Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
added 2024/12/16 1:16 p.m.4 views

Security update for aws-iam-authenticator

This update for aws-iam-authenticator fixes the following issues: CVE-2022-1996: Fixed CORS bypass bsc1200528. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for...

9.1CVSS10AI score0.02737EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2024/12/11 1:6 p.m.4 views

Security update for socat

This update for socat fixes the following issues: CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

5CVSS7.5AI score0.00794EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/12/11 11:41 a.m.4 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: CVE-2024-44308: Fixed processing maliciously crafted web content that may lead to arbitrary code execution bsc1233631 CVE-2024-44309: Fixed data isolation bypass vulnerability bsc1233632 Patch Instructions: To install this SUSE update use th...

8.8CVSS8.3AI score0.21044EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2024/12/11 11:10 a.m.4 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2024-52530: Fixed HTTP request smuggling via stripping null bytes from the ends of header names bsc1233285 CVE-2024-52531: Fixed buffer overflow via UTF-8 conversion in soupheaderparseparamliststrict bsc1233292 CVE-2024-52532: Fixed infinit...

8.7CVSS7.5AI score0.00933EPSS
Exploits2References12
SUSE Linux
SUSE Linux
added 2024/12/06 10:34 a.m.4 views

Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024108 fixes several issues. The following security issues were fixed: CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. CVE-2021-47598: schcake: do not call...

7.8CVSS8.5AI score0.0094EPSS
Exploits1References126
SUSE Linux
SUSE Linux
added 2024/12/05 2:57 p.m.4 views

Security update for docker-stable

This update for docker-stable fixes the following issues: CVE-2024-41110: Fixed Authz zero length regression bsc1228324. Bug fixes: Allow users to disable SUSE secrets support by setting DOCKERSUSESECRETSENABLE=0 in /etc/sysconfig/docker bsc1231348. Import specfile changes for docker-buildx as we...

9.9CVSS6.4AI score0.16496EPSS
Exploits0References14
SUSE Linux
SUSE Linux
added 2024/12/04 2:52 p.m.4 views

Security update for postgresql13

This update for postgresql13 fixes the following issues: CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol negotiatio...

8.8CVSS6.5AI score0.04422EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added 2024/12/03 9:10 a.m.4 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 128.5 fixed: IMAP could crash when reading cached messages fixed: Enabling "Show Folder Size" on Maildir profile could render Thunderbird unusable fixed: Messages corrupted by folder compaction were only fixed by...

9.8CVSS8.3AI score0.00833EPSS
Exploits0References22
SUSE Linux
SUSE Linux
added 2024/12/02 10:0 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-43854: Initialize integrity buffer to zero before writing it to media bsc1229345 CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core...

9.2CVSS8.2AI score0.03651EPSS
Exploits2References460
SUSE Linux
SUSE Linux
added 2024/12/02 9:15 a.m.4 views

Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001355 fixes several issues. The following security issues were fixed: CVE-2021-47517: Fix panic when interrupt coaleceing is set via ethtool bsc1225429. CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memor...

7.8CVSS8.6AI score0.00757EPSS
Exploits1References80
SUSE Linux
SUSE Linux
added 2024/11/29 8:6 a.m.4 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2024-52304: Fixed request smuggling due to incorrect parsing of chunk extensions bsc1233447 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.3CVSS7.4AI score0.00576EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/11/28 3:13 p.m.4 views

Security update for python-waitress

This update for python-waitress fixes the following issues: CVE-2024-49769: Fixed a denial of service caused by incorrect connection clean up bsc1232554 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS8.4AI score0.01386EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/11/27 7:34 a.m.4 views

Security update for xen

This update for xen fixes the following issues: Security issues fixed: CVE-2024-45818: xen: Deadlock in x86 HVM standard VGA handling bsc1232622 CVE-2024-45819: xen: libxl leaks data to PVH guests via ACPI tables bsc1232624 CVE-2024-45817: xen: x86: Deadlock in vlapicerror bsc1230366 Non-security...

8.2CVSS7.3AI score0.00544EPSS
Exploits0References14
SUSE Linux
SUSE Linux
added 2024/11/26 3:37 a.m.4 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20241112 release bsc1233313 CVE-2024-21853: Faulty finite state machines FSMs in the hardware logic in some 4th and 5th Generation Intel Xeon Processors may allow an authorized user to potentially enabl...

8.8CVSS6.5AI score0.00256EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2024/11/18 1:23 p.m.4 views

Security update for SUSE Manager Client Tools

This update fixes the following issues: golang-github-lusitaniae-apacheexporter: Security issues fixed: CVE-2023-3978: Fixed security bug in x/net dependency bsc1213933 Other changes and issues fixed: Delete unpackaged debug files for RHEL Do not include source files in the package for RHEL 9...

5.4CVSS6.9AI score0.00843EPSS
Exploits0References44
SUSE Linux
SUSE Linux
added 2024/11/18 1:21 p.m.4 views

Maintenance update for SUSE Manager 5.0: Server, Proxy and Retail Branch Server

Description: This update fixes the following issues: proxy-httpd-image: Version 5.0.8 Store Proxy FQDN in rhn.conf for auth token use bsc1230255 proxy-salt-broker-image: Version 5.0.8 Update for next release proxy-squid-image: Version 5.0.8 Update for next release proxy-ssh-image: Version 5.0.8...

9.8CVSS7.4AI score0.03948EPSS
Exploits6References28
SUSE Linux
SUSE Linux
added 2024/11/13 10:12 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48879: efi: fix NULL-deref in init error path bsc1229556. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1231893. CVE-2022-48957:...

9.2CVSS8.4AI score0.03651EPSS
Exploits6References876
SUSE Linux
SUSE Linux
added 2024/11/12 12:19 p.m.4 views

Security update for xen

This update for xen fixes the following issues: CVE-2024-45818: Fixed deadlock in x86 HVM standard VGA handling XSA-463 bsc1232622. CVE-2024-45819: Fixed libxl data leaks to PVH guests via ACPI tables XSA-464 bsc1232624. Bug fixes: Remove usage of net-tools-deprecated from supportconfig plugin...

8.2CVSS6.3AI score0.00294EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2024/11/12 7:12 a.m.4 views

Security update for pcp

This update for pcp fixes the following issues: pcp was updated from version 3.11.9 to version 6.2.0 jscPED-8192, jscPED-8389: Security issues fixed: CVE-2024-45770: Fixed a symlink attack that allows escalating from the pcp to the root user bsc1230552 CVE-2024-45769: Fixed a heap corruption...

8.8CVSS7.8AI score0.01002EPSS
Exploits0References26
SUSE Linux
SUSE Linux
added 2024/11/08 7:57 a.m.4 views

Security update for apache2

This update for apache2 fixes the following issues: CVE-2023-45802: HTTP/2 stream memory not reclaimed right away on RST bsc1216423. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

7.5CVSS7.3AI score0.03024EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2024/11/07 4:24 p.m.4 views

Security update for python39

This update for python39 fixes the following issues: CVE-2024-9287: Fixed quoted path names provided when creating a virtual environment bsc1232241. Bug fixes: Drop .pyc files from docdir for reproducible builds bsc1230906. Patch Instructions: To install this SUSE update use the SUSE recommended...

6.5CVSS7.5AI score0.00647EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2024/11/07 10:8 a.m.4 views

Security update for go1.22-openssl

This update for go1.22-openssl fixes the following issues: This update ships go1.22-openssl 1.22.7.1 jscSLE-18320 Update to version 1.22.7.1 cut from the go1.22-fips-release branch at the revision tagged go1.22.7-1-openssl-fips. Update to Go 1.22.7 229 go1.22.7 released 2024-09-05 includes securi...

7.5CVSS7.8AI score0.91969EPSS
Exploits2References64
SUSE Linux
SUSE Linux
added 2024/11/06 10:14 a.m.4 views

Security update for python310

This update for python310 fixes the following issues: CVE-2024-9287: Fixed quoted path names provided when creating a virtual environment bsc1232241. Bug fixes: Drop .pyc files from docdir for reproducible builds bsc1230906. Patch Instructions: To install this SUSE update use the SUSE recommended...

6.5CVSS7.5AI score0.00647EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2024/11/04 11:16 a.m.4 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 128.4.0 ESR bsc1231879: CVE-2024-10458: Permission leak via embed or object elements CVE-2024-10459: Use-after-free in layout with accessibility CVE-2024-10460: Confusing display of origin for external...

9.8CVSS10AI score0.00809EPSS
Exploits0References22
SUSE Linux
SUSE Linux
added 2024/11/01 3:26 p.m.4 views

Security update for ruby2.5

This update for ruby2.5 fixes the following issues: CVE-2024-43398: Fixed DoS when parsing a XML that has many deep elements with the same local name attributes bsc1229673 CVE-2024-41123: Fixed DoS when parsing an XML that contains many specific characters such as whitespaces, and bsc1228794...

8.7CVSS7.2AI score0.02064EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2024/11/01 3:6 p.m.4 views

Security update for apache2

This update for apache2 fixes the following issues: CVE-2024-40725: Fixed source code disclosure of local content bsc1228097 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...

7.5CVSS5.9AI score0.04134EPSS
Exploits3References4
SUSE Linux
SUSE Linux
added 2024/10/31 2:33 p.m.4 views

Security update for the Linux Kernel RT (Live Patch 17 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001361 fixes several issues. The following security issues were fixed: CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails bsc1227808...

7.8CVSS8.2AI score0.00278EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2024/10/31 8:50 a.m.4 views

Security update for 389-ds

This update for 389-ds fixes the following issues: Persist extracted key path for ldapsslclientinit over repeat invocations bsc1230852 Re-enable use of .dsrc basedn for dsidm commands bsc1231462 Update to version 2.2.10git18.20ce9289: RFE: Use previously extracted key path Update dsidm to...

7.5CVSS7.2AI score0.01256EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2024/10/31 8:50 a.m.4 views

Security update for 389-ds

This update for 389-ds fixes the following issues: Persist extracted key path for ldapsslclientinit over repeat invocations bsc1230852 Re-enable use of .dsrc basedn for dsidm commands bsc1231462 Update to version 2.2.10git18.20ce9289: RFE: Use previously extracted key path Update dsidm to...

7.5CVSS7.2AI score0.01256EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2024/10/30 1:28 p.m.4 views

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Updated to version 11.0.25+9 October 2024 CPU: CVE-2024-21208: Fixed partial DoS in component Networking bsc1231702 CVE-2024-21210: Fixed unauthorized read/write access to data in component Hotspot bsc1231711 CVE-2024-21217: Fixed partia...

6.3CVSS7.1AI score0.01157EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2024/10/24 7:54 a.m.4 views

Security update for go1.21-openssl

This update for go1.21-openssl fixes the following issues: CVE-2024-24791: Fixed denial of service due to improper 100-continue handling bsc1227314 CVE-2024-24789: Fixed mishandling of corrupt central directory record in archive/zip bsc1225973 CVE-2024-24790: Fixed unexpected behavior from Is...

7.5CVSS7.9AI score0.91969EPSS
Exploits2References48
SUSE Linux
SUSE Linux
added 2024/10/18 5:54 a.m.4 views

Security update for python-starlette

This update for python-starlette fixes the following issues: CVE-2024-47874: Fixed possible DoS via parts size in multipart/form-data requests bsc1231689 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS8.4AI score0.00658EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/16 7:4 p.m.4 views

Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024111 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2024-36899: gpiolib: cdev: Fix use after free in lineinfochangednotify bsc1225739. CVE-2024-40954...

7.8CVSS8.5AI score0.00767EPSS
Exploits1References80
SUSE Linux
SUSE Linux
added 2024/10/16 2:28 p.m.4 views

Security update for php8

This update for php8 fixes the following issues: CVE-2024-8925: Fixed erroneous parsing of multipart form data in HTTP POST requests leads to legitimate data not being processed bsc1231360 CVE-2024-8927: Fixed cgi.forceredirect configuration is bypassable due to an environment variable collision...

6.9CVSS6.6AI score0.01077EPSS
Exploits3References12
SUSE Linux
SUSE Linux
added 2024/10/16 10:3 a.m.4 views

Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059150 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6nhflushexceptions bsc1227651...

7.8CVSS8.2AI score0.00269EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2024/10/16 9:33 a.m.4 views

Security update for the Linux Kernel (Live Patch 47 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024188 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6nhflushexceptions bsc1227651...

7.8CVSS7.8AI score0.01166EPSS
Exploits2References64
SUSE Linux
SUSE Linux
added 2024/10/16 9:32 a.m.4 views

Security update for unbound

This update for unbound fixes the following issues: CVE-2024-8508: Fixed unbounded name compression that could lead to denial of service bsc1231284 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

6.9CVSS6.8AI score0.00806EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/14 11:3 a.m.4 views

Security update for wireshark

This update for wireshark fixes the following issues: Update to Wireshark 4.2.8: CVE-2024-9781: Fixed AppleTalk and RELOAD Framing dissector crash bsc1231476. Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.2.8.html Patch...

5.5CVSS7.8AI score0.00306EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2024/10/11 12:33 p.m.4 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.3.1 ESR MFSA 2024-51 bsc1231413 CVE-2024-9680: Use-after-free in Animation timeline bmo1923344 Also includes the following CVEs from MFSA 2024-47 bsc1230979 CVE-2024-9392: Compromised content...

8.8CVSS10AI score0.32568EPSS
Exploits1References28
SUSE Linux
SUSE Linux
added 2024/10/10 1:29 p.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48901: btrfs: do not start relocation until in progress drops are done bsc1229607. CVE-2022-48911: kabi: add nfqueuegetrefs for kabi compliance...

8.7CVSS8.4AI score0.00992EPSS
Exploits4References616
SUSE Linux
SUSE Linux
added 2024/10/10 11:29 a.m.4 views

Security update for xen

This update for xen fixes the following issues: Security fixes: CVE-2024-31145: Fixed error handling in x86 IOMMU identity mapping XSA-460 bsc1228574 CVE-2024-31146: Fixed PCI device pass-through with shared resources XSA-461 bsc1228575 CVE-2024-45817: Fixed Deadlock in vlapicerror XSA-462...

7.5CVSS7.3AI score0.00544EPSS
Exploits0References14
SUSE Linux
SUSE Linux
added 2024/10/09 4:55 p.m.4 views

Security update for redis

This update for redis fixes the following issues: CVE-2024-31228: Fixed unbounded recursive pattern matching bsc1231265 CVE-2024-31449: Fixed integer overflow bug in Lua bittohex bsc1231264 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS9AI score0.04488EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2024/10/09 1:28 p.m.4 views

Security update for cups-filters

This update for cups-filters fixes the following issues: CVE-2024-47176: cups-browsed binds on UDP port 631 and trusts packets that try to trigger a Get-Printer-Attributes IPP request. bsc1230939 CVE-2024-47850: cups-browsed can be abused to initiate remote DDoS against third-party targets...

9.3CVSS7.4AI score0.50174EPSS
Exploits14References8
SUSE Linux
SUSE Linux
added 2024/10/09 9:9 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52610: net/sched: actct: fix skb leak and crash on ooo frags bsc1221610. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow...

8.7CVSS8.5AI score0.00992EPSS
Exploits3References748
SUSE Linux
SUSE Linux
added 2024/10/09 8:45 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52610: net/sched: actct: fix skb leak and crash on ooo frags bsc1221610. CVE-2023-52752: smb: client: fix use-after-free bug in cifsdebugdataprocshow...

8.7CVSS8.5AI score0.00992EPSS
Exploits3References748
SUSE Linux
SUSE Linux
added 2024/10/08 2:6 p.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48911: kabi: add nfqueuegetrefs for kabi compliance. bsc1229633. CVE-2022-48923: btrfs: prevent copying too big compressed lzo segment bsc1229662...

7.8CVSS8AI score0.00824EPSS
Exploits0References52
SUSE Linux
SUSE Linux
added 2024/10/08 8:30 a.m.4 views

Security update for Mesa

This update for Mesa fixes the following issues: CVE-2023-45913: Fixed NULL pointer dereference via dri2GetGlxDrawableFromXDrawableId bsc1222040 CVE-2023-45919: Fixed buffer over-read in glXQueryServerString bsc1222041 CVE-2023-45922: Fixed segmentation violation in glXGetDrawableAttribute...

4.8CVSS5.6AI score0.00536EPSS
Exploits1References12
SUSE Linux
SUSE Linux
added 2024/10/07 12:16 p.m.4 views

Security update for mozjs115

This update for mozjs115 fixes the following issues: CVE-2024-45490: Fixed negative len for XMLParseBuffer in embedded expat bnc1230036 CVE-2024-45491: Fixed integer overflow in dtdCopy in embedded expat bnc1230037 CVE-2024-45492: Fixed integer overflow in function nextScaffoldPart in embedded...

6.9CVSS8AI score0.01686EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2024/10/03 1:4 p.m.4 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 128.3.0 ESR MFSA-2024-47, bsc1230979: CVE-2024-8900: Clipboard write permission bypass CVE-2024-9392: Compromised content process can bypass site isolation CVE-2024-9393: Cross-origin access to P...

9.8CVSS10AI score0.00738EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2024/10/01 2:43 p.m.4 views

Security update for OpenIPMI

This update for OpenIPMI fixes the following issues: CVE-2024-42934: crash or message authentication bypass on IPMI simulator due to missing bounds check. bsc1229910 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5CVSS5.7AI score0.00395EPSS
Exploits0References4
Total number of security vulnerabilities5000