Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
•added 2026/04/10 10:35 a.m.•5 views

Security update for nghttp2

This update for nghttp2 fixes the following issue: CVE-2026-27135: assertion failure due to missing state validation can lead to DoS bsc1259845. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively yo...

8.2CVSS6.7AI score0.00775EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/09 7:4 p.m.•5 views

Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.47 fixes various security issues The following security issues were fixed: CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689...

8.7CVSS6.7AI score0.00344EPSS
Exploits7References32
SUSE Linux
SUSE Linux
•added 2026/04/09 8:58 a.m.•5 views

Security update for bind

This update for bind fixes the following issues: CVE-2026-1519: high CPU load during insecure delegation validation due to excessive NSEC3 iterations bsc1260805. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS7.3AI score0.01545EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/08 2:39 p.m.•5 views

Security update for python-requests

This update for python-requests fixes the following issues: CVE-2026-25645: extractzippedpaths uses predictable filenames when extracting files from zip archives and reuses target files that already exist without validation bsc1260589. Patch Instructions: To install this SUSE update use the SUSE...

6.8CVSS5.9AI score0.00182EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/08 12:28 p.m.•5 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00981EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/08 12:28 p.m.•5 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00981EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/07 2:18 p.m.•5 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20260402T184258 2026-04-02T18:42:58Z jscPED-11136. Go CVE Numbering Authority IDs added or updated with aliases: GO-2026-4518 CVE-2026-32286 GHSA-jqcq-xjh3-6g23 GO-2026-4753 CVE-2026-33487 GHSA-479m-364c-43vc...

9.4CVSS6.5AI score0.60368EPSS
Exploits18References70
SUSE Linux
SUSE Linux
•added 2026/04/07 12:24 p.m.•5 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-28494: missing bounds checks in the morphology kernel parsing functions can lead to a stack buffer overflow bsc1259447...

8.8CVSS6.1AI score0.00401EPSS
Exploits0References60
SUSE Linux
SUSE Linux
•added 2026/04/07 10:25 a.m.•5 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260251 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.9AI score0.01557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/31 3:4 p.m.•5 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-26271: Buffer Overread in FreeRDP Icon Processing bsc1258979. CVE-2026-26955: Out-of-bounds Write in freerdp bsc1258982. CVE-2026-26965: Out-of-bounds Write in freerdp bsc1258985. CVE-2026-31806: improper validation of server messages c...

8.8CVSS6.6AI score0.00656EPSS
Exploits5References24
SUSE Linux
SUSE Linux
•added 2026/03/27 3:47 p.m.•5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47110: Fixed possible memory corruption when restoring from hibernation in x86/kvm bsc1221532. CVE-2025-21738: ata: libata-sff: Ensure that we cannot write...

7.8CVSS6.9AI score0.00245EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/03/27 2:36 p.m.•5 views

Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.51 fixes various security issues The following security issues were fixed: CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds bsc1257629. CVE-2025-38488: smb: client: fix use-after-free in cryptmessa...

8.7CVSS6.9AI score0.00278EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/03/26 6:5 p.m.•5 views

Security update for vim

This update for vim fixes the following issues: Update Vim to version 9.2.0110: CVE-2025-53906: malicious zip archive may cause a path traversal in Vim's zip bsc1246602. CVE-2026-26269: Netbeans specialKeys stack buffer overflow bsc1258229. CVE-2026-28417: crafted URL parsed by netrw plugin can...

5.4CVSS6.4AI score0.01162EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/03/26 10:38 a.m.•5 views

Security update for sqlite3

This update for sqlite3 fixes the following issues: Update sqlite3 to 3.51.3: CVE-2025-7709: Integer Overflow in FTS5 Extension bsc1254670. CVE-2025-70873: SQLite zipfile extension may disclose uninitialized heap memory during inflation bsc1259619. Changelog: Fix the WAL-reset database corruption...

6.9CVSS5.8AI score0.00322EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/03/26 10:4 a.m.•5 views

Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.136 fixes one security issue The following security issue was fixed: CVE-2025-21738: ata: libata-sff: ensure that we cannot write outside the allocated buffer bsc1257118. Patch Instructions: To install this SUSE update use the SUS...

7.8CVSS5.9AI score0.00197EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/26 5:4 a.m.•5 views

Security update for vim

This update for vim fixes the following issues: Update Vim to version 9.2.0110: CVE-2025-53906: malicious zip archive may cause a path traversal in Vim's zip bsc1246602. CVE-2026-26269: Netbeans specialKeys stack buffer overflow bsc1258229. CVE-2026-28417: crafted URL parsed by netrw plugin can...

5.4CVSS7.1AI score0.01162EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/03/25 7:34 p.m.•5 views

Security update for the Linux Kernel (Live Patch 36 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.150 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2023-53781: smc: Fix use-after-free in tcpwritetimerhandl...

8.7CVSS6.7AI score0.00278EPSS
Exploits0References40
SUSE Linux
SUSE Linux
•added 2026/03/25 2:13 p.m.•5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-53817: crypto: lib/mpi - avoid null pointer deref in mpicmpui bsc1254992. CVE-2024-38542: RDMA/manaib: boundary check before installing cq callbacks bsc122659...

8.5CVSS6.2AI score0.00344EPSS
Exploits7References146
SUSE Linux
SUSE Linux
•added 2026/03/25 10:16 a.m.•5 views

Security update for salt

This update for salt fixes the following issues: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

8.7CVSS5.8AI score0.01525EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/03/25 10:15 a.m.•5 views

Security update 5.0.7 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2025-67724: fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: fixed HTTP header parameter parsing algorithm bsc1254904...

8.7CVSS5.8AI score0.01525EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/25 10:13 a.m.•5 views

Security update 5.0.7 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

8.7CVSS5.8AI score0.01525EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/25 10:8 a.m.•5 views

Security update for Prometheus

This update for Prometheus fixes the following issues: golang-github-prometheus-alertmanager, golang-github-prometheus-nodeexporter: Internal changes to fix build issues with no impact for customers golang-github-prometheus-prometheus: Security issues fixed: CVE-2026-27606: Fixed arbitrary file...

9.8CVSS6AI score0.01535EPSS
Exploits3References24
SUSE Linux
SUSE Linux
•added 2026/03/23 4:47 p.m.•5 views

Security update for strongswan

This update for strongswan fixes the following issues: CVE-2026-25075: Fixed integer underflow when handling EAP-TTLS AVP bsc1259472. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

8.2CVSS5.8AI score0.01013EPSS
Exploits2References4
SUSE Linux
SUSE Linux
•added 2026/03/23 4:34 p.m.•5 views

Security update for python-Authlib

This update for python-Authlib fixes the following issues: CVE-2026-27962: JWS deserializecompact allows for signature bypass by accepting user-controlled embedded JWK as verification key bsc1259738. CVE-2026-28490: cryptographic padding oracle in JWE RSA15 key management algorithm bsc1259736...

9.1CVSS5.8AI score0.00548EPSS
Exploits3References12
SUSE Linux
SUSE Linux
•added 2026/03/23 2:18 p.m.•5 views

Security update for freerdp2

This update for freerdp2 fixes the following issue: CVE-2026-24491: Heap-use-after-free in videotimer additional fix bsc1257981. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.3CVSS5.8AI score0.00467EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/23 9:9 a.m.•5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-53817: crypto: lib/mpi - avoid null pointer deref in mpicmpui bsc1254992. CVE-2025-39748: bpf: Forget ranges when refining tnum after JSET bsc1249587...

8.5CVSS6.1AI score0.0071EPSS
Exploits7References674
SUSE Linux
SUSE Linux
•added 2026/03/23 9:8 a.m.•5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255163. CVE-2023-53827: Bluetooth: L2CAP: Fix use-after-free in...

7.8CVSS6AI score0.00216EPSS
Exploits0References58
SUSE Linux
SUSE Linux
•added 2026/03/23 8:6 a.m.•5 views

Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.272 fixes various security issues The following security issues were fixed: CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant...

8.7CVSS6AI score0.00278EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/03/23 2:34 a.m.•5 views

Security update for sqlite3

This update for sqlite3 fixes the following issues: Update to 3.51.3: CVE-2025-7709: Integer Overflow in FTS5 Extension bsc1254670. CVE-2025-70873: SQLite zipfile extension may disclose uninitialized heap memory during inflation bsc1259619. Changelog: Fix the WAL-reset database corruption bug:...

6.9CVSS5.8AI score0.00322EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/03/20 3:7 p.m.•5 views

Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: Update to go 1.25.8 bsc1244485, jscSLE-18320: CVE-2025-61732: cmd/cgo: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated sessio...

9.6CVSS7.3AI score0.00765EPSS
Exploits1References24
SUSE Linux
SUSE Linux
•added 2026/03/20 1:41 p.m.•5 views

Security update for

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.28 fixes various security issues The following security issues were fixed: CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handleauthsessionkey bsc1255378. CVE-2025-68285: libceph: fix potential use-after-free in...

8.7CVSS6AI score0.00173EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/03/20 1:41 p.m.•5 views

Security update for

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.25 fixes various security issues The following security issues were fixed: CVE-2025-40258: mptcp: fix race condition in mptcpschedulework bsc1255053. CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass...

8.7CVSS6.4AI score0.00176EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/03/19 10:27 a.m.•5 views

Security update for tomcat

This update for tomcat fixes the following issues: Update to Tomcat 9.0.115: CVE-2025-66614: client certificate verification bypass due to virtual host mapping bsc1258371. CVE-2026-24733: improper input validation on HTTP/0.9 requests bsc1258385. CVE-2026-24734: certificate revocation bypass due ...

8.7CVSS5.7AI score0.00498EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/03/18 7:46 a.m.•5 views

Security update for 389-ds

This update for 389-ds fixes the following issues: CVE-2025-14905: Fixed heap buffer overflow due to improper size calculation in schemaattrenumcallback callback bsc1258727. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.6CVSS6AI score0.01038EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/17 4:32 p.m.•5 views

Security update for xen

This update for xen fixes the following issues: CVE-2026-23554: xen: Use after free of paging structures in EPT bsc1259247, XSA-480 CVE-2026-23555: xen: Xenstored DoS by unprivileged domain bsc1259248, XSA-481 Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.2CVSS5.8AI score0.00181EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/03/17 4:32 p.m.•5 views

Security update for clamav

This update for clamav fixes the following issues: Update to clamav 1.5.2: Security issue: CVE-2026-20031: improper error handling in the HTML CSS module when splitting UTF-8 strings can lead to denial of service conditions via a crafted HTML file bsc1259207. Non security issue: Support...

6.9CVSS5.8AI score0.00414EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2026/03/17 10:4 a.m.•5 views

Security update for curl

This update for curl fixes the following issues: CVE-2026-1965: bad reuse of HTTP Negotiate connection bsc1259362. CVE-2026-3783: token leak with redirect and netrc bsc1259363. CVE-2026-3784: wrong proxy connection reuse with credentials bsc1259364. CVE-2026-3805: use after free in SMB connection...

7.5CVSS5.7AI score0.00715EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2026/03/13 3:26 p.m.•5 views

Security update for libpng15

This update for libpng15 fixes the following issues: CVE-2025-64505: heap buffer over-read in 'pngdoquantize' via malformed palette index bsc1254157. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...

6.9CVSS5.9AI score0.00184EPSS
Exploits2References4
SUSE Linux
SUSE Linux
•added 2026/03/13 3:26 p.m.•5 views

Security update for python3

This update for python3 fixes the following issues: CVE-2026-1299: header injection when an email is serialized due to improper newline quoting in BytesGenerator bsc1257181. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.3CVSS5.8AI score0.0056EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/13 8:57 a.m.•5 views

Security update for tomcat10

This update for tomcat10 fixes the following issues: Update to Tomcat 10.1.52: CVE-2025-66614: client certificate verification bypass due to virtual host mapping bsc1258371. CVE-2026-24733: improper input validation on HTTP/0.9 requests bsc1258385. CVE-2026-24734: certificate revocation bypass du...

8.7CVSS5.7AI score0.00498EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/03/13 7:58 a.m.•5 views

Security update for qemu

This update for qemu fixes the following issue: CVE-2025-14876: qemu-kvm: Unbounded allocation in virtio-crypto bsc1255400. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...

6.8CVSS5.8AI score0.00137EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/12 2:50 p.m.•5 views

Security update for curl

This update for curl fixes the following issues: CVE-2026-1965: bad reuse of HTTP Negotiate connection bsc1259362. CVE-2026-3783: token leak with redirect and netrc bsc1259363. CVE-2026-3784: wrong proxy connection reuse with credentials bsc1259364. CVE-2026-3805: use after free in SMB connection...

7.5CVSS5.8AI score0.00715EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2026/03/12 10:20 a.m.•5 views

Security update for python36

This update for python36 fixes the following issues: CVE-2026-1299: header injection when an email is serialized due to improper newline quoting in BytesGenerator bsc1257181. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.3CVSS5.8AI score0.0056EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/11 6:35 p.m.•5 views

Security update for go1.26

This update for go1.26 fixes the following issues: Update to go1.26.1 bsc1255111: CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. CVE-2026-27137: crypto/x509: incorrect enforcement of email constraints bsc1259266. CVE-2026-27138: crypto/x509: panic in name constraint...

8.7CVSS5.8AI score0.00728EPSS
Exploits0References22
SUSE Linux
SUSE Linux
•added 2026/03/11 5:7 p.m.•5 views

Security update for python

This update for python fixes the following issue: CVE-2026-1299: header injection when an email is serialized due to improper newline quoting in BytesGenerator bsc1257181. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...

8.3CVSS5.8AI score0.0056EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/11 4:45 p.m.•5 views

Security update for ImageMagick

This update for ImageMagick fixes the following issue: CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.5CVSS5.8AI score0.00401EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/11 10:0 a.m.•5 views

Security update for gnutls

This update for gnutls fixes the following issues: CVE-2025-14831: excessive resource consumption when verifying specially crafted malicious certificates containing a large number of name constraints and subject alternative names SANs bsc1257960. Patch Instructions: To install this SUSE update us...

6.9CVSS5.8AI score0.00638EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/10 4:46 p.m.•5 views

Security update for python-maturin

This update for python-maturin fixes the following issue: CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257918. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

8.7CVSS5.8AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/10 4:5 p.m.•5 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2025-69228: Fixed denial of service through large payloads bsc1256022. CVE-2025-69226: Fixed brute-force leak of internal static file path components bsc1256020. CVE-2025-69224: Fixed unicode processing of header values could cause...

8.7CVSS7.1AI score0.00487EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2026/03/10 12:39 p.m.•5 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2025-69228: Fixed denial of service through large payloads bsc1256022. CVE-2025-69226: Fixed brute-force leak of internal static file path components bsc1256020. CVE-2025-69224: Fixed unicode processing of header values could cause...

8.7CVSS5.8AI score0.00487EPSS
Exploits0References28
Total number of security vulnerabilities5000