Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
•added 2026/03/10 4:5 p.m.•5 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2025-69228: Fixed denial of service through large payloads bsc1256022. CVE-2025-69226: Fixed brute-force leak of internal static file path components bsc1256020. CVE-2025-69224: Fixed unicode processing of header values could cause...

8.7CVSS7.1AI score0.00487EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2026/03/10 12:39 p.m.•5 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2025-69228: Fixed denial of service through large payloads bsc1256022. CVE-2025-69226: Fixed brute-force leak of internal static file path components bsc1256020. CVE-2025-69224: Fixed unicode processing of header values could cause...

8.7CVSS5.8AI score0.00487EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/03/09 10:13 a.m.•5 views

Security update for python-Flask

This update for python-Flask fixes the following issue: CVE-2026-27205: information disclosure due to Flask session not adding the Vary: Cookie header bsc1258700. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.5CVSS5.8AI score0.00374EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 8:0 p.m.•5 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2025-32049: denial of service attack to websocket server bsc1240751. CVE-2026-1467: lack of input sanitization can lead to unintended or unauthorized HTTP requests bsc1257398. CVE-2026-1539: proxy authentication credentials leaked via the...

8.8CVSS6AI score0.00728EPSS
Exploits2References28
SUSE Linux
SUSE Linux
•added 2026/03/05 10:49 a.m.•5 views

Security update for virtiofsd

This update for virtiofsd fixes the following issue: CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257912. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.7CVSS5.9AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/05 9:51 a.m.•5 views

Security update for wireshark

This update for wireshark fixes the following issues: CVE-2025-13946: MEGACO dissector infinite loop bsc1254472. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for...

5.5CVSS5.9AI score0.00126EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/05 8:31 a.m.•5 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 140.8.0 ESR MFSA 2026-15 bsc1258568: CVE-2026-2757: Incorrect boundary conditions in the WebRTC: Audio/Video component CVE-2026-2758: Use-after-free in the JavaScript: GC component CVE-2026-2759:...

8.8CVSS6AI score0.00604EPSS
Exploits0References76
SUSE Linux
SUSE Linux
•added 2026/03/04 12:58 p.m.•5 views

Security update for util-linux

This update for util-linux fixes the following issues: CVE-2026-3184: Fix full hostname usage for PAM to ensure correct access control for "login -h" bsc1258859. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS5.9AI score0.00436EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/03 2:48 p.m.•5 views

Security update for postgresql17

This update for postgresql17 fixes the following issue: Update to version 17.9 bsc1258754. Regression fixes: the substring function raises an error "invalid byte sequence for encoding" on non-ASCII text values if the source of that value is a database column caused by CVE-2026-2006 fix. a standby...

8.8CVSS5.9AI score0.01079EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/03 2:1 p.m.•5 views

Security update for postgresql18

This update for postgresql18 fixes the following issue: Update to version 18.3 bsc1258754. Regression fixes: the substring function raises an error "invalid byte sequence for encoding" on non-ASCII text values if the source of that value is a database column caused by CVE-2026-2006 fix. a standby...

8.8CVSS5.9AI score0.01079EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/03 1:35 p.m.•5 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS6AI score0.00755EPSS
Exploits2References26
SUSE Linux
SUSE Linux
•added 2026/03/03 1:28 p.m.•5 views

Security update for patch

This update for patch fixes the following issues: CVE-2021-45261: Clear range of pointers before they are used/freed bsc1194037. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

3.3CVSS5.9AI score0.00702EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/03 1:24 p.m.•5 views

Security update for libssh

This update for libssh fixes the following issues: CVE-2026-0964: improper sanitation of paths received from SCP servers can cause path traversal bsc1258049. CVE-2026-0965: possible denial of service when parsing unexpected configuration files bsc1258045. CVE-2026-0966: buffer underflow in...

6.5CVSS6AI score0.00582EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/03/03 1:20 p.m.•5 views

Security update for evolution-data-server

This update for evolution-data-server fixes the following issue: CVE-2026-2604: arbitrary file deletion via inconsistent URI handling bsc1258307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...

6.8CVSS6AI score0.00189EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/03 1:18 p.m.•5 views

Security update for python

This update for python fixes the following issue: CVE-2024-7592: uncontrolled CPU resource consumption when in http.cookies module bsc1229596. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you...

2.6CVSS5.9AI score0.02303EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/03 1:12 p.m.•5 views

Security update for postgresql15

This update for postgresql15 fixes the following issues: Update to version 15.17 bsc1258754. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to...

8.8CVSS6.5AI score0.01208EPSS
Exploits3References18
SUSE Linux
SUSE Linux
•added 2026/03/03 12:59 p.m.•5 views

Security update for smc-tools

This update for smc-tools fixes the following issues: Update to version 1.8.7 jscPED-14601. Security issues fixed: VUL-1: smc-tools: predictable /tmp file allows for local denial of service bsc1230052, bsc1258495. Other updates and bugfixes: smcrnics: fix regression when PFT not available...

5.9AI score
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/03/03 12:40 p.m.•5 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdata...

7.7CVSS6.1AI score0.00756EPSS
Exploits6References24
SUSE Linux
SUSE Linux
•added 2026/03/01 3:4 p.m.•5 views

Security update for the Linux Kernel (Live Patch 30 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.121 fixes various security issues The following security issues were fixed: CVE-2022-50700: wifi: ath10k: Delay the unmapping of the buffer bsc1255577. CVE-2023-54142: gtp: Fix use-after-free in gtpencapdestroy bsc1256097...

8.5CVSS7AI score0.00195EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/02/27 11:53 a.m.•5 views

Security update for valkey

This update for valkey fixes the following issues: Update to version 8.0.7. Security issues fixed: CVE-2025-67733: data tampering and denial of service via improper null character handling in Lua scripts bsc1258746. CVE-2026-21863: denial of service via invalid clusterbus packet bsc1258788. Other...

6.8CVSS6AI score0.00586EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/27 10:42 a.m.•5 views

Security update for freerdp2

This update for freerdp2 fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdat...

7.7CVSS6.1AI score0.00756EPSS
Exploits6References56
SUSE Linux
SUSE Linux
•added 2026/02/26 3:21 p.m.•5 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20260210 release bsc1258046 CVE-2024-24853: Updated fix for incorrect behavior order in transition between executive monitor and SMI transfer monitor STM in some IntelR Processor may allow a privileged...

7.3CVSS5.4AI score0.00232EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/26 3:21 p.m.•5 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20260210 release bsc1258046 CVE-2024-24853: Updated fix for incorrect behavior order in transition between executive monitor and SMI transfer monitor STM in some IntelR Processor may allow a privileged...

7.3CVSS5.4AI score0.00232EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/26 3:16 p.m.•5 views

Security update for frr

This update for frr fixes the following issues: CVE-2025-61099: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. bsc1252838 CVE-2025-61100: Fixed a NULL pointer dereference, which may lead to a DoS vulnerability. bsc1252829 CVE-2025-61101: Fixed a NULL pointer dereference,...

8.2CVSS5.4AI score0.00582EPSS
Exploits9References40
SUSE Linux
SUSE Linux
•added 2026/02/26 3:13 p.m.•5 views

Security update for python

This update for python fixes the following issues: CVE-2025-6075: Fixed performance degradation when using os.path.expandvars bsc1252974. CVE-2026-0672: Fixed a HTTP header injection via user-controlled cookie values and parameters when using http.cookies.Morsel. bsc1257031 CVE-2026-0865: Fixed a...

8.7CVSS5.5AI score0.00463EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/02/26 3:9 p.m.•5 views

Security update for openvswitch

This update for openvswitch fixes the following issues: CVE-2024-2182: Fixed insufficient validation of incoming BFD packets may lead to denial of service bsc1255435 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS5.4AI score0.00783EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/25 4:30 p.m.•5 views

Security update for libjxl

This update for libjxl fixes the following issues: CVE-2025-12474: a specially crafted file can cause the decoder to read pixel data from uninitialized allocated memory bsc1258090. CVE-2026-1837: a specially crafted file can cause the decoder to write pixel data to uninitialized unallocated memor...

9.2CVSS5.5AI score0.00199EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/02/25 4:29 p.m.•5 views

Security update for python3

This update for python3 fixes the following issues: CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters bsc1257029. CVE-2026-0672: HTTP header injection via user-controlled cookie values and parameters when using...

8.7CVSS5.5AI score0.0055EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/02/25 4:27 p.m.•5 views

Security update for python39

This update for python39 fixes the following issues: CVE-2025-11468: Fixed a header injection when folding a long comment in an email header containing exclusively unfoldable characters. bsc1257029 CVE-2026-0672: Fixed a HTTP header injection via user-controlled cookie values and parameters when...

8.7CVSS5.5AI score0.0055EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/02/25 11:12 a.m.•5 views

Security update for python-urllib3_1

This update for python-urllib31 fixes the following issues: CVE-2025-66471: excessive resource consumption via decompression of highly compressed data in Streaming API bsc1254867. CVE-2025-66418: resource exhaustion via unbounded number of links in the decompression chain bsc1254866...

6.9CVSS5.4AI score0.02667EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/02/25 9:49 a.m.•5 views

Security update 5.1.2 for Multi-Linux Manager Client Tools

This update fixes the following issues: spacecmd: Version 5.1.12-0 Fix spacecmd binary file upload bsc1253659 Fix typo in spacecmd help ca-cert flag bsc1253174 Convert cached IDs to int bsc1251995 Fix methods in api namespace in spacecmd bsc1249532 Make caching code Py 2.7 compatible Use JSON...

8.7CVSS5.7AI score0.00396EPSS
Exploits0References62
SUSE Linux
SUSE Linux
•added 2026/02/25 9:45 a.m.•5 views

Security update 5.1.2 for Multi-Linux Manager Salt Bundle

This update fixes the following issues: venv-salt-minion: Backport security patches for Salt vendored tornado: CVE-2025-67724: missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: fix DoS via malicious HTTP request bsc1254905 CVE-2025-67726: fix HTTP header parameter parsing...

8.7CVSS5.5AI score0.00396EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/02/24 3:15 p.m.•5 views

Security update for postgresql16

This update for postgresql16 fixes the following issues: Update to version 16.12. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to selectivity...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References16
SUSE Linux
SUSE Linux
•added 2026/02/24 3:14 p.m.•5 views

Security update for python36

This update for python36 fixes the following issues: CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters bsc1257029. CVE-2026-0672: HTTP header injection via user-controlled cookie values and parameters when using...

8.7CVSS5.5AI score0.0055EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/02/24 2:47 p.m.•5 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox 140.7.1 ESR CVE-2026-2447: Fixed a heap buffer overflow in libvpx. bsc1258231 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

9.2CVSS5.5AI score0.006EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/24 11:19 a.m.•5 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2026-0990: Fixed a call stack overflow leading to application crash due to infinite recursion in xmlCatalogXMLResolveURI. bsc1256807, bsc1256811 CVE-2026-0992: Fixed an excessive resource consumption when processing XML catalogs due to...

8.2CVSS5.5AI score0.00755EPSS
Exploits4References40
SUSE Linux
SUSE Linux
•added 2026/02/23 3:59 p.m.•5 views

Security update for libpng12

This update for libpng12 fixes the following issues: CVE-2026-25646: heap buffer overflow vulnerability in pngsetdither/pngsetquantize bsc1258020. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

8.3CVSS5.7AI score0.00955EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/02/20 10:5 a.m.•5 views

Security update for postgresql16

This update for postgresql16 fixes the following issues: Update to version 16.12. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to selectivity...

8.8CVSS6.4AI score0.01208EPSS
Exploits3References16
SUSE Linux
SUSE Linux
•added 2026/02/20 10:4 a.m.•5 views

Security update for postgresql17

This update for postgresql17 fixes the following issues: Update to version 17.8. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to selectivity...

8.8CVSS6.4AI score0.01208EPSS
Exploits3References16
SUSE Linux
SUSE Linux
•added 2026/02/20 10:3 a.m.•5 views

Security update for postgresql18

This update for postgresql18 fixes the following issues: Update to version 18.2. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to selectivity...

8.8CVSS6.5AI score0.01208EPSS
Exploits3References20
SUSE Linux
SUSE Linux
•added 2026/02/20 10:2 a.m.•5 views

Security update for snpguest

This update for snpguest fixes the following issues: CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257927. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.7CVSS5.5AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/19 11:38 a.m.•5 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2026-1536: Always validate the headers value when coming from untrusted source to avoid HTTP header injection bsc1257440. CVE-2026-1761: Check length of bytes read in soupfilterinputstreamreaduntil to avoid a stack-based buffer overflow...

9.2CVSS5.9AI score0.00947EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/02/18 8:3 a.m.•5 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2026-1761: incorrect length calculation when parsing of multipart HTTP responses can lead to a stack-based buffer overflow bsc1257598. CVE-2026-0716: improper bounds handling may allow out-of-bounds read bsc1256418. CVE-2025-4476: null...

9.2CVSS5.9AI score0.00947EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/02/17 6:46 p.m.•5 views

Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, cont

This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.64.0 Release notes...

5.4AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/02/16 10:3 a.m.•5 views

Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.6 fixes various security issues The following security issues were fixed: CVE-2025-38352: posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel bsc1249205. CVE-2025-39742: RDMA: hfi1: fix possible divide-by-ze...

8.7CVSS7.8AI score0.01345EPSS
Exploits8References16
SUSE Linux
SUSE Linux
•added 2026/02/16 5:4 a.m.•5 views

Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.53 fixes various security issues The following security issues were fixed: CVE-2025-38111: net/mdiobus: Fix potential out-of-bounds read/write access bsc1249455. CVE-2025-38352: posix-cpu-timers: fix race between handleposixcputimer...

8.7CVSS7.2AI score0.01345EPSS
Exploits8References20
SUSE Linux
SUSE Linux
•added 2026/02/15 11:4 a.m.•5 views

Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.113 fixes various security issues The following security issues were fixed: CVE-2023-53321: wifi: mac80211hwsim: drop short frames bsc1250314. CVE-2025-38111: net/mdiobus: Fix potential out-of-bounds read/write access bsc1249455...

7.3CVSS7.2AI score0.01345EPSS
Exploits8References16
SUSE Linux
SUSE Linux
•added 2026/02/13 2:32 p.m.•5 views

Security update for cargo-auditable

This update for cargo-auditable fixes the following issues: Update to version 0.7.20. Security issues fixed: CVE-2026-25727: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257906. Other updates and bugfixes: Update to version 0.7.20: mention cargo-dist...

8.7CVSS5.8AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/13 10:56 a.m.•5 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2026-1761: Check length of bytes read in soupfilterinputstreamreaduntil to avoid a stack-based buffer overflow bsc1257598. CVE-2026-0716: improper bounds handling may allow out-of-bounds read bsc1256418. CVE-2025-4476: null pointer...

9.2CVSS6.1AI score0.00947EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/02/13 6:4 a.m.•5 views

Security update for the Linux Kernel RT (Live Patch 5 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.7.19 fixes various security issues The following security issues were fixed: CVE-2025-40129: sunrpc: fix null pointer dereference on zero-length checksum bsc1253473. CVE-2025-40186: tcp: Don't call reqskfastopenremove in tcpconnrequest...

8.7CVSS5.5AI score0.00188EPSS
Exploits0References8
Total number of security vulnerabilities5000