Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
added 2025/07/17 9:4 a.m.5 views

Security update for gnutls

This update for gnutls fixes the following issues: CVE-2025-6395: Fix NULL pointer dereference when 2nd Client Hello omits PSK bsc1246299 CVE-2025-32988: Fix double-free due to incorrect ownership handling in the export logic of SAN entries containing an otherName bsc1246232 CVE-2025-32989: Fix...

9.2CVSS7.9AI score0.01185EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/07/16 11:10 a.m.5 views

Security update for rmt-server

This update for rmt-server fixes the following issues: Update to version 2.23 CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. bsc1242893 CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. bsc1242898 Patch Instructions: To install th...

8.7CVSS7.3AI score0.00911EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2025/07/15 2:31 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47557: net/sched: schets: do not peek at classes beyond 'nbands' bsc1207361 bsc1225468. CVE-2021-47595: net/sched: schets: do not remove idle classes from...

8.7CVSS7.6AI score0.12746EPSS
Exploits16References962
SUSE Linux
SUSE Linux
added 2025/07/11 3:20 p.m.5 views

Security update for go1.23

This update for go1.23 fixes the following issues: Update to version go1.23.11 CVE-2025-4674: Fixed potential command execution in untrusted VCS repositories. bsc1246118 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

9.3CVSS7.5AI score0.00273EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/07/11 1:53 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References336
SUSE Linux
SUSE Linux
added 2025/07/11 11:13 a.m.5 views

Security update for xen

This update for xen fixes the following issues: CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection ITS XSA-469 bsc1243117 CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through XSA-467 bsc1238043 Special Instructions and Notes: Please reboot the system after...

6.8CVSS7.3AI score0.00723EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/07/11 10:21 a.m.5 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-6069: Avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser bsc1244705. Update to 3.11.13: Security gh-135034: Fixes multiple issues that allowed tarfile extraction filters filter="data...

8.4CVSS9.7AI score0.06304EPSS
Exploits15References44
SUSE Linux
SUSE Linux
added 2025/07/09 10:24 p.m.5 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.7CVSS7.6AI score0.0129EPSS
Exploits2References682
SUSE Linux
SUSE Linux
added 2025/07/01 8:14 a.m.5 views

Security update for jakarta-commons-fileupload

This update for jakarta-commons-fileupload fixes the following issues: Upgrade to upstream version 1.6.0 CVE-2025-48976: Fixed allocation of resources for multipart headers with insufficient limits can lead to a DoS bsc1244657. Full changelog:...

8.7CVSS7.3AI score0.63258EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/06/30 5:53 p.m.5 views

Security update for sudo

This update for sudo fixes the following issues: CVE-2025-32462: Fixed a possible local privilege escalation via the --host option bsc1245274. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you...

7.3CVSS9.2AI score0.03239EPSS
Exploits12References4
SUSE Linux
SUSE Linux
added 2025/06/27 12:17 p.m.5 views

Security update for sqlite3

This update for sqlite3 fixes the following issues: CVE-2025-29087,CVE-2025-3277: Fixed integer overflow in sqlite concat function bsc1241020 CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component bsc1241078 Other fixes: Updated to version 3.49.1 from Factory...

8.5CVSS7.5AI score0.00609EPSS
Exploits0References14
SUSE Linux
SUSE Linux
added 2025/06/26 7:33 p.m.5 views

Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059174 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing...

8.5CVSS8AI score0.00272EPSS
Exploits0References28
SUSE Linux
SUSE Linux
added 2025/06/24 10:25 a.m.5 views

Security update for icu

This update for icu fixes the following issues: CVE-2025-5222: Stack buffer overflow in the SRBRoot:addTag function bsc1243721. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7CVSS7.3AI score0.01133EPSS
Exploits1References12
SUSE Linux
SUSE Linux
added 2025/06/20 4:17 p.m.5 views

Security update for apache-commons-beanutils

This update for apache-commons-beanutils fixes the following issues: Update to 1.11.0: Fixed Bugs: BeanComparator.compareT, T now throws IllegalArgumentException instead of RuntimeException to wrap all cases of ReflectiveOperationException. MappedMethodReference.get now throws IllegalStateExcepti...

8.8CVSS7.3AI score0.96032EPSS
Exploits22References8
SUSE Linux
SUSE Linux
added 2025/06/20 3:35 p.m.5 views

Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: CVE-2024-47537: Fixed OOB-write in isomp4/qtdemux.c bsc1234414 CVE-2024-47539: Fixed OOB-write in converttos3341a bsc1234417 CVE-2024-47540: Fixed uninitialized stack memory in Matroska/WebM demuxer bsc1234421 CVE-2024-47543: Fixe...

7.8CVSS7.6AI score0.01344EPSS
Exploits1References84
SUSE Linux
SUSE Linux
added 2025/06/18 2:11 a.m.5 views

Security update for Multi-Linux Manager Client Tools

This update fixes the following issues: golang-github-prometheus-prometheus was updated to version 2.53.4: Security issues fixed: CVE-2023-45288: Require Go = 1.23 for building bsc1236516 CVE-2025-22870: Bumped golang.org/x/net to version 0.39.0 bsc1238686 Other bugs fixes from version 2.53.4:...

9.9CVSS7.4AI score0.97809EPSS
Exploits19References52
SUSE Linux
SUSE Linux
added 2025/06/17 3:30 p.m.5 views

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: CVE-2025-49175: Out-of-bounds access in X Rendering extension Animated cursors bsc1244082. CVE-2025-49176: Integer overflow in Big Requests Extension bsc1244084. CVE-2025-49177: Data leak in XFIXES Extension 6 XFixesSetClientDisconnectMo...

8.5CVSS7.1AI score0.00361EPSS
Exploits0References24
SUSE Linux
SUSE Linux
added 2025/06/13 1:55 p.m.5 views

Security update for apache2-mod_auth_openidc

This update for apache2-modauthopenidc fixes the following issues: CVE-2025-3891: Fixed denial of service via an empty POST request when OIDCPreservePost is enabled bsc1242015. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.2CVSS6AI score0.01214EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/06/13 12:33 p.m.5 views

Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024128 fixes several issues. The following security issues were fixed: CVE-2022-49080: mm/mempolicy: fix mpolnew leak in sharedpolicyreplace bsc1238324. CVE-2024-57996: netsched: schsfq: do not allow 1 packet limit bsc1239077. Patch Instructions: To...

8.5CVSS7.9AI score0.00262EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/06/13 10:16 a.m.5 views

Security update for kubernetes-old

This update for kubernetes-old fixes the following issues: CVE-2025-22872: Fixed golang.org/x/net/html: incorrectly interpreted tags can cause content to be placed wrong scope during DOM construction bsc1241781 This update to version 1.31.9 jscPED-11105 Find full changelog...

6.5CVSS7.1AI score0.0045EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/06/11 12:4 p.m.5 views

Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005597 fixes several issues. The following security issues were fixed: CVE-2024-58013: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmtremoveadvmonitorsync bsc1239096. CVE-2024-57996: netsched: schsfq: do not allow 1 packet limit bsc1239077. Patch...

8.5CVSS8.8AI score0.00231EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/06/10 11:50 a.m.5 views

Security update for sqlite3

This update for sqlite3 fixes the following issues: Update to release 3.49.1: Improve portability of makefiles and configure scripts. CVE-2025-29087: Fixed Integer Overflow in SQLite concat Function bsc1241020 CVE-2025-29088: Fixed integer overflow through the SQLITEDBCONFIGLOOKASIDE component...

6.8CVSS8.1AI score0.00453EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/06/06 1:12 p.m.5 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2025-43961: Fixed out-of-bounds read in the Fujifilm 0xf00c tag parser in metadata/tiff.cpp bsc1241643 CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phaseonecorrect function bsc1241585 CVE-2025-43963: Fixed out-of-buff...

5.1CVSS7.3AI score0.00367EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/06/06 10:4 a.m.5 views

Security update for openssh

This update for openssh fixes the following issue: Security fixes: CVE-2025-32728: Fixed logic error in DisableForwarding option bsc1241012 Other fixes: - Fix ssh client segfault with GSSAPIKeyExchange=yes in sshkex2 due to gssapi proposal not being correctly initialized bsc1236826. The problem...

5.1CVSS7.3AI score0.0016EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/06/05 7:48 a.m.5 views

Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u452 icedtea-3.35.0 Security issues fixed: CVE-2025-21587: unauthorized creation, deletion or modification of critical data through the JSSE component. bsc1241274 CVE-2025-30691: unauthorized update, insert or dele...

9.1CVSS6.8AI score0.00688EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/06/04 5:2 p.m.5 views

Security update for apache-commons-beanutils

This update for apache-commons-beanutils fixes the following issues: Update to 1.11.0 CVE-2025-48734: Fixed possible arbitrary code execution vulnerability bsc1243793 Full changelog: https://commons.apache.org/proper/commons-beanutils/changes.htmla1.11.0 Patch Instructions: To install this SUSE...

8.8CVSS8.1AI score0.01495EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/06/04 2:11 p.m.5 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Mozilla Firefox ESR 128.11 MFSA 2025-44, bsc1243353: MFSA-TMP-2025-0001: Double-free in libvpx encoder bmo1962421 CVE-2025-5263: Error handling for script execution was incorrectly isolated from web content bmo1960745...

6.5CVSS7AI score0.00398EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/06/04 10:12 a.m.5 views

Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Update to upstream tag jdk-17.0.15+6 April 2025 CPU CVEs: CVE-2025-21587: Fixed JSSE unauthorized access, deletion or modification of critical data bsc1241274 CVE-2025-30691: Fixed Oracle Java SE Compiler Unauthorized Data Access...

9.1CVSS7.6AI score0.00688EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/06/03 9:5 a.m.5 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS. bsc1243273 Update to 3.11.12: gh-105704: When using urllib.parse.urlsplit and urllib.parse.urlparse host parsing would not reject domain names containin...

8.4CVSS9.7AI score0.34174EPSS
Exploits5References76
SUSE Linux
SUSE Linux
added 2025/05/30 4:11 p.m.5 views

Security update for postgresql15

This update for postgresql15 fixes the following issues: Upgrade to 15.13: CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation bsc1242931 Changelog: https://www.postgresql.org/docs/release/15.13/ Patch Instructions: T...

5.9CVSS7.1AI score0.00612EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/05/29 4:8 p.m.5 views

Security update for slurm_24_11

This update for slurm2411 fixes the following issues: Update to version 24.11.5. Security issues fixed: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Other changes and issues fixe...

8.5CVSS6.8AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/05/22 9:4 a.m.5 views

Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2024-53042: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow bsc1233678. CVE-2024-53156: wifi: ath9k: add range check for connrspepid in htcconnectservice...

8.5CVSS7.6AI score0.00265EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/05/21 11:12 a.m.5 views

Security update for runc

This update for runc fixes the following issues: Update to runc v1.2.6. Upstream changelog is available from . Update to runc v1.2.0rc3. Upstream changelog is available from . CVE-2024-45310: Fixed that runc can be tricked into creating empty files/directories on host bsc1230092 Patch Instruction...

3.6CVSS7.3AI score0.00317EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/05/09 11:27 a.m.5 views

Security update for python-Django

This update for python-Django fixes the following issues: CVE-2025-32873: Fixed denial-of-service possibility in striptags bsc1242210 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

5.9CVSS6.8AI score0.13969EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/04/24 12:7 p.m.5 views

Security update for mozjs60

This update for mozjs60 fixes the following issues: CVE-2024-56431: Fixed a negative shift in huffdec.c bsc1234837. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

8.2CVSS9.7AI score0.01817EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/04/17 2:34 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52927: netfilter: allow exp not to be removed in nfctfindexpectation bsc1239644. CVE-2024-26708: mptcp: fix inconsistent state on fastopen race...

8.6CVSS7.6AI score0.09117EPSS
Exploits8References1614
SUSE Linux
SUSE Linux
added 2025/04/07 8:16 a.m.5 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250402T160203 2025-04-02T16:02:03Z jscPED-11136 GO-2025-3443 GO-2025-3581 GO-2025-3582 GO-2025-3583 GO-2025-3584 GO-2025-3585 GO-2025-3586 GO-2025-3587 GO-2025-3588 Patch Instructions: To install this SUSE upda...

7.4AI score
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/04/03 11:51 a.m.5 views

Security update for tomcat

This update for tomcat fixes the following issues: CVE-2025-24813: Fixed potential RCE and/or information disclosure/corruption with partial PUT bsc1239302 Update to Tomcat 9.0.102 Fixes: launch with java 17 bsc1239676 Catalina Fix: Weak etags in the If-Range header should not match as strong eta...

9.2CVSS9.2AI score0.99945EPSS
Exploits58References8
SUSE Linux
SUSE Linux
added 2025/03/28 5:6 p.m.5 views

Security update for python3

This update for python3 fixes the following issues: CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

6.3CVSS6.7AI score0.0067EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/03/27 3:23 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52778: mptcp: deal with large GSO size bsc1224948. CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking...

8.7CVSS7.9AI score0.03301EPSS
Exploits8References2244
SUSE Linux
SUSE Linux
added 2025/03/13 5:58 p.m.5 views

Security update for build

This update for build fixes the following issues: - CVE-2024-22038: Fixed DoS attacks, information leaks with crafted Git repositories bnc1230469 Other fixes: - Fixed behaviour when using "--shell" aka "osc shell" option in a VM build. Startup is faster and permissions stay intact now. fixes for...

7.3CVSS6.6AI score0.00209EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/02/28 10:17 a.m.5 views

Security update for openvswitch3

This update for openvswitch3 fixes the following issues: CVE-2025-0650: Fixed egress ACLs that may be bypassed via specially crafted UDP packet bsc1236353. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

9.2CVSS8.3AI score0.00832EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/02/21 2:9 p.m.5 views

Security update for postgresql14

This update for postgresql14 fixes the following issues: Upgrade to 14.17: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS8.2AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
added 2025/02/21 10:42 a.m.5 views

Security update for postgresql17

This update for postgresql17 fixes the following issues: Upgrade to 17.4: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS8.2AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
added 2025/02/20 4:21 p.m.5 views

Security update for postgresql13

This update for postgresql13 fixes the following issues: Upgrade to 13.20: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS7.3AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
added 2025/02/18 4:42 p.m.5 views

Security update for openssh

This update for openssh fixes the following issues: CVE-2025-26465: Fixed MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040. CVE-2025-26466: Fixed DoS attack against OpenSSH's client and server bsc1237041. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS6.9AI score0.38474EPSS
Exploits5References8
SUSE Linux
SUSE Linux
added 2025/02/14 7:24 a.m.5 views

Security update for grafana

This update for grafana fixes the following issues: grafana was updated from version 9.5.18 to 10.4.13 jscPED-11591,jscPED-11649: Security issues fixed: CVE-2024-45337: Prevent possible misuse of ServerConfig.PublicKeyCallback by upgrading golang.org/x/crypto bsc1234554 CVE-2023-3128: Fixed...

9.4CVSS8.3AI score0.04094EPSS
Exploits3References26
SUSE Linux
SUSE Linux
added 2025/02/14 7:19 a.m.5 views

Security update for SUSE Manager Client Tools

This update fixes the following issues: dracut-saltboot was updated to version 0.1.1728559936.c16d4fb: Added MAC based terminal naming option jscSUMA-314 golang-github-prometheus-prometheus was updated from version 2.45.6 to 2.53.3 jscPED-11649: Security issues fixed: CVE-2024-51744: Updated...

9.4CVSS8.7AI score0.04094EPSS
Exploits3References62
SUSE Linux
SUSE Linux
added 2025/02/13 8:15 a.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref bsc1236703. CVE-2025-21678: gtp: Destroy device along with udp socket's netns...

8.7CVSS8.5AI score0.03558EPSS
Exploits5References1112
SUSE Linux
SUSE Linux
added 2025/02/05 3:35 p.m.5 views

Security update for curl

This update for curl fixes the following issues: CVE-2025-0725: Fixed gzip integer overflow bsc1236590 CVE-2025-0167: Fixed netrc and default credential leak bsc1236588 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5.9CVSS7.6AI score0.01168EPSS
Exploits2References8
Total number of security vulnerabilities5000