Lucene search
K
SuseMost viewed

5423 matches found

SUSE Linux
SUSE Linux
•added 2025/05/29 2:39 p.m.•4 views

Security update for slurm_22_05

This update for slurm2205 fixes the following issues: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.5CVSS6.5AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/29 2:37 p.m.•4 views

Security update for slurm_22_05

This update for slurm2205 fixes the following issues: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.5CVSS7.2AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/26 11:3 a.m.•4 views

Security update for python-setuptools

This update for python-setuptools fixes the following issues: CVE-2025-47273: path traversal in PackageIndex.download may lead to an arbitrary file write bsc1243313. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.7CVSS7.6AI score0.01479EPSS
Exploits4References4
SUSE Linux
SUSE Linux
•added 2025/05/23 11:58 a.m.•4 views

Security update for python-tornado6

This update for python-tornado6 fixes the following issues: CVE-2025-47287: excessive logging when parsing malformed multipart/form-data can lead to a denial-of-service bsc1243268. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...

8.7CVSS7.3AI score0.00667EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/22 4:1 p.m.•4 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.10.1. Security fixes: MFSA 2025-34 bsc1243216 CVE-2025-3875: Sender Spoofing via Malformed From Header in Thunderbird. CVE-2025-3877: Unsolicited File Download, Disk Space Exhaustion, and Credential...

7.5CVSS6.9AI score0.00363EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/05/19 5:23 p.m.•4 views

Security update for rubygem-rack

This update for rubygem-rack fixes the following issues: CVE-2025-46727: possible memory exhaustion due to unbounded parameter parsing in Rack::QueryParser bsc1242894. CVE-2025-32441: deleted sessions can be restored and occupied by unauthenticated users when the Rack::Session::Pool middleware is...

8.7CVSS6.6AI score0.00911EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/05/15 3:54 p.m.•4 views

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Update CUDA variant to 570.133.20 Update non-CUDA variant to 570.144 bsc1241231 Update non-CUDA variant to 570.133.07 bsc1239653 removed obsolete kernel-firmware-nvidia-gspx-G06-cuda; firmware has moved to nvidia-common-G06...

7.1CVSS7.2AI score0.00201EPSS
Exploits0References34
SUSE Linux
SUSE Linux
•added 2025/05/08 1:17 p.m.•4 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2024-6119: Fixed denial of service in X.509 name checks bsc1229465 Other fixes: FIPS: Deny SHA-1 signature verification in FIPS provider bsc1221365. FIPS: RSA keygen PCT requirements. FIPS: Check that the fips provider is available before...

8.2CVSS7.3AI score0.66594EPSS
Exploits0References34
SUSE Linux
SUSE Linux
•added 2025/05/07 9:42 a.m.•4 views

Security update for opensaml

This update for opensaml fixes the following issues: CVE-2025-31335: Fixed a bug where parameter manipulation allows the forging of signed SAML messages. bsc1239889 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

4CVSS4.6AI score0.00228EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/06 11:49 a.m.•4 views

Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Update to upstream tag jdk-17.0.15+6 April 2025 CPU CVEs: CVE-2025-21587: Fixed JSSE unauthorized access, deletion or modification of critical data bsc1241274 CVE-2025-30691: Fixed Oracle Java SE Compiler Unauthorized Data Access...

9.1CVSS7.2AI score0.00688EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/05/06 10:27 a.m.•4 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: Update to version 2.42.12: Fix a build failure, Fix occasional build failures, ani: Reject files with multiple INA or IART chunks, ani: Reject files with multiple anih chunks CVE-2022-48622 bsc1219276, ani: validate chunk size, Updated...

7.3CVSS7.3AI score0.00415EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2025/05/06 9:44 a.m.•4 views

Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005583 fixes several issues. The following security issues were fixed: CVE-2024-8805: Bluetooth: hcievent: Align BR/EDR JUSTWORKS paring with LE bsc1240840. CVE-2024-50205: ALSA: firewire-lib: Avoid division by zero in applyconstrainttosize bsc1233294...

8.8CVSS8AI score0.02033EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/05/05 7:44 a.m.•4 views

Security update for libva

This update for libva fixes the following issues: Update to libva version 2.20.0, which includes security fix for: CVE-2023-39929: Uncontrolled search path may allow an authenticated user to escalate privilege via local access bsc1224413, jscPED-11066 This includes latest version of one of the...

6.7CVSS7AI score0.00243EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/05/02 8:11 a.m.•4 views

Security update for python-h11

This update for python-h11 fixes the following issues: CVE-2025-43859: leniency when parsing of line terminators in chunked-coding message bodies can lead to request smuggling. bsc1241872 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

9.3CVSS7.8AI score0.00522EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/04/30 6:59 a.m.•4 views

Security update for augeas

This update for augeas fixes the following issues: CVE-2025-2588: Check for NULL pointers when calling recaseexpand in function faexpandnocase. bsc1239909 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

4.8CVSS4.3AI score0.00241EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/04/29 11:24 a.m.•4 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_2

This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: CVE-2024-53237: Fixed bluetooth: fix use-after-free in deviceforeachchild bsc1235008 CVE-2024-53082: Fixed virtionet: Add hashkeylength check bsc1233677 CVE-2024-8805: Fixed BlueZ HID over GATT Profile Improper Acces...

8.8CVSS8.1AI score0.02033EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/04/29 11:10 a.m.•4 views

Security update for gpg2

This update for gpg2 fixes the following issues: CVE-2025-30258: Fixed DoS due to a malicious subkey in the keyring bsc1239119 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

2.7CVSS7.2AI score0.00179EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/04/22 2:8 p.m.•4 views

Security update for iperf

This update for iperf fixes the following issues: Update to 3.18 bsc1234705, CVE-2024-53580: SECURITY NOTE: Thanks to Leonid Krolle Bi.Zone for discovering a JSON type security vulnerability that caused a segmentation fault in the server. CVE-2024-53580 This has now been fixed. PR1810 UDP packets...

6.8CVSS7.3AI score0.00908EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/04/22 2:6 p.m.•4 views

Security update for helm

This update for helm fixes the following issues: Update to version 3.17.2 bsc1238688, CVE-2025-22870: Updating to 0.37.0 for x/net builddeps: bump the k8s-io group with 7 updates Update to version 3.17.1: merge null child chart objects builddeps: bump the k8s-io group with 7 updates fix: check...

8.2CVSS7.4AI score0.03092EPSS
Exploits4References20
SUSE Linux
SUSE Linux
•added 2025/04/22 1:50 p.m.•4 views

Security update for podman

This update for podman fixes the following issues: CVE-2023-45288: Fixed closing connection when receiving too many headers bsc1236507. CVE-2024-11218: Fixed container breakout by using --jobs=2 and a race condition when building a malicious Containerfile bsc1236270. CVE-2025-22869: Fixed Denial ...

8.7CVSS7.1AI score0.91969EPSS
Exploits1References28
SUSE Linux
SUSE Linux
•added 2025/04/22 1:27 p.m.•4 views

Security update for libtasn1

This update for libtasn1 fixes the following issues: CVE-2024-12133: Fixed potential DoS in handling of numerous SEQUENCE OF or SET OF elements bsc1236878 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.2CVSS7.3AI score0.01025EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/04/17 1:38 a.m.•4 views

Security update for cosign

This update for cosign fixes the following issues: CVE-2024-6104: cosign: hashicorp/go-retryablehttp: Fixed sensitive information disclosure to log file bsc1227031 CVE-2024-51744: cosign: github.com/golang-jwt/jwt/v4: Fixed bad documentation of error handling in ParseWithClaims leading to...

8.7CVSS7.3AI score0.00868EPSS
Exploits2References26
SUSE Linux
SUSE Linux
•added 2025/04/14 4:33 p.m.•4 views

Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024116 fixes several issues. The following security issues were fixed: CVE-2024-41090: tap: add missing verification for short frame bsc1228714. CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6create bsc1235218. Patch...

8.5CVSS8.1AI score0.00256EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/04/14 11:3 a.m.•4 views

Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-15060021 fixes several issues. The following security issues were fixed: CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6create bsc1235218. CVE-2024-41090: tap: add missing verification for short frame bsc1228714. Patch Instructions: T...

8.5CVSS8.1AI score0.00256EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/04/11 8:41 a.m.•4 views

Security update for fontforge

This update for fontforge fixes the following issues: CVE-2017-17521: Fixed command injection in help function uiutil.c bsc1073014 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

5.9CVSS7.8AI score0.01834EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/04/10 1:46 p.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47248: udp: fix race between close and udpabort bsc1224867. CVE-2022-49051: net: usb: aqc111: Fix out-of-bounds accesses in RX fixup bsc1237903...

8.5CVSS8AI score0.93838EPSS
Exploits12References1048
SUSE Linux
SUSE Linux
•added 2025/04/04 1:31 p.m.•4 views

Security update for google-guest-agent

This update for google-guest-agent fixes the following issues: CVE-2024-45337: golang.org/x/crypto/ssh: Fixed misuse of ServerConfig.PublicKeyCallback leading to authorization bypass bsc1234563. Other fixes: - Updated to version 20250327.01 bsc1239763, bsc1239866 Remove error messages from...

8.1CVSS6.8AI score0.03092EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/04/04 1:30 p.m.•4 views

Security update for google-guest-agent

This update for google-guest-agent fixes the following issues: CVE-2024-45337: golang.org/x/crypto/ssh: Fixed misuse of ServerConfig.PublicKeyCallback leading to authorization bypass bsc1234563. Other fixes: - Updated to version 20250327.01 bsc1239763, bsc1239866 Remove error messages from...

8.1CVSS7.3AI score0.03092EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/04/03 3:11 p.m.•4 views

Security update for xz

This update for xz fixes the following issues: CVE-2025-31115: Fixed heap use after free and writing to an address based on the null pointer plus an offset bsc1240414 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.8CVSS8AI score0.00618EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/31 4:54 p.m.•4 views

Security update for docker

This update for docker fixes the following issues: This update includes fixes for: CVE-2024-41110: Fixed Authz zero length regression bsc1228324 CVE-2023-47108: Fixed otelgrpc: DoS vulnerability in otelgrpc uncontrolled resource consumption due to unbound cardinality bsc1217070 bsc1229806...

9.9CVSS7.1AI score0.16496EPSS
Exploits0References34
SUSE Linux
SUSE Linux
•added 2025/03/28 3:49 p.m.•4 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250326T201520 2025-03-26T20:15:20Z jscPED-11136: GO-2025-3520 GO-2025-3521 GO-2025-3522 GO-2025-3533 GO-2025-3534 GO-2025-3536 GO-2025-3537 GO-2025-3538 GO-2025-3539 GO-2025-3540 GO-2025-3542 GO-2025-3543...

7.4AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/03/28 1:56 p.m.•4 views

Security update for python-requests

This update for python-requests fixes the following issues: Add patch to inject the default CA bundles if they are not specified. bsc1226321, bsc1231500 Remove Requires on python-py. update to 2.32.3: Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. Fixe...

7.4AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/28 1:55 p.m.•4 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2025-27516: Fixed Jinja sandbox breakout through attr filter selecting format method bsc1238879 CVE-2024-56201: Fixed sandbox breakout through malicious content and filename of a template bsc1234808 CVE-2024-56326: Fixed sandbox breako...

8.1CVSS7.3AI score0.005EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/03/26 12:12 p.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-2201: Fixed information leak in x86/BHI bsc1217339. CVE-2024-41092: drm/i915/gt: Fix potential UAF by revoke of fence registers bsc1228483. CVE-2024-42098:...

8.5CVSS8AI score0.08555EPSS
Exploits11References1974
SUSE Linux
SUSE Linux
•added 2025/03/25 2:8 a.m.•4 views

Security update for freetype2

This update for freetype2 fixes the following issues: CVE-2025-27363: Fixed out-of-bounds write when attempting to parse font subglyph structures related to TrueType GX and variable font files bsc1239465. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

9.2CVSS7.2AI score0.26049EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/03/24 12:15 p.m.•4 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 Security updates for INTEL-SA-01166 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html CVE-2024-31068: Improper Finite State Machines FSMs i...

6.8CVSS7.3AI score0.00233EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/03/24 9:51 a.m.•4 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2025-27516: Fixed sandbox breakout through attr filter selecting format method bsc1238879. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.5CVSS7.4AI score0.00465EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/19 6:34 p.m.•4 views

Security update for freetype2

This update for freetype2 fixes the following issues: CVE-2025-27363: Fixed out-of-bounds write when attempting to parse font subglyph structures related to TrueType GX and variable font files bsc1239465. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

9.2CVSS7.4AI score0.26049EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/03/11 3:28 p.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-36898: gpiolib: cdev: fix uninitialised kfifo bsc1225736. CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088. CVE-2024-50142: xfrm: validate new...

8.8CVSS7.6AI score0.03301EPSS
Exploits2References396
SUSE Linux
SUSE Linux
•added 2025/03/06 2:5 p.m.•4 views

Security update for go1.24

This update for go1.24 fixes the following issues: CVE-2025-22870: golang.org/x/net/proxy, golang.org/x/net/http/httpproxy: Fixed proxy bypass using IPv6 zone IDs bsc1238572 Other fixes: Updated go version to go1.24.1 bsc1236217: go71986 go71984 bsc1238572 security: fix CVE-2025-22870 net/http,...

4.8CVSS6.8AI score0.00384EPSS
Exploits2References6
SUSE Linux
SUSE Linux
•added 2025/03/05 3:58 p.m.•4 views

Security update for pcp

This update for pcp fixes the following issues: CVE-2024-45770: Fixed pmpost symlink attack allowing escalating pcp to root user bsc1230552. CVE-2024-45769: Fixed pmcd heap corruption through metric pmstore operations bsc1230551. CVE-2024-3019: Fixed exposure of the redis backend server allowing...

8.8CVSS8.1AI score0.01002EPSS
Exploits0References22
SUSE Linux
SUSE Linux
•added 2025/03/04 8:28 a.m.•4 views

Security update for pam_u2f

This update for pamu2f fixes the following issues: update to 1.3.2: Relax authfile permission check to a warning instead of an error to prevent a breaking change locking existing users out of their systems. update to 1.3.1: CVE-2025-23013: Fixed problematic PAMIGNORE return values in...

7.8CVSS7.2AI score0.00397EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/03 1:41 p.m.•4 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250226T025151 2025-02-26T02:51:51Z. jscPED-11136 GO-2025-3487 CVE-2025-22869 GO-2025-3488 CVE-2025-22868 Update to version 0.0.20250218T203201 2025-02-18T20:32:01Z. jscPED-11136 GO-2024-3321 CVE-2024-45337...

9.1CVSS6.7AI score0.03092EPSS
Exploits2References2
SUSE Linux
SUSE Linux
•added 2025/02/28 4:30 p.m.•4 views

Security update for tiff

This update for tiff fixes the following issues: CVE-2023-25435: Heap-buffer-overflow in extractContigSamplesShifted8bits in tiffcrop.c bsc1212607. CVE-2023-52356: Segment fault in libtiff in TIFFReadRGBATileExt leading to denial of service bsc1219213. Other bugfixes: Fixed tiff build issue on...

6.1CVSS7.5AI score0.02187EPSS
Exploits1References10
SUSE Linux
SUSE Linux
•added 2025/02/28 10:9 a.m.•4 views

Security update for libX11

This update for libX11 fixes the following issues: CVE-2025-26597: improper resizing of key actions when nGroups is 0 can lead to buffer overflows in XkbChangeTypesOfKey bsc1237431. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdat...

6.8CVSS8.1AI score0.00485EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/26 1:46 p.m.•4 views

Security update for openssh

This update for openssh fixes the following issues: Security issues fixed: CVE-2025-26465: Fixed a MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040 CVE-2025-26466: Fixed a DoS attack against OpenSSH's client and server bsc1237041 Other issues fixed: Fix ssh client segfault...

8.2CVSS7.5AI score0.38474EPSS
Exploits5References18
SUSE Linux
SUSE Linux
•added 2025/02/26 1:30 p.m.•4 views

Security update for vim

This update for vim fixes the following issues: Update to version 9.1.1101: CVE-2024-43790: possible out-of-bounds read when performing a search command bsc1229685. CVE-2024-43802: heap buffer overflow due to incorrect flushing of the typeahead buffer bsc1229822. CVE-2024-45306: heap buffer...

4.6CVSS8AI score0.00492EPSS
Exploits1References24
SUSE Linux
SUSE Linux
•added 2025/02/24 10:46 a.m.•4 views

Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 40 bsc1236470: CVE-2025-21502: unauthenticated attacker can obtain unauthorized read and write access to data through the Hotspot component API bsc1236278. Patch Instructions: To install this SU...

6.3CVSS7.4AI score0.00971EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/02/21 2:11 p.m.•4 views

Security update for postgresql14

This update for postgresql14 fixes the following issues: Upgrade to 14.17: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS7.2AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
•added 2025/02/21 11:0 a.m.•4 views

Security update for grafana

This update for grafana fixes the following issues: grafana was updated from version 10.4.13 to 10.4.15: Security issues fixed: CVE-2024-45339: Fixed vulnerability when creating log files bsc1236559 CVE-2024-11741: Fixed the Grafana Alerting VictorOps integration bsc1236734 CVE-2025-21613: Remove...

8.1CVSS7.3AI score0.01956EPSS
Exploits0References16
Total number of security vulnerabilities5000