Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
added 2025/06/06 1:12 p.m.5 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2025-43961: Fixed out-of-bounds read in the Fujifilm 0xf00c tag parser in metadata/tiff.cpp bsc1241643 CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phaseonecorrect function bsc1241585 CVE-2025-43963: Fixed out-of-buff...

5.1CVSS7.3AI score0.00367EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/06/06 10:4 a.m.5 views

Security update for openssh

This update for openssh fixes the following issue: Security fixes: CVE-2025-32728: Fixed logic error in DisableForwarding option bsc1241012 Other fixes: - Fix ssh client segfault with GSSAPIKeyExchange=yes in sshkex2 due to gssapi proposal not being correctly initialized bsc1236826. The problem...

5.1CVSS7.3AI score0.0016EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/06/05 7:48 a.m.5 views

Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u452 icedtea-3.35.0 Security issues fixed: CVE-2025-21587: unauthorized creation, deletion or modification of critical data through the JSSE component. bsc1241274 CVE-2025-30691: unauthorized update, insert or dele...

9.1CVSS6.8AI score0.00688EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/06/04 5:2 p.m.5 views

Security update for apache-commons-beanutils

This update for apache-commons-beanutils fixes the following issues: Update to 1.11.0 CVE-2025-48734: Fixed possible arbitrary code execution vulnerability bsc1243793 Full changelog: https://commons.apache.org/proper/commons-beanutils/changes.htmla1.11.0 Patch Instructions: To install this SUSE...

8.8CVSS8.1AI score0.01495EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/06/04 2:11 p.m.5 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Mozilla Firefox ESR 128.11 MFSA 2025-44, bsc1243353: MFSA-TMP-2025-0001: Double-free in libvpx encoder bmo1962421 CVE-2025-5263: Error handling for script execution was incorrectly isolated from web content bmo1960745...

6.5CVSS7AI score0.00398EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/06/04 10:12 a.m.5 views

Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Update to upstream tag jdk-17.0.15+6 April 2025 CPU CVEs: CVE-2025-21587: Fixed JSSE unauthorized access, deletion or modification of critical data bsc1241274 CVE-2025-30691: Fixed Oracle Java SE Compiler Unauthorized Data Access...

9.1CVSS7.6AI score0.00688EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/06/03 9:5 a.m.5 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS. bsc1243273 Update to 3.11.12: gh-105704: When using urllib.parse.urlsplit and urllib.parse.urlparse host parsing would not reject domain names containin...

8.4CVSS9.7AI score0.34174EPSS
Exploits5References76
SUSE Linux
SUSE Linux
added 2025/05/30 4:11 p.m.5 views

Security update for postgresql15

This update for postgresql15 fixes the following issues: Upgrade to 15.13: CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation bsc1242931 Changelog: https://www.postgresql.org/docs/release/15.13/ Patch Instructions: T...

5.9CVSS7.1AI score0.00612EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/05/29 4:8 p.m.5 views

Security update for slurm_24_11

This update for slurm2411 fixes the following issues: Update to version 24.11.5. Security issues fixed: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Other changes and issues fixe...

8.5CVSS6.8AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/05/22 9:4 a.m.5 views

Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2024-53042: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow bsc1233678. CVE-2024-53156: wifi: ath9k: add range check for connrspepid in htcconnectservice...

8.5CVSS7.6AI score0.00265EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/05/21 11:12 a.m.5 views

Security update for runc

This update for runc fixes the following issues: Update to runc v1.2.6. Upstream changelog is available from . Update to runc v1.2.0rc3. Upstream changelog is available from . CVE-2024-45310: Fixed that runc can be tricked into creating empty files/directories on host bsc1230092 Patch Instruction...

3.6CVSS7.3AI score0.00317EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/05/09 11:27 a.m.5 views

Security update for python-Django

This update for python-Django fixes the following issues: CVE-2025-32873: Fixed denial-of-service possibility in striptags bsc1242210 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

5.9CVSS6.8AI score0.13969EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/04/24 12:7 p.m.5 views

Security update for mozjs60

This update for mozjs60 fixes the following issues: CVE-2024-56431: Fixed a negative shift in huffdec.c bsc1234837. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

8.2CVSS9.7AI score0.01817EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/04/17 2:34 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52927: netfilter: allow exp not to be removed in nfctfindexpectation bsc1239644. CVE-2024-26708: mptcp: fix inconsistent state on fastopen race...

8.6CVSS7.6AI score0.09117EPSS
Exploits8References1614
SUSE Linux
SUSE Linux
added 2025/04/07 8:16 a.m.5 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250402T160203 2025-04-02T16:02:03Z jscPED-11136 GO-2025-3443 GO-2025-3581 GO-2025-3582 GO-2025-3583 GO-2025-3584 GO-2025-3585 GO-2025-3586 GO-2025-3587 GO-2025-3588 Patch Instructions: To install this SUSE upda...

7.4AI score
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/04/03 11:51 a.m.5 views

Security update for tomcat

This update for tomcat fixes the following issues: CVE-2025-24813: Fixed potential RCE and/or information disclosure/corruption with partial PUT bsc1239302 Update to Tomcat 9.0.102 Fixes: launch with java 17 bsc1239676 Catalina Fix: Weak etags in the If-Range header should not match as strong eta...

9.2CVSS9.2AI score0.99945EPSS
Exploits58References8
SUSE Linux
SUSE Linux
added 2025/03/28 5:6 p.m.5 views

Security update for python3

This update for python3 fixes the following issues: CVE-2024-11168: Fixed improper validation of IPv6 and IPvFuture addresses bsc1233307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

6.3CVSS6.7AI score0.0067EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/03/27 3:23 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52778: mptcp: deal with large GSO size bsc1224948. CVE-2023-52920: bpf: support non-r10 register spill/fill to/from stack in precision tracking...

8.7CVSS7.9AI score0.03301EPSS
Exploits8References2244
SUSE Linux
SUSE Linux
added 2025/03/25 2:8 a.m.5 views

Security update for freetype2

This update for freetype2 fixes the following issues: CVE-2025-27363: Fixed out-of-bounds write when attempting to parse font subglyph structures related to TrueType GX and variable font files bsc1239465. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

9.2CVSS7.2AI score0.26049EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/03/19 6:34 p.m.5 views

Security update for freetype2

This update for freetype2 fixes the following issues: CVE-2025-27363: Fixed out-of-bounds write when attempting to parse font subglyph structures related to TrueType GX and variable font files bsc1239465. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

9.2CVSS7.4AI score0.26049EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/03/13 5:58 p.m.5 views

Security update for build

This update for build fixes the following issues: - CVE-2024-22038: Fixed DoS attacks, information leaks with crafted Git repositories bnc1230469 Other fixes: - Fixed behaviour when using "--shell" aka "osc shell" option in a VM build. Startup is faster and permissions stay intact now. fixes for...

7.3CVSS6.6AI score0.00209EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/03/05 3:58 p.m.5 views

Security update for pcp

This update for pcp fixes the following issues: CVE-2024-45770: Fixed pmpost symlink attack allowing escalating pcp to root user bsc1230552. CVE-2024-45769: Fixed pmcd heap corruption through metric pmstore operations bsc1230551. CVE-2024-3019: Fixed exposure of the redis backend server allowing...

8.8CVSS8.1AI score0.01002EPSS
Exploits0References22
SUSE Linux
SUSE Linux
added 2025/02/28 10:17 a.m.5 views

Security update for openvswitch3

This update for openvswitch3 fixes the following issues: CVE-2025-0650: Fixed egress ACLs that may be bypassed via specially crafted UDP packet bsc1236353. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

9.2CVSS8.3AI score0.00832EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/02/21 2:9 p.m.5 views

Security update for postgresql14

This update for postgresql14 fixes the following issues: Upgrade to 14.17: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS8.2AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
added 2025/02/21 10:42 a.m.5 views

Security update for postgresql17

This update for postgresql17 fixes the following issues: Upgrade to 17.4: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS8.2AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
added 2025/02/20 4:21 p.m.5 views

Security update for postgresql13

This update for postgresql13 fixes the following issues: Upgrade to 13.20: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS7.3AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
added 2025/02/18 4:42 p.m.5 views

Security update for openssh

This update for openssh fixes the following issues: CVE-2025-26465: Fixed MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040. CVE-2025-26466: Fixed DoS attack against OpenSSH's client and server bsc1237041. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS6.9AI score0.38474EPSS
Exploits5References8
SUSE Linux
SUSE Linux
added 2025/02/14 7:24 a.m.5 views

Security update for grafana

This update for grafana fixes the following issues: grafana was updated from version 9.5.18 to 10.4.13 jscPED-11591,jscPED-11649: Security issues fixed: CVE-2024-45337: Prevent possible misuse of ServerConfig.PublicKeyCallback by upgrading golang.org/x/crypto bsc1234554 CVE-2023-3128: Fixed...

9.4CVSS8.3AI score0.04094EPSS
Exploits3References26
SUSE Linux
SUSE Linux
added 2025/02/14 7:19 a.m.5 views

Security update for SUSE Manager Client Tools

This update fixes the following issues: dracut-saltboot was updated to version 0.1.1728559936.c16d4fb: Added MAC based terminal naming option jscSUMA-314 golang-github-prometheus-prometheus was updated from version 2.45.6 to 2.53.3 jscPED-11649: Security issues fixed: CVE-2024-51744: Updated...

9.4CVSS8.7AI score0.04094EPSS
Exploits3References62
SUSE Linux
SUSE Linux
added 2025/02/13 8:15 a.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2025-21682: eth: bnxt: always recalculate features after XDP clearing, fix null-deref bsc1236703. CVE-2025-21678: gtp: Destroy device along with udp socket's netns...

8.7CVSS8.5AI score0.03558EPSS
Exploits5References1112
SUSE Linux
SUSE Linux
added 2025/02/05 3:35 p.m.5 views

Security update for curl

This update for curl fixes the following issues: CVE-2025-0725: Fixed gzip integer overflow bsc1236590 CVE-2025-0167: Fixed netrc and default credential leak bsc1236588 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5.9CVSS7.6AI score0.01218EPSS
Exploits2References8
SUSE Linux
SUSE Linux
added 2025/02/04 12:59 p.m.5 views

Security update for bind

This update for bind fixes the following issues: Update to release 9.18.33 Security Fixes: CVE-2024-11187: Fixes CPU exhaustion caused by many records in the additional section bsc1236596 CVE-2024-12705: Fixes multiple issues in DNS-over-HTTPS implementation when under heavy query load bsc1236597...

8.7CVSS8AI score0.16182EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/02/04 9:28 a.m.5 views

Security update for krb5

This update for krb5 fixes the following issues: CVE-2025-24528: Fixed out-of-bounds write caused by overflow when calculating ulog block size can lead to process crash bsc1236619. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...

6.5CVSS7.7AI score0.00606EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/02/03 9:19 a.m.5 views

Security update for docker

This update for docker fixes the following issues: Update docker-buildx to v0.19.2. See upstream changelog online at . Some notable changelogs from the last update: Add a new toggle file /etc/docker/suse-secrets-enable which allows users to disable the SUSEConnect integration with Docker which...

9.9CVSS7.1AI score0.16496EPSS
Exploits0References26
SUSE Linux
SUSE Linux
added 2025/02/03 9:18 a.m.5 views

Security update for buildkit

This update for buildkit fixes the following issues: Update to version 0.12.5: update runc to v1.1.12 exec: add extra validation for submount sources fixes CVE-2024-23651, bsc1219267 oci: fix error handling on submount calls executor: recheck mount stub path within root after container run fixes...

7.4CVSS7.9AI score0.02983EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/02/03 9:5 a.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52610: net/sched: actct: fix skb leak and crash on ooo frags bsc1221610. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow...

8.7CVSS8AI score0.00992EPSS
Exploits3References752
SUSE Linux
SUSE Linux
added 2025/02/03 9:4 a.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52610: net/sched: actct: fix skb leak and crash on ooo frags bsc1221610. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow...

8.7CVSS8AI score0.00992EPSS
Exploits3References750
SUSE Linux
SUSE Linux
added 2025/02/03 8:54 a.m.5 views

Security update for expat

This update for expat fixes the following issues: CVE-2024-45492: detect integer overflow in function nextScaffoldPart bsc1229932 CVE-2024-45491: detect integer overflow in dtdCopy bsc1229931 CVE-2024-45490: reject negative len for XMLParseBuffer bsc1229930 CVE-2024-28757: XML Entity Expansion...

7.5CVSS7.6AI score0.02006EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added 2025/02/03 8:46 a.m.5 views

Security update for nghttp2

This update for nghttp2 fixes the following issues: CVE-2024-28182: Fixed denial of service via http/2 continuation frames bsc1221399 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

7.5CVSS7.3AI score0.8496EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/01/29 4:11 p.m.5 views

Security update for hplip

This update for hplip fixes the following issues: This update for hplip fixes the following security issues: CVE-2020-6923: Fixed a memory buffer overflow in the HP Linux Imaging and Printing HPLIP. bsc1234745 This update for hplip fixes the following issues: Update to hplip 3.24.4 jscPED-5846...

5.7CVSS7.9AI score0.00298EPSS
Exploits0References14
SUSE Linux
SUSE Linux
added 2025/01/29 12:33 p.m.5 views

Security update for nginx

This update for nginx fixes the following issues: CVE-2023-44487: Mitigate HTTP/2 Rapid Reset Attack bsc1216171 CVE-2024-7347: Fixed worker crashes on special crafted mp4 files containing invalid chunk information bsc1229155 Patch Instructions: To install this SUSE update use the SUSE recommended...

7.5CVSS7.3AI score0.99999EPSS
Exploits19References8
SUSE Linux
SUSE Linux
added 2025/01/24 4:5 p.m.5 views

Security update for nodejs18

This update for nodejs18 fixes the following issues: Update to 18.20.6: CVE-2025-23085: Fixed HTTP2 memory leak on premature close and ERRPROTO bsc1236250 CVE-2025-22150: Fixed insufficiently random values used when defining the boundary for a multipart/form-data request in undici bsc1236258 Patc...

7.4CVSS6.9AI score0.01282EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/01/16 5:33 p.m.5 views

Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024116 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637...

7.8CVSS8.7AI score0.00757EPSS
Exploits2References118
SUSE Linux
SUSE Linux
added 2025/01/16 10:35 a.m.5 views

Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059161 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637...

7.8CVSS8.4AI score0.01166EPSS
Exploits3References80
SUSE Linux
SUSE Linux
added 2025/01/10 4:48 p.m.5 views

Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: CVE-2024-47530: Fixed an uninitialized stack memory in Matroska/WebM demuxer. boo1234421 CVE-2024-47537: Fixed an out-of-bounds write in isomp4/qtdemux.c. boo1234414 CVE-2024-47539: Fixed an out-of-bounds write in converttos3341a...

7.8CVSS7AI score0.01344EPSS
Exploits1References88
SUSE Linux
SUSE Linux
added 2025/01/09 4:37 p.m.5 views

Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: CVE-2024-47606: Fixed an integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes. boo1234449 CVE-2024-47537: Fixed an out-of-bounds write in isomp4/qtdemux.c. boo1234414 CVE-2024-47539: Fixe...

7.8CVSS7AI score0.01344EPSS
Exploits1References88
SUSE Linux
SUSE Linux
added 2025/01/09 3:36 p.m.5 views

Security update for python312

This update for python312 fixes the following issues: Properly quote path names provided when creating a virtual environment bsc1232241, CVE-2024-9287 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.5CVSS7.5AI score0.00647EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/01/07 4:38 p.m.5 views

Security update for file-roller

This update for file-roller fixes the following issues: CVE-2020-36314: Fixed directory traversal via directory symlink pointing outside of the target directory bsc1189131 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...

3.9CVSS7.4AI score0.00611EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/01/02 8:45 a.m.5 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2024-56201: Fixed sandbox breakout through malicious content and filename of a template bsc1234808 CVE-2024-56326: Fixed sandbox breakout through indirect reference to format method bsc1234809 Patch Instructions: To install this SUSE...

8.1CVSS7.2AI score0.005EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/01/02 8:1 a.m.5 views

Security update for liboqs, oqs-provider

This update for liboqs, oqs-provider fixes the following issues: This update supplies the new FIPS standardized ML-KEM, ML-DSA, SHL-DSA algorithms. This update liboqs to 0.12.0: This release updates the ML-DSA implementation to the final FIPS 204 version. This release still includes the NIST Roun...

8.2CVSS7.4AI score0.00515EPSS
Exploits0References12
Total number of security vulnerabilities5000