Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
•added 2025/06/10 11:32 a.m.•4 views

Security update for docker-compose

This update for docker-compose fixes the following issues: Update to version 2.33.1: Improvements Add support for gwpriority, enableipv4 requires docker v28.0 by @thaJeztah in 12570 Fixes Run watch standalone if menu fails to start by @ndeloof in 12536 Report error using non-file secret|config wi...

7.5CVSS7.3AI score0.01592EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/10 8:12 a.m.•4 views

Security update for libwebp

This update for libwebp fixes the following issues: CVE-2016-9969: freeing of uninitialized memory pointer in SetFrame of AnimEncoder can lead to double free bsc1136199. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.5CVSS7.3AI score0.01177EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/06/09 6:34 p.m.•4 views

Security update for go1.24

This update for go1.24 fixes the following issues: go1.24.4 released 2025-06-05 includes security fixes to the crypto/x509, net/http, and os packages, as well as bug fixes to the linker, the go command, and the hash/maphash and os packages. bsc1236217 go1.24 release tracking CVE-2025-22874...

8.9CVSS7.3AI score0.0056EPSS
Exploits0References18
SUSE Linux
SUSE Linux
•added 2025/06/02 9:4 a.m.•4 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-4948: Fixed integer underflow in soupmultipartnewfrommessage leading to denial of service bsc1243332 CVE-2025-4969: Fixed off-by-one out-of-bounds read may lead to infoleak bsc1243423 CVE-2025-32906: Fixed out of bounds reads in...

8.8CVSS7.5AI score0.00832EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2025/05/30 8:49 p.m.•4 views

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.27+6 April 2025 CPU CVEs: CVE-2025-21587: Fixed JSSE unauthorized access, deletion or modification of critical data bsc1241274 CVE-2025-30691: Fixed Oracle Java SE Compiler Unauthorized Data Access...

9.1CVSS7.1AI score0.00688EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/05/30 10:9 a.m.•4 views

Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 45. Security issues fixed: Oracle April 15 2025 CPU bsc1242208 CVE-2025-21587: unauthorized access, deletion and modification of critical data via the JSSE component bsc1241274. CVE-2025-30691:...

9.1CVSS7AI score0.00688EPSS
Exploits0References18
SUSE Linux
SUSE Linux
•added 2025/05/30 7:45 a.m.•4 views

Security update for postgresql16

This update for postgresql16 fixes the following issues: Upgrade to 16.9: CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation bsc1242931 Changelog: https://www.postgresql.org/docs/release/16.9/ Patch Instructions: To...

5.9CVSS6AI score0.00612EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/29 2:54 p.m.•4 views

Security update for slurm

This update for slurm fixes the following issues: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Patch Instructions: To install this SUSE update use the SUSE recommended installati...

8.5CVSS6.5AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/29 2:49 p.m.•4 views

Security update for slurm_23_02

This update for slurm2302 fixes the following issues: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.5CVSS6.6AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/29 2:39 p.m.•4 views

Security update for slurm_22_05

This update for slurm2205 fixes the following issues: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.5CVSS6.5AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/29 2:37 p.m.•4 views

Security update for slurm_22_05

This update for slurm2205 fixes the following issues: CVE-2025-43904: an issue with permission handling for Coordinators within the accounting system allowed Coordinators to promote a user to Administrator bsc1243666. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.5CVSS7.2AI score0.00218EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/26 11:3 a.m.•4 views

Security update for python-setuptools

This update for python-setuptools fixes the following issues: CVE-2025-47273: path traversal in PackageIndex.download may lead to an arbitrary file write bsc1243313. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.7CVSS7.6AI score0.01479EPSS
Exploits4References4
SUSE Linux
SUSE Linux
•added 2025/05/23 11:58 a.m.•4 views

Security update for python-tornado6

This update for python-tornado6 fixes the following issues: CVE-2025-47287: excessive logging when parsing malformed multipart/form-data can lead to a denial-of-service bsc1243268. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...

8.7CVSS7.3AI score0.00667EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/22 4:1 p.m.•4 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.10.1. Security fixes: MFSA 2025-34 bsc1243216 CVE-2025-3875: Sender Spoofing via Malformed From Header in Thunderbird. CVE-2025-3877: Unsolicited File Download, Disk Space Exhaustion, and Credential...

7.5CVSS6.9AI score0.00363EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/05/19 5:23 p.m.•4 views

Security update for rubygem-rack

This update for rubygem-rack fixes the following issues: CVE-2025-46727: possible memory exhaustion due to unbounded parameter parsing in Rack::QueryParser bsc1242894. CVE-2025-32441: deleted sessions can be restored and occupied by unauthenticated users when the Rack::Session::Pool middleware is...

8.7CVSS6.6AI score0.00911EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/05/16 2:7 p.m.•4 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2025-43961: Fixed out-of-bounds read in the Fujifilm 0xf00c tag parser in metadata/tiff.cpp bsc1241643 CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phaseonecorrect function bsc1241585 CVE-2025-43963: Fixed out-of-buff...

5.1CVSS4.2AI score0.00367EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/05/15 3:54 p.m.•4 views

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Update CUDA variant to 570.133.20 Update non-CUDA variant to 570.144 bsc1241231 Update non-CUDA variant to 570.133.07 bsc1239653 removed obsolete kernel-firmware-nvidia-gspx-G06-cuda; firmware has moved to nvidia-common-G06...

7.1CVSS7.2AI score0.00201EPSS
Exploits0References34
SUSE Linux
SUSE Linux
•added 2025/05/08 1:17 p.m.•4 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2024-6119: Fixed denial of service in X.509 name checks bsc1229465 Other fixes: FIPS: Deny SHA-1 signature verification in FIPS provider bsc1221365. FIPS: RSA keygen PCT requirements. FIPS: Check that the fips provider is available before...

8.2CVSS7.3AI score0.66594EPSS
Exploits0References34
SUSE Linux
SUSE Linux
•added 2025/05/07 9:42 a.m.•4 views

Security update for opensaml

This update for opensaml fixes the following issues: CVE-2025-31335: Fixed a bug where parameter manipulation allows the forging of signed SAML messages. bsc1239889 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

4CVSS4.6AI score0.00228EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/05/06 11:49 a.m.•4 views

Security update for java-17-openjdk

This update for java-17-openjdk fixes the following issues: Update to upstream tag jdk-17.0.15+6 April 2025 CPU CVEs: CVE-2025-21587: Fixed JSSE unauthorized access, deletion or modification of critical data bsc1241274 CVE-2025-30691: Fixed Oracle Java SE Compiler Unauthorized Data Access...

9.1CVSS7.2AI score0.00688EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/05/06 10:27 a.m.•4 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: Update to version 2.42.12: Fix a build failure, Fix occasional build failures, ani: Reject files with multiple INA or IART chunks, ani: Reject files with multiple anih chunks CVE-2022-48622 bsc1219276, ani: validate chunk size, Updated...

7.3CVSS7.3AI score0.00415EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2025/05/05 7:44 a.m.•4 views

Security update for libva

This update for libva fixes the following issues: Update to libva version 2.20.0, which includes security fix for: CVE-2023-39929: Uncontrolled search path may allow an authenticated user to escalate privilege via local access bsc1224413, jscPED-11066 This includes latest version of one of the...

6.7CVSS7AI score0.00243EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/05/02 8:11 a.m.•4 views

Security update for python-h11

This update for python-h11 fixes the following issues: CVE-2025-43859: leniency when parsing of line terminators in chunked-coding message bodies can lead to request smuggling. bsc1241872 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

9.3CVSS7.8AI score0.00522EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/04/30 6:59 a.m.•4 views

Security update for augeas

This update for augeas fixes the following issues: CVE-2025-2588: Check for NULL pointers when calling recaseexpand in function faexpandnocase. bsc1239909 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

4.8CVSS4.3AI score0.00241EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/04/29 11:24 a.m.•4 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_2

This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: CVE-2024-53237: Fixed bluetooth: fix use-after-free in deviceforeachchild bsc1235008 CVE-2024-53082: Fixed virtionet: Add hashkeylength check bsc1233677 CVE-2024-8805: Fixed BlueZ HID over GATT Profile Improper Acces...

8.8CVSS8.1AI score0.02033EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/04/29 11:10 a.m.•4 views

Security update for gpg2

This update for gpg2 fixes the following issues: CVE-2025-30258: Fixed DoS due to a malicious subkey in the keyring bsc1239119 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

2.7CVSS7.2AI score0.00179EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/04/22 2:8 p.m.•4 views

Security update for iperf

This update for iperf fixes the following issues: Update to 3.18 bsc1234705, CVE-2024-53580: SECURITY NOTE: Thanks to Leonid Krolle Bi.Zone for discovering a JSON type security vulnerability that caused a segmentation fault in the server. CVE-2024-53580 This has now been fixed. PR1810 UDP packets...

6.8CVSS7.3AI score0.00908EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/04/22 2:6 p.m.•4 views

Security update for helm

This update for helm fixes the following issues: Update to version 3.17.2 bsc1238688, CVE-2025-22870: Updating to 0.37.0 for x/net builddeps: bump the k8s-io group with 7 updates Update to version 3.17.1: merge null child chart objects builddeps: bump the k8s-io group with 7 updates fix: check...

8.2CVSS7.4AI score0.03092EPSS
Exploits4References20
SUSE Linux
SUSE Linux
•added 2025/04/22 1:50 p.m.•4 views

Security update for podman

This update for podman fixes the following issues: CVE-2023-45288: Fixed closing connection when receiving too many headers bsc1236507. CVE-2024-11218: Fixed container breakout by using --jobs=2 and a race condition when building a malicious Containerfile bsc1236270. CVE-2025-22869: Fixed Denial ...

8.7CVSS7.1AI score0.91969EPSS
Exploits1References28
SUSE Linux
SUSE Linux
•added 2025/04/22 1:27 p.m.•4 views

Security update for libtasn1

This update for libtasn1 fixes the following issues: CVE-2024-12133: Fixed potential DoS in handling of numerous SEQUENCE OF or SET OF elements bsc1236878 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.2CVSS7.3AI score0.01025EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/04/17 1:38 a.m.•4 views

Security update for cosign

This update for cosign fixes the following issues: CVE-2024-6104: cosign: hashicorp/go-retryablehttp: Fixed sensitive information disclosure to log file bsc1227031 CVE-2024-51744: cosign: github.com/golang-jwt/jwt/v4: Fixed bad documentation of error handling in ParseWithClaims leading to...

8.7CVSS7.3AI score0.00868EPSS
Exploits2References26
SUSE Linux
SUSE Linux
•added 2025/04/14 4:33 p.m.•4 views

Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024116 fixes several issues. The following security issues were fixed: CVE-2024-41090: tap: add missing verification for short frame bsc1228714. CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6create bsc1235218. Patch...

8.5CVSS8.1AI score0.00254EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/04/11 8:41 a.m.•4 views

Security update for fontforge

This update for fontforge fixes the following issues: CVE-2017-17521: Fixed command injection in help function uiutil.c bsc1073014 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

5.9CVSS7.8AI score0.01834EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/04/10 1:46 p.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47248: udp: fix race between close and udpabort bsc1224867. CVE-2022-49051: net: usb: aqc111: Fix out-of-bounds accesses in RX fixup bsc1237903...

8.5CVSS8AI score0.93838EPSS
Exploits21References1048
SUSE Linux
SUSE Linux
•added 2025/04/04 1:31 p.m.•4 views

Security update for google-guest-agent

This update for google-guest-agent fixes the following issues: CVE-2024-45337: golang.org/x/crypto/ssh: Fixed misuse of ServerConfig.PublicKeyCallback leading to authorization bypass bsc1234563. Other fixes: - Updated to version 20250327.01 bsc1239763, bsc1239866 Remove error messages from...

8.1CVSS6.8AI score0.03092EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/04/04 1:30 p.m.•4 views

Security update for google-guest-agent

This update for google-guest-agent fixes the following issues: CVE-2024-45337: golang.org/x/crypto/ssh: Fixed misuse of ServerConfig.PublicKeyCallback leading to authorization bypass bsc1234563. Other fixes: - Updated to version 20250327.01 bsc1239763, bsc1239866 Remove error messages from...

8.1CVSS7.3AI score0.03092EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/04/03 3:11 p.m.•4 views

Security update for xz

This update for xz fixes the following issues: CVE-2025-31115: Fixed heap use after free and writing to an address based on the null pointer plus an offset bsc1240414 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.8CVSS8AI score0.00642EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/31 4:54 p.m.•4 views

Security update for docker

This update for docker fixes the following issues: This update includes fixes for: CVE-2024-41110: Fixed Authz zero length regression bsc1228324 CVE-2023-47108: Fixed otelgrpc: DoS vulnerability in otelgrpc uncontrolled resource consumption due to unbound cardinality bsc1217070 bsc1229806...

9.9CVSS7.1AI score0.16496EPSS
Exploits0References34
SUSE Linux
SUSE Linux
•added 2025/03/28 3:49 p.m.•4 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250326T201520 2025-03-26T20:15:20Z jscPED-11136: GO-2025-3520 GO-2025-3521 GO-2025-3522 GO-2025-3533 GO-2025-3534 GO-2025-3536 GO-2025-3537 GO-2025-3538 GO-2025-3539 GO-2025-3540 GO-2025-3542 GO-2025-3543...

7.4AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/03/28 1:56 p.m.•4 views

Security update for python-requests

This update for python-requests fixes the following issues: Add patch to inject the default CA bundles if they are not specified. bsc1226321, bsc1231500 Remove Requires on python-py. update to 2.32.3: Fixed bug breaking the ability to specify custom SSLContexts in sub-classes of HTTPAdapter. Fixe...

7.4AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/28 1:55 p.m.•4 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2025-27516: Fixed Jinja sandbox breakout through attr filter selecting format method bsc1238879 CVE-2024-56201: Fixed sandbox breakout through malicious content and filename of a template bsc1234808 CVE-2024-56326: Fixed sandbox breako...

8.1CVSS7.3AI score0.005EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/03/26 12:12 p.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-2201: Fixed information leak in x86/BHI bsc1217339. CVE-2024-41092: drm/i915/gt: Fix potential UAF by revoke of fence registers bsc1228483. CVE-2024-42098:...

8.5CVSS8AI score0.08555EPSS
Exploits11References1974
SUSE Linux
SUSE Linux
•added 2025/03/26 11:28 a.m.•4 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: CVE-2025-24201: Fixed out-of-bounds write vulnerability due to that WebGL context primitive restart can be toggled from WebContent process bsc1239547. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

7.1CVSS7.4AI score0.0424EPSS
Exploits4References4
SUSE Linux
SUSE Linux
•added 2025/03/24 2:33 p.m.•4 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: CVE-2025-24201: Fixed out-of-bounds write vulnerability bsc1239547. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...

7.1CVSS7.4AI score0.0424EPSS
Exploits4References4
SUSE Linux
SUSE Linux
•added 2025/03/24 12:15 p.m.•4 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 Security updates for INTEL-SA-01166 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html CVE-2024-31068: Improper Finite State Machines FSMs i...

6.8CVSS7.3AI score0.00233EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/03/24 9:51 a.m.•4 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2025-27516: Fixed sandbox breakout through attr filter selecting format method bsc1238879. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.5CVSS7.4AI score0.00465EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/11 3:28 p.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-36898: gpiolib: cdev: fix uninitialised kfifo bsc1225736. CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088. CVE-2024-50142: xfrm: validate new...

8.8CVSS7.6AI score0.03301EPSS
Exploits2References396
SUSE Linux
SUSE Linux
•added 2025/03/06 2:5 p.m.•4 views

Security update for go1.24

This update for go1.24 fixes the following issues: CVE-2025-22870: golang.org/x/net/proxy, golang.org/x/net/http/httpproxy: Fixed proxy bypass using IPv6 zone IDs bsc1238572 Other fixes: Updated go version to go1.24.1 bsc1236217: go71986 go71984 bsc1238572 security: fix CVE-2025-22870 net/http,...

4.8CVSS6.8AI score0.00384EPSS
Exploits2References6
SUSE Linux
SUSE Linux
•added 2025/03/04 8:28 a.m.•4 views

Security update for pam_u2f

This update for pamu2f fixes the following issues: update to 1.3.2: Relax authfile permission check to a warning instead of an error to prevent a breaking change locking existing users out of their systems. update to 1.3.1: CVE-2025-23013: Fixed problematic PAMIGNORE return values in...

7.8CVSS7.2AI score0.00397EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/03/03 1:41 p.m.•4 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250226T025151 2025-02-26T02:51:51Z. jscPED-11136 GO-2025-3487 CVE-2025-22869 GO-2025-3488 CVE-2025-22868 Update to version 0.0.20250218T203201 2025-02-18T20:32:01Z. jscPED-11136 GO-2024-3321 CVE-2024-45337...

9.1CVSS6.7AI score0.03092EPSS
Exploits2References2
Total number of security vulnerabilities5000