Lucene search
K
SuseMost viewed

5415 matches found

SUSE Linux
SUSE Linux
•added 2026/04/23 3:53 p.m.•3 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

8.2CVSS6.1AI score0.00885EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/23 3:53 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2025-38234: sched/rt: Fix race in pushrttask bsc1246057. CVE-2026-23103: ipvlan: Make the addrslock be per port bsc1257773. CVE-2026-23243: RDMA/umad: Reject...

7.8CVSS5.8AI score0.0013EPSS
Exploits2References28
SUSE Linux
SUSE Linux
•added 2026/04/23 3:52 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2025-39998: scsi: target: targetcoreconfigfs: Add length check to avoid buffer overflow bsc1252073. CVE-2025-68794: iomap: adjust read range correctly for...

8.7CVSS6.1AI score0.0028EPSS
Exploits0References196
SUSE Linux
SUSE Linux
•added 2026/04/17 2:19 p.m.•3 views

Security update for avahi

This update for avahi fixes the following issue: CVE-2026-24401: avahi-daemon can be crashed via a segmentation fault by sending an unsolicited mDNS response containing a recursive CNAME record bsc1257235. Patch Instructions: To install this SUSE update use the SUSE recommended installation metho...

6.5CVSS5.7AI score0.00252EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/17 1:39 p.m.•3 views

Security update for libraw

This update for libraw fixes the following issues: CVE-2026-20911: heap-based buffer overflow in HuffTable::initvalbsc1261673. CVE-2026-21413: heap-based buffer overflow in losslessjpegloadraw bsc1261674. CVE-2026-24660: heap-based buffer overflow in x3floadhuffman bsc1261676. Patch Instructions:...

7.7CVSS6.3AI score0.00746EPSS
Exploits3References12
SUSE Linux
SUSE Linux
•added 2026/04/17 10:7 a.m.•3 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issue: CVE-2026-5201: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image bsc1261210. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.2CVSS7.5AI score0.01069EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/17 10:0 a.m.•3 views

Security update for bind

This update for bind fixes the following issues: CVE-2026-1519: high CPU load during insecure delegation validation due to excessive NSEC3 iterations bsc1260805. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS7.4AI score0.01545EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/16 10:45 a.m.•3 views

Security update for cups

This update for cups fixes the following issue: CVE-2026-34990: Local print admin token disclosure using temporary printers bsc1261568. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

7.8CVSS5.8AI score0.00289EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/16 10:27 a.m.•3 views

Security update for azure-storage-azcopy

This update for azure-storage-azcopy fixes the following issues: CVE-2026-33186: Authorization bypass in grpc-go due to improper validation of the HTTP/2 :path pseudo-header bsc1260307. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.8AI score0.01557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/15 2:44 p.m.•3 views

Security update for util-linux

This update for util-linux fixes the following issues: CVE-2026-3184: Fix full hostname usage for PAM to ensure correct access control for "login -h" bsc1258859. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS5.9AI score0.00436EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/15 2:43 p.m.•3 views

Security update for glibc

This update for glibc fixes the following issues: CVE-2026-4437: incorrect DNS response parsing via crafted DNS server response bsc1260078. CVE-2026-4438: invalid DNS hostname returned via gethostbyaddr functions bsc1260082. Patch Instructions: To install this SUSE update use the SUSE recommended...

5.7CVSS5.8AI score0.00292EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/04/15 2:7 p.m.•3 views

Security update for sudo

This update for sudo fixes the following issue: CVE-2026-35535: Fixed potential privilege escalation when running the mailer bsc1261420. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...

7.5CVSS5.8AI score0.00173EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/15 7:34 a.m.•3 views

Security update for giflib

This update for giflib fixes the following issue: CVE-2026-23868: double-free result of a shallow copy can lead to memory corruption bsc1259502. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively yo...

5.8CVSS5.8AI score0.00144EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 8:2 p.m.•3 views

Security update for openvswitch

This update for openvswitch fixes the following issues: CVE-2026-34956: invalid memory access via crafted FTP payloads in userspace conntrack flows specifying the FTP alg handler bsc1261273. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS5.8AI score0.00405EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 4:2 p.m.•3 views

Security update for tigervnc

This update for tigervnc fixes the following issues: CVE-2026-34352: Fixed permissions to prevent other users from observing the screen, or modifying what is sent to the client. bsc1260871 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7CVSS5.8AI score0.00247EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 3:58 p.m.•3 views

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issues: CVE-2026-26284: heap overflow in pcd decoder leads to out of bounds read bsc1258765. CVE-2026-28690: missing bounds check in the MNG encoder can lead to a stack buffer overflow bsc1259456. Patch Instructions: To install this SUSE update u...

8.8CVSS6AI score0.00404EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/13 9:4 a.m.•3 views

Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.293 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2026-23074: net/sched: Enforce that teql can only be us...

8.5CVSS5.8AI score0.00166EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/04/13 6:34 a.m.•3 views

Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.280 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2025-71120: SUNRPC: svcauthgss: avoid NULL deref on zer...

8.7CVSS6AI score0.00204EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/12 10:34 a.m.•3 views

Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.60 fixes various security issues The following security issues were fixed: CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689...

8.7CVSS5.8AI score0.00344EPSS
Exploits7References32
SUSE Linux
SUSE Linux
•added 2026/04/10 2:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 32 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.127 fixes various security issues The following security issues were fixed: CVE-2025-71120: SUNRPC: svcauthgss: avoid NULL deref on zero length gsstoken in gssreadproxyverf bsc1256780. CVE-2026-22999: net/sched: schqfq: do not fre...

8.7CVSS6AI score0.00204EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/04/10 11:37 a.m.•3 views

Security update for tigervnc

This update for tigervnc fixes the following issues: CVE-2026-34352: Fixed permissions to prevent other users from observing the screen, or modifying what is sent to the client. bsc1260871 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7CVSS5.8AI score0.00247EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/10 11:36 a.m.•3 views

Security update for cockpit-tukit

This update for cockpit-tukit fixes the following issues: CVE-2026-25547: brace-expansion: unbounded brace range expansion can lead to excessive CPU and memory consumption and may crash a Node.js process bsc1257836. CVE-2026-26996: minimatch: ReDoS when glob pattern contains many consecutive...

8.7CVSS6.7AI score0.00519EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/10 8:4 a.m.•3 views

Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.16 fixes various security issues The following security issues were fixed: CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689...

8.7CVSS5.8AI score0.00344EPSS
Exploits7References32
SUSE Linux
SUSE Linux
•added 2026/04/07 2:19 p.m.•3 views

Security update for python

This update for python fixes the following issues: CVE-2025-13462: incorrect parsing of TarInfo when GNU long name and type AREGTYPE are combined can lead to misinterpretation of tar archives bsc1259611. CVE-2026-3644: incomplete control character validation in http.cookies can lead to input...

8.2CVSS6.1AI score0.00621EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/04/07 12:25 p.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-28493: integer overflow in the SIXEL decoder leads to out-of-bounds write bsc1259446. CVE-2026-28494: missing bounds checks in the morphology kernel parsing functions can lead to a stack buffer overflow bsc1259447. CVE-2026-28686:...

8.8CVSS6.1AI score0.00475EPSS
Exploits0References80
SUSE Linux
SUSE Linux
•added 2026/04/07 12:24 p.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-28493: integer overflow in the SIXEL decoder leads to out-of-bounds write bsc1259446. CVE-2026-28494: missing bounds checks in...

8.8CVSS6.1AI score0.00475EPSS
Exploits0References90
SUSE Linux
SUSE Linux
•added 2026/04/07 11:50 a.m.•3 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260251 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.9AI score0.01557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/07 10:25 a.m.•3 views

Security update for python-PyJWT

This update for python-PyJWT fixes the following issues: CVE-2026-32597: Fixed unknown crit header extensions accepts bsc1259616. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.7CVSS5.8AI score0.00269EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/07 10:25 a.m.•3 views

Security update for ignition

This update for ignition fixes the following issue: CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header bsc1260251 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.6CVSS5.9AI score0.01557EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/07 8:40 a.m.•3 views

Security update for gimp

This update for gimp fixes the following issues: CVE-2026-4150: PSD File Parsing Integer Overflow Remote Code Execution Vulnerability bsc1259979. CVE-2026-4153: PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1259984. CVE-2026-4154: XPM File Parsing Integer...

8.4CVSS7.1AI score0.00755EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/04/02 3:8 p.m.•3 views

Security update for libsoup

This update for libsoup fixes the following issue: CVE-2026-0716: improper bounds handling may allow out-of-bounds read bsc1256418. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.3CVSS5.8AI score0.00257EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/02 3:1 p.m.•3 views

Security update for tar

This update for tar fixes the following issue: CVE-2025-45582: file overwrite via directory traversal in crafted TAR archives bsc1246399. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

8.5CVSS6.6AI score0.00433EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/04/02 1:8 a.m.•3 views

Security update for expat

This update for expat fixes the following issues: CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259726. CVE-2026-32777: denial of service due to infinite loop in DTD content parsing bsc1259711. CVE-2026-32778: NUL...

8.7CVSS5.9AI score0.00216EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/04/01 8:49 a.m.•3 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 140.9 MFSA 2026-24, bsc1260083: CVE-2026-3889: Spoofing issue in Thunderbird CVE-2026-4371: Out of bounds read in IMAP parsing CVE-2026-4684: Race condition, use-after-free in the Graphics: WebRender...

8.8CVSS6.4AI score0.01279EPSS
Exploits1References82
SUSE Linux
SUSE Linux
•added 2026/03/31 3:3 p.m.•3 views

Security update for expat

This update for expat fixes the following issues: CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259726. CVE-2026-32777: denial of service due to infinite loop in DTD content parsing bsc1259711. CVE-2026-32778: NUL...

8.7CVSS5.9AI score0.00216EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/03/30 5:34 p.m.•3 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: Update to version 2.52.0: CVE-2023-43010: processing maliciously crafted web content may lead to memory corruption bsc1259950. CVE-2025-31223: processing maliciously crafted web content may lead to memory corruption bsc1259949. CVE-2025-3127...

8.8CVSS7.1AI score0.01481EPSS
Exploits2References84
SUSE Linux
SUSE Linux
•added 2026/03/27 2:43 p.m.•3 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox 140.9.0 ESR MFSA 2026-22, bsc1260083: CVE-2026-4684: Race condition, use-after-free in the Graphics: WebRender component CVE-2026-4685: Incorrect boundary conditions in the Graphics: Canvas2D component CVE-2026-4686:...

8.8CVSS6.4AI score0.01279EPSS
Exploits1References78
SUSE Linux
SUSE Linux
•added 2026/03/27 2:22 p.m.•3 views

Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: CVE-2026-32853: crafted FramebufferUpdate message can lead to information disclosure or denial of service bsc1260431. CVE-2026-32854: crafted HTTP requests can cause a denial of service bsc1260429. Patch Instructions: To install this SUSE...

8.2CVSS5.9AI score0.05322EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/03/27 8:5 a.m.•3 views

Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.28 fixes various security issues The following security issues were fixed: CVE-2025-68284: libceph: prevent potential out-of-bounds writes in handleauthsessionkey bsc1255378. CVE-2025-68285: libceph: fix potential use-after-free in...

8.7CVSS6.1AI score0.00173EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/03/27 4:4 a.m.•3 views

Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.16 fixes various security issues The following security issues were fixed: CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. CVE-2025-40258: mptcp: fix race condition in...

8.7CVSS6.4AI score0.00278EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/26 11:8 p.m.•3 views

Security update for the Linux Kernel (Live Patch 18 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.81 fixes various security issues The following security issues were fixed: CVE-2025-40258: mptcp: fix race condition in mptcpschedulework bsc1255053. CVE-2025-40297: net: bridge: fix use-after-free due to MST port state bypass...

8.7CVSS6.4AI score0.00176EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/03/26 9:24 p.m.•3 views

Security update for cosign

This update for cosign rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15....

5.9AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2026/03/26 3:3 p.m.•3 views

Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.60 fixes various security issues The following security issues were fixed: CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. CVE-2025-40258: mptcp: fix race condition in...

8.7CVSS6AI score0.00278EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/26 2:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.42 fixes various security issues The following security issues were fixed: CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds bsc1257629. CVE-2025-38488: smb: client: fix use-after-free in...

8.7CVSS6.2AI score0.00278EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/03/26 1:23 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: CVE-2023-53817: crypto: lib/mpi - avoid null pointer deref in mpicmpui bsc1254992. CVE-2025-37861: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue...

8.5CVSS6.7AI score0.0071EPSS
Exploits7References692
SUSE Linux
SUSE Linux
•added 2026/03/26 12:42 p.m.•3 views

Security update for python-pyasn1

This update for python-pyasn1 fixes the following issues: CVE-2026-30922: Denial of Service via Unbounded Recursion bsc1259803. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.7CVSS5.8AI score0.0058EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/26 12:41 p.m.•3 views

Security update for python-pyasn1

This update for python-pyasn1 fixes the following issues: CVE-2026-30922: Denial of Service via Unbounded Recursion bsc1259803. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.7CVSS5.8AI score0.0058EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/03/26 12:39 p.m.•3 views

Security update for nghttp2

This update for nghttp2 fixes the following issues: CVE-2026-27135: Assertion failure due to missing state validation can lead to DoS bsc1259845. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...

8.2CVSS5.8AI score0.00775EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/26 10:39 a.m.•3 views

Security update for pgvector

This update for pgvector fixes the following issue: Update to pgvector 0.8.2: CVE-2026-3172: Buffer overflow in parallel HNSW index build bsc1258945. Changelog: Fixed Index Searches in EXPLAIN output for Postgres 18 Patch Instructions: To install this SUSE update use the SUSE recommended...

8.1CVSS5.8AI score0.00263EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/26 10:39 a.m.•3 views

Security update for python-urllib3

This update for python-urllib3 fixes the following issue: CVE-2025-66471: excessive resource consumption via decompression of highly compressed data in Streaming API bsc1254867. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

6.3CVSS5.8AI score0.00622EPSS
Exploits0References6
Total number of security vulnerabilities5000