux
added 2025/09/24 2:4 a.m.6 views

Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-15070078 fixes several issues. The following security issues were fixed: CVE-2025-38498: dochangetype: refuse to operate on unmounted/not ours mounts bsc1247499. CVE-2025-38555: usb: gadget : fix use-after-free in compositedevcleanup bsc1248298. Patch...

8.5CVSS7AI score0.00162EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/09/23 2:30 p.m.6 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 140.3 bsc1249391. Security issues fixed: MFSA 2025-78 CVE-2025-10527: sandbox escape due to use-after-free in the Graphics: Canvas2D component. CVE-2025-10528: sandbox escape due to undefined behavior,...

8.8CVSS7.5AI score0.00687EPSS
Exploits0References16
Total number of security vulnerabilities5000