Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
•added 2026/03/26 9:46 a.m.•3 views

Security update for tomcat

This update for tomcat fixes the following issues: Update to Tomcat 9.0.115: CVE-2025-48989: HTTP/2 protocol including DNS over HTTPS is vulnerable to "MadeYouReset" DoS attack bsc1243895. CVE-2025-52434: race condition on connection close when using the APR/Native connector could lead to a JVM...

10CVSS7AI score0.99999EPSS
Exploits107References100
SUSE Linux
SUSE Linux
•added 2026/03/25 6:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.293 fixes various security issues The following security issues were fixed: CVE-2025-21738: ata: libata-sff: ensure that we cannot write outside the allocated buffer bsc1257118. CVE-2025-68285: libceph: fix potential use-after-free in...

7.8CVSS6.8AI score0.00197EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/03/25 5:54 p.m.•3 views

Security update for the Linux Kernel (Live Patch 70 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.266 fixes various security issues The following security issues were fixed: CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant...

8.7CVSS6.7AI score0.00278EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/03/25 10:17 a.m.•3 views

Security update for salt

This update for salt fixes the following issues: Security issues fixed: CVE-2025-67724: Fixed missing validation of supplied reason phrase bsc1254903 CVE-2025-67725: Fixed DoS via malicious HTTP request bsc1254905 CVE-2025-67726: Fixed HTTP header parameter parsing algorithm bsc1254904...

8.7CVSS5.8AI score0.01525EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/03/25 10:10 a.m.•3 views

Security update 5.0.7 for Multi-Linux Manager Client Tools

This update fixes the following issues: golang-github-QubitProducts-exporterexporter: Non-customer-facing optimization and update golang-github-boynux-squidexporter: Version update from 1.6.0 to 1.13.0 with the following highlighted changes and fixes jscPED-14971: Added compatibility for Squid 6...

4.6CVSS5.8AI score0.00324EPSS
Exploits1References24
SUSE Linux
SUSE Linux
•added 2026/03/25 9:32 a.m.•3 views

Security update for giflib

This update for giflib fixes the following issues: CVE-2026-23868: double-free result of a shallow copy can lead to memory corruption bsc1259502. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...

5.8CVSS5.8AI score0.00328EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2026/03/25 7:34 a.m.•3 views

Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.97 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2023-53257: wifi: mac80211: check S1G action frame size...

8.7CVSS6.8AI score0.00278EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2026/03/24 6:34 a.m.•3 views

Security update for the Linux Kernel (Live Patch 43 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.173 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2023-53781: smc: Fix use-after-free in tcpwritetimerhandl...

8.7CVSS6.7AI score0.00278EPSS
Exploits0References40
SUSE Linux
SUSE Linux
•added 2026/03/24 3:11 a.m.•3 views

Security update for util-linux

This update for util-linux fixes the following issues: Security issue: CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859. Non security issues: recognize fuse "portal" as a virtual file system bsc1234736. fdisk: fix possible partition overlay and da...

6.3CVSS5.8AI score0.00436EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/03/23 4:46 p.m.•3 views

Security update for strongswan

This update for strongswan fixes the following issues: CVE-2026-25075: Fixed integer underflow when handling EAP-TTLS AVP bsc1259472. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

8.2CVSS5.8AI score0.01013EPSS
Exploits2References4
SUSE Linux
SUSE Linux
•added 2026/03/23 2:34 p.m.•3 views

Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.275 fixes various security issues The following security issues were fixed: CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant...

8.7CVSS6.7AI score0.00206EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/23 2:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 76 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.290 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2022-50756: nvme-pci: fix mempool alloc size bsc1256217...

8.7CVSS6.7AI score0.00206EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/03/23 8:51 a.m.•3 views

Security update for gvfs

This update for gvfs fixes the following issues: CVE-2026-28295: information disclosure when processing untrusted PASV responses from FTP servers bsc1258953. CVE-2026-28296: arbitrary FTP command injection due to unsanitized CRLF sequences in user supplied file paths bsc1258954. Patch Instruction...

7.3CVSS5.9AI score0.0036EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/03/20 7:46 a.m.•3 views

Security update for libssh

This update for libssh fixes the following issues: CVE-2026-3731: Denial of Service via out-of-bounds read in SFTP extension name handler bsc1259377. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...

6.9CVSS6AI score0.00631EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/13 7:8 a.m.•3 views

Security update for dnsdist

This update for dnsdist fixes the following issues: Update to dnsdist 1.9.11: CVE-2025-8671: Add mitigations for the HTTP/2 MadeYouReset attack bsc1253852. CVE-2025-30187: denial of service via crafted DoH exchange bsc1250054. Patch Instructions: To install this SUSE update use the SUSE recommend...

8.7CVSS5.7AI score0.04604EPSS
Exploits3References10
SUSE Linux
SUSE Linux
•added 2026/03/12 2:50 p.m.•3 views

Security update for libsoup2

This update for libsoup2 fixes the following issue: CVE-2026-0716: improper bounds handling may allow out-of-bounds read bsc1256418. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

8.3CVSS5.8AI score0.00257EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/12 10:20 a.m.•3 views

Security update for postgresql17

This update for postgresql17 fixes the following issues: Update to version 17.9 bsc1258754. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to...

8.8CVSS6.3AI score0.01208EPSS
Exploits3References18
SUSE Linux
SUSE Linux
•added 2026/03/11 5:7 p.m.•3 views

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issue: CVE-2026-25799: Division-by-Zero in YUV sampling factor validation leads to crash bsc1258786. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.9CVSS5.8AI score0.00385EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/10 11:1 a.m.•3 views

Security update for util-linux

This update for util-linux fixes the following issues: CVE-2026-3184: Fix full hostname usage for PAM to ensure correct access control for "login -h" bsc1258859. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS5.8AI score0.00436EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/09 3:34 p.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-24485: denial of service via malforme...

9.2CVSS5.8AI score0.00671EPSS
Exploits0References108
SUSE Linux
SUSE Linux
•added 2026/03/06 11:36 a.m.•3 views

Security update for grpc

This update for grpc fixes the following issue: CVE-2023-33953: unbounded memory and CPU consumption in the HPACK parser leads to remote DoS bsc1214148. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.5CVSS5.8AI score0.00412EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/04 3:46 p.m.•3 views

Security update for wicked2nm,suse-migration-services,suse-migration-sle16-activation,SLES16-Migration,SLES16-SAP_Migration

This update for wicked2nm,suse-migration-services,suse-migration-sle16-activation,SLES16-Migration,SLES16-SAPMigration fixes the following issues: Changes for SLES16-SAPMigration: Bump version: 2.1.30 Changes for SLES16-Migration: Bump version: 2.1.30 Changes for suse-migration-sle16-activation:...

8.7CVSS6AI score0.00291EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/04 12:33 p.m.•3 views

Security update for libxslt

This update for libxslt fixes the following issues: CVE-2025-10911: use-after-free will be fixed on libxml2 side instead bsc1250553. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

6.8CVSS5.9AI score0.00161EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/03 2:47 p.m.•3 views

Security update for postgresql14

This update for postgresql14 fixes the following issues: Update to version 14.22 bsc1258754. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to...

8.8CVSS6.5AI score0.01208EPSS
Exploits3References18
SUSE Linux
SUSE Linux
•added 2026/03/03 1:26 p.m.•3 views

Security update for tracker-miners

This update for tracker-miners fixes the following issues: CVE-2026-1764: heap buffer overflow leads to denial of service or information disclosure when parsing MP3 files bsc1257606. CVE-2026-1765: denial of Service and potential information disclosure via crafted MP3 files bsc1257607...

5.6CVSS6.1AI score0.00246EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2026/03/03 1:22 p.m.•3 views

Security update for cosign

This update for cosign fixes the following issues: Update to version 3.0.5 jscSLE-23879. Security issues fixed: CVE-2025-11065: github.com/go-viper/mapstructure/v2: sensitive Information leak in logs bsc1250620. CVE-2025-58181: golang.org/x/crypto/ssh: invalidated number of mechanisms can cause...

8.3CVSS6.1AI score0.0053EPSS
Exploits4References38
SUSE Linux
SUSE Linux
•added 2026/03/03 1:14 p.m.•3 views

Security update for docker

This update for docker fixes the following issues: CVE-2025-58181: Fixed a bug in crypto/ssh where invalidated number of mechanisms can cause unbounded memory consumption. bsc1253904 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...

6.9CVSS5.9AI score0.00521EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/03 1:5 p.m.•3 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-11468: header injection when folding a long comment in an email header containing exclusively unfoldable characters bsc1257029. CVE-2025-12781: inadequate parameter check can cause data integrity issues bsc1257108. CVE-2025-15282:...

8.7CVSS6AI score0.0055EPSS
Exploits1References28
SUSE Linux
SUSE Linux
•added 2026/03/03 12:49 p.m.•3 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-24491: heap-use-after-free in videotimer bsc1257981. CVE-2026-24675: heap-use-after-free in urbselectinterface bsc1257982. CVE-2026-24676: heap-use-after-free in audioformatcompatible bsc1257983. CVE-2026-24677: heap-buffer-overflow in...

7.3CVSS5.9AI score0.00628EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2026/03/03 12:41 p.m.•3 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdata...

7.7CVSS6.1AI score0.00756EPSS
Exploits5References44
SUSE Linux
SUSE Linux
•added 2026/03/03 12:38 p.m.•3 views

Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: Update to version 1.25.7. Security issues fixed: CVE-2025-61732: cmd/go: discrepancy between Go and C/C++ comment parsing allows for C code smuggling bsc1257692. CVE-2025-68121: crypto/tls: Config.Clone copies automatically generated...

9.6CVSS6AI score0.00765EPSS
Exploits1References10
SUSE Linux
SUSE Linux
•added 2026/03/03 12:16 p.m.•3 views

Security update for busybox

This update for busybox fixes the following issues: CVE-2026-26157: Arbitrary file overwrite and potential code execution via incomplete path sanitization bsc1258163. CVE-2026-26158: Arbitrary file modification and privilege escalation via unvalidated tar archive entries bsc1258167. Patch...

7.1CVSS6.3AI score0.00682EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/03/02 12:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.51 fixes one security issue The following security issue was fixed: CVE-2025-38129: pagepool: fix use-after-free in pagepoolrecycleinring bsc1258139. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.5CVSS6.9AI score0.00161EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/02 9:34 a.m.•3 views

Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.42 fixes one security issue The following security issue was fixed: CVE-2025-38129: pagepool: fix use-after-free in pagepoolrecycleinring bsc1258139. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.5CVSS5.9AI score0.00161EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/27 10:44 a.m.•4 views

Security update for gimp

This update for gimp fixes the following issues: CVE-2026-2044: lack of proper initialization of memory can allow remote attackers to execute arbitrary code bsc1258532. CVE-2026-2045: check offset in the colormap is valid before using it bsc1258533. CVE-2026-2048: lack of proper validation of...

8.4CVSS6.3AI score0.00972EPSS
Exploits0References14
SUSE Linux
SUSE Linux
•added 2026/02/26 3:19 p.m.•3 views

Security update for redis7

This update for redis7 fixes the following issue: a user can manipulate data read by a connection by injecting sequences into a Redis error reply bsc1258706. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.4AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2026/02/25 4:29 p.m.•3 views

Security update for expat

This update for expat fixes the following issues: CVE-2026-24515: Fixed a null dereference in XMLExternalEntityParserCreate. bsc1257144 CVE-2026-25210: Fixed an integer overflow in doContent. bsc1257496 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods...

7.3CVSS5.5AI score0.00193EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/24 3:36 p.m.•3 views

Security update for openvswitch

This update for openvswitch fixes the following issues: CVE-2024-2182: Fixed insufficient validation of incoming BFD packets may lead to denial of service bsc1255435 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS5.4AI score0.00783EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/16 6:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 43 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise kernel 5.14.21-150400.24.173 fixes various security issues The following security issues were fixed: CVE-2023-53321: wifi: mac80211hwsim: drop short frames bsc1250314. CVE-2025-38111: net/mdiobus: Fix potential out-of-bounds read/write access bsc1249455...

7.3CVSS7.2AI score0.01345EPSS
Exploits8References16
SUSE Linux
SUSE Linux
•added 2026/02/16 7:3 a.m.•3 views

Security update for the Linux Kernel (Live Patch 16 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.73 fixes various security issues The following security issues were fixed: CVE-2025-40129: sunrpc: fix null pointer dereference on zero-length checksum bsc1253473. CVE-2025-40186: tcp: Don't call reqskfastopenremove in tcpconnreques...

8.7CVSS8.2AI score0.00188EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/13 2:50 p.m.•3 views

Security update for curl

This update for curl fixes the following issues: CVE-2025-14017: Fixed broken TLS options for threaded LDAPS bsc1256105. CVE-2025-14524: bearer token leak on cross-protocol redirect bsc1255731. CVE-2025-14819: libssh global knownhost override bsc1255732. CVE-2025-15079: libssh key passphrase bypa...

7CVSS5.7AI score0.00679EPSS
Exploits3References20
SUSE Linux
SUSE Linux
•added 2026/02/13 2:23 p.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-23874: manipulation of digital images can lead to stack overflow bsc1256976. CVE-2026-23876: maliciously crafted image can lead to heap buffer overflow bsc1256962. CVE-2026-23952: processing comment tag can cause null pointer...

9.2CVSS5.2AI score0.00609EPSS
Exploits3References12
SUSE Linux
SUSE Linux
•added 2026/02/13 11:42 a.m.•3 views

Security update for glibc-livepatches

This update for glibc-livepatches fixes the following issues: CVE-2026-0861: Fixed that inadequate size check in the memalign suite may result in an integer overflow bsc1256913 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.5CVSS5.5AI score0.00352EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2026/02/12 4:4 p.m.•3 views

Security update for openCryptoki

This update for openCryptoki fixes the following issues: CVE-2026-23893: Privilege Escalation or Data Exposure via Symlink Following bsc1257116. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively yo...

6.8CVSS5.5AI score0.00162EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/11 2:51 p.m.•3 views

Security update for munge

This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Make logrotate work on log as user munge to prevent local privilege escalation bsc1246088. Patch Instructions: To install this SUSE update use the SUSE recommended installation metho...

7.7CVSS5.8AI score0.00302EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/02/11 2:5 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: CVE-2023-54013: interconnect: Fix locking for runpm vs reclaim bsc1256280. CVE-2025-39880: libceph: fix invalid accesses to cephconnectionv1info bsc1250388. CVE-2025-40238:...

8.7CVSS7.7AI score0.00424EPSS
Exploits2References766
SUSE Linux
SUSE Linux
•added 2026/02/11 9:28 a.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-22770: improper pointer initialization can cause denial of service bsc1256969. CVE-2026-23874: manipulation of digital images can lead to stack overflow bsc1256976. CVE-2026-23876: maliciously crafted image can lead to heap buffer...

9.2CVSS5.8AI score0.00609EPSS
Exploits3References16
SUSE Linux
SUSE Linux
•added 2026/02/11 6:50 a.m.•3 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2025-68276: avahi: reachable assertion in avahiwideareascancache can lead to crash of avahi-daemon bsc1256498. CVE-2025-68468: avahi: reachable assertion in lookupmulticastcallback can lead to crash of avahi-daemon bsc1256499. CVE-2025-68471:...

7.1CVSS5.5AI score0.00353EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/02/10 3:28 p.m.•3 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. CVE-2026-22854: server-controlled read length is used to read file data into an IRP output can cause heap-buffer-overflow in...

7.7CVSS5.9AI score0.00756EPSS
Exploits8References32
SUSE Linux
SUSE Linux
•added 2026/02/10 2:15 p.m.•3 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2026-1761: Check length of bytes read in soupfilterinputstreamreaduntil to avoid a stack-based buffer overflow. bsc1257598 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

9.2CVSS6.1AI score0.00947EPSS
Exploits0References4
Total number of security vulnerabilities5000