Lucene search
K
SuseMost viewed

5428 matches found

SUSE Linux
SUSE Linux
•added 2026/04/27 12:6 p.m.•4 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...

8.2CVSS5.7AI score0.00599EPSS
Exploits13References58
SUSE Linux
SUSE Linux
•added 2026/04/27 12:6 p.m.•4 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...

8.2CVSS5.7AI score0.00599EPSS
Exploits13References58
SUSE Linux
SUSE Linux
•added 2026/04/27 12:5 p.m.•4 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...

8.2CVSS5.7AI score0.00599EPSS
Exploits15References70
SUSE Linux
SUSE Linux
•added 2026/04/24 2:6 p.m.•4 views

Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.133 fixes various security issues The following security issues were fixed: CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger bsc1258396. CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy...

7.3CVSS5.2AI score0.00134EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/24 11:46 a.m.•4 views

Security update for libpng16

This update for libpng16 fixes the following issue: CVE-2026-34757: information disclosure and data corruption due to use-after-free in pngsetPLTE, pngsettRNS and pngsethIST bsc1261957. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

5.1CVSS5.5AI score0.00195EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/24 11:45 a.m.•4 views

Security update for librsvg

This update for librsvg fixes the following issue: CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257922. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.7CVSS5.3AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/24 11:44 a.m.•4 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-33899: Denial of Service via out-of-bounds write in XML parsing bsc1262154. CVE-2026-33900: Denial of Service via integer truncation in viff encoder bsc1262156. CVE-2026-33901: Denial of Service due to heap buffer overflow in MVG...

8.7CVSS5.7AI score0.00566EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2026/04/23 4:48 p.m.•4 views

Security update for python-pyOpenSSL

This update for python-pyOpenSSL fixes the following issue: CVE-2026-27448: unhandled exception can result in connection not being cancelled bsc1259804. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS5.3AI score0.00241EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/23 3:53 p.m.•4 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issue: CVE-2026-5201: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image bsc1261210. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.2CVSS7.5AI score0.01069EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/23 3:52 p.m.•4 views

Security update for ntfs-3g_ntfsprogs

This update for ntfs-3gntfsprogs fixes the following issue: CVE-2026-40706: heap buffer overflow in ntfsbuildpermissionsposix in acls.c bsc1262216. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

8.5CVSS6AI score0.00165EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/23 12:11 p.m.•4 views

Security update for haproxy

This update for haproxy fixes the following issue: CVE-2026-33555: Request smuggling via HTTP/3 parser desynchronization bsc1262103. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

6.3CVSS5.7AI score0.00297EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/23 12:10 p.m.•4 views

Security update for perl

This update for perl fixes the following issue: CVE-2017-20230: Storable versions before 3.05 for Perl has a stack overflow bsc1262486. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

10CVSS5.8AI score0.00641EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/22 4:24 p.m.•4 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2026-5342: out-of-bounds read via LibRaw::nikonloadpaddedpackedraw bsc1261499. CVE-2026-20884: integer overflow and heap buffer overflow via deflatedngloadraw bsc1261671. CVE-2026-20889: heap-based buffer overflow in x3fthumbloaderbsc1261672...

9.2CVSS6AI score0.00746EPSS
Exploits6References24
SUSE Linux
SUSE Linux
•added 2026/04/22 9:41 a.m.•4 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28390: NULL pointer dereference during processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo bsc1261678. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like Ya...

8.2CVSS5.8AI score0.00805EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/20 3:57 p.m.•4 views

Security update for docker

This update for docker rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/04/20 3:54 p.m.•4 views

Security update for kubernetes

This update for kubernetes rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/04/20 3:54 p.m.•4 views

Security update for kubernetes-old

This update for kubernetes-old rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/04/20 3:51 p.m.•4 views

Security update for cosign

This update for cosign rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/04/20 10:10 a.m.•4 views

Security update for openvswitch

This update for openvswitch fixes the following issues: CVE-2026-34956: invalid memory access via crafted FTP payloads in userspace conntrack flows specifying the FTP alg handler bsc1261273. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS5.8AI score0.00405EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/20 10:9 a.m.•4 views

Security update for nodejs22

This update for nodejs22 fixes the following issues: Update to version 22.22.2. CVE-2026-21717: trivially predictable hash collisions due to flaw in V8's string hashing mechanism allows for performance degradation via a crafted request bsc1260494. CVE-2026-21716: incomplete fix for CVE-2024-36137...

8.7CVSS6.8AI score0.26356EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/04/20 10:8 a.m.•4 views

Security update for opensc

This update for opensc fixes the following issues: CVE-2025-49010: specially crafted smart card or USB device can lead to a stack buffer overflow write in GET RESPONSE bsc1261214. CVE-2025-66037: specially crafted input processed by the fuzzpkcs15reader harness can lead to an out-of-bounds heap...

3.9CVSS6.1AI score0.00282EPSS
Exploits2References16
SUSE Linux
SUSE Linux
•added 2026/04/20 8:34 a.m.•4 views

Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.31 fixes one security issue The following security issue was fixed: CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management bsc1259859. Patch Instructions: To install this SUSE update use the SUSE...

7.3CVSS5.8AI score0.00134EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/20 5:47 a.m.•4 views

Security update for jetty-minimal

This update for jetty-minimal fixes the following issues: CVE-2025-11143: Fixed different parsing of invalid URIs bsc1259242. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

6.3CVSS5.7AI score0.00159EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/17 2:18 p.m.•4 views

Security update for avahi

This update for avahi fixes the following issue: CVE-2026-24401: avahi-daemon can be crashed via a segmentation fault by sending an unsolicited mDNS response containing a recursive CNAME record bsc1257235. Patch Instructions: To install this SUSE update use the SUSE recommended installation metho...

6.5CVSS5.7AI score0.00252EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/17 12:51 p.m.•4 views

Security update for python-ecdsa

This update for python-ecdsa fixes the following issues: CVE-2026-33936: issue in the low-level DER parsing functions can cause unexpected exceptions to be raised from the public API functions bsc1261009. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

6.3CVSS5.7AI score0.00476EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/17 10:6 a.m.•4 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issue: CVE-2026-5201: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image bsc1261210. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.2CVSS7.5AI score0.01069EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/16 4:44 p.m.•4 views

Security update for NetworkManager

This update for NetworkManager fixes the following issues: CVE-2025-9615: non-admin users are allowed to use certificates from other users bsc1257359. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/16 1:6 p.m.•4 views

Security update for python-urllib3

This update for python-urllib3 fixes the following issues: Security issues: CVE-2025-66418: resource exhaustion via unbounded number of links in the decompression chain bsc1254866. CVE-2025-66471: excessive resource consumption via decompression of highly compressed data in Streaming API...

6.9CVSS6.7AI score0.02667EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/04/16 12:35 p.m.•4 views

Security update for tiff

This update for tiff fixes the following issues: CVE-2025-61143: Fixed NULL pointer dereference bsc1258798. CVE-2025-61144: Fixed stack overflow in readSeparateStripsIntoBuffer bsc1258801. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.6CVSS5.9AI score0.00253EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/16 10:47 a.m.•4 views

Security update for python-PyJWT

This update for python-PyJWT fixes the following issues: CVE-2026-32597: Fixed unknown crit header extensions accepts bsc1259616. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.7CVSS6.7AI score0.00269EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/15 5:25 p.m.•4 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: Security issues fixed: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL pointer dereference when processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS...

8.2CVSS7.5AI score0.00981EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2026/04/15 2:43 p.m.•4 views

Security update for glibc

This update for glibc fixes the following issues: CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions bsc1260082. Patch Instructions: To install this SUSE update use the SUSE recommended...

5.7CVSS5.8AI score0.00292EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/04/15 2:10 p.m.•4 views

Security update for tigervnc

This update for tigervnc fixes the following issues: CVE-2026-34352: Fixed permissions to prevent other users from observing the screen, or modifying what is sent to the client. bsc1260871 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7CVSS5.8AI score0.00247EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/14 1:12 p.m.•4 views

Security update for libpng16

This update for libpng16 fixes the following issues: CVE-2026-33416: use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE can lead to arbitrary code execution bsc1260754. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...

9.2CVSS6.8AI score0.01052EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/14 12:39 p.m.•4 views

Security update for go1.26

This update for go1.26 fixes the following issues: Update to go1.26.2 bsc1255111. CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. CVE-2026-27144: cmd/compile: no-op...

7.5CVSS5.9AI score0.00658EPSS
Exploits0References42
SUSE Linux
SUSE Linux
•added 2026/04/14 10:47 a.m.•4 views

Security update for freerdp2

This update for freerdp2 fixes the following issues: Fix the CVE-2026-24684 patch, as the previous version wrongly deleted a check for an error condition bsc1257991. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.3CVSS5.8AI score0.00534EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/14 10:39 a.m.•4 views

Security update for sudo

This update for sudo fixes the following issue: CVE-2026-35535: Fixed potential privilege escalation when running the mailer bsc1261420. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...

7.5CVSS5.8AI score0.00173EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 4:4 p.m.•4 views

Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.275 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2025-39973: i40e: add validation for ringlen param...

8.7CVSS5.8AI score0.00204EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/04/13 6:34 a.m.•4 views

Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.280 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2025-71120: SUNRPC: svcauthgss: avoid NULL deref on zer...

8.7CVSS6AI score0.00204EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/10 3:6 p.m.•4 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.1AI score0.00981EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/10 2:56 p.m.•4 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.1AI score0.00885EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/04/10 11:37 a.m.•4 views

Security update for tigervnc

This update for tigervnc fixes the following issues: CVE-2026-34352: Fixed permissions to prevent other users from observing the screen, or modifying what is sent to the client. bsc1260871 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7CVSS5.8AI score0.00247EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/10 11:36 a.m.•4 views

Security update for cockpit-podman

This update for cockpit-podman fixes the following issues: CVE-2026-25547: brace-expansion: unbounded brace range expansion can lead to excessive CPU and memory consumption and may crash a Node.js process bsc1257836. CVE-2026-26996: minimatch: ReDoS when glob pattern contains many consecutive...

8.7CVSS5.8AI score0.00519EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/10 11:36 a.m.•4 views

Security update for cockpit-tukit

This update for cockpit-tukit fixes the following issues: CVE-2026-25547: brace-expansion: unbounded brace range expansion can lead to excessive CPU and memory consumption and may crash a Node.js process bsc1257836. CVE-2026-26996: minimatch: ReDoS when glob pattern contains many consecutive...

8.7CVSS6.7AI score0.00519EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/10 11:36 a.m.•4 views

Security update for cockpit-machines

This update for cockpit-machines fixes the following issues: CVE-2026-25547: brace-expansion: unbounded brace range expansion can lead to excessive CPU and memory consumption and may crash a Node.js process bsc1257836. CVE-2026-26996: minimatch: ReDoS when glob pattern contains many consecutive...

8.7CVSS6.7AI score0.00519EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/09 10:47 a.m.•4 views

Security update for cockpit

This update for cockpit fixes the following issues: CVE-2026-25547: brace-expansion: unbounded brace range expansion can lead to excessive CPU and memory consumption and may crash a Node.js process bsc1257836. CVE-2026-26996: minimatch: ReDoS when glob pattern contains many consecutive wildcards...

8.7CVSS6.6AI score0.00519EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/08 4:4 p.m.•4 views

Security update for the Linux Kernel (Live Patch 67 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.255 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2025-39973: i40e: add validation for ringlen param...

8.7CVSS6.6AI score0.00204EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/04/08 4:3 p.m.•4 views

Security update for python-poetry

This update for python-poetry fixes the following issue: CVE-2026-34591: From version 1.4.0 to before version 2.3.3, a crafted wheel can contain ../ paths that Poetry writes to disk without containment checks, allowing arbitrary file write bsc1261383. Patch Instructions: To install this SUSE upda...

7.1CVSS6AI score0.00468EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/08 12:28 p.m.•4 views

Security update for freerdp

This update for freerdp fixes the following issue: CVE-2026-24684: Heap-use-after-free in playthread bsc1257991. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for...

7.3CVSS5.9AI score0.00534EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/07 9:25 a.m.•4 views

Security update for google-cloud-sap-agent

This update for google-cloud-sap-agent fixes the following issue: Update to google-cloud-sap-agent 3.12 bsc1259816: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260265. Changelog: Collect WLM metric...

8.6CVSS5.9AI score0.01557EPSS
Exploits1References6
Total number of security vulnerabilities5000