Lucene search
K
SuseMost viewed

5423 matches found

SUSE Linux
SUSE Linux
•added 2025/09/15 1:23 p.m.•3 views

Security update for rabbitmq-server313

This update for rabbitmq-server313 fixes the following issues: CVE-2025-50200: Fixed logging of Basic Auth header from an HTTP request bsc1245105 Fixed bad logrotate configuration allowing potential escalation from rabbitmq to root bsc1246091 Patch Instructions: To install this SUSE update use th...

6.7CVSS7.2AI score0.00194EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2025/09/15 1:16 p.m.•3 views

Security update for pcp

This update for pcp fixes the following issues: CVE-2024-3019: exposure of the redis server backend allows remote command execution via pmproxy bsc1222121. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.8CVSS7.2AI score0.01002EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/15 11:39 a.m.•3 views

Security update for cups-filters

This update for cups-filters fixes the following issues: CVE-2024-47175: no validation of IPP attributes in ppdCreatePPDFromIPP2 when writing to a temporary PPD file allows for the injection of attacker-controlled data to the resulting PPD bsc1230932. Patch Instructions: To install this SUSE upda...

9.3CVSS7.2AI score0.73062EPSS
Exploits5References6
SUSE Linux
SUSE Linux
•added 2025/09/15 11:36 a.m.•3 views

Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002317 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References46
SUSE Linux
SUSE Linux
•added 2025/09/15 9:36 a.m.•3 views

Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-150700536 fixes several issues. The following security issue was fixed: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdat...

8.5CVSS7.5AI score0.00153EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/12 12:22 p.m.•3 views

Security update for go1.25

This update for go1.25 fixes the following issues: Update to go1.25.1, released 2025-09-03 bsc1244485. Security issues fixed: CVE-2025-47910: net/http: CrossOriginProtection insecure bypass patterns not limited to exact matches bsc1249141. Other issues fixed: go74822 cmd/go: "get toolchain@latest...

5.4CVSS7AI score0.00308EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/09/12 8:42 a.m.•3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250812 release bsc1248438 CVE-2025-20109: Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel Processors may allow an authenticated user to potentially enable...

7.9CVSS7.2AI score0.00169EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/11 3:47 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_10

This update for kernel-livepatch-MICRO-6-0-RTUpdate10 fixes the following issues: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350 CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/11 3:44 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_6

This update for kernel-livepatch-MICRO-6-0-RTUpdate6 fixes the following issues: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245505 CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579 CVE-2025-38001: netsched: hfsc: Address reentrant enqueue adding class to eltree...

8.5CVSS7AI score0.00369EPSS
Exploits3References26
SUSE Linux
SUSE Linux
•added 2025/09/11 12:54 p.m.•3 views

Security update for xen

This update for xen fixes the following issues: Security issues fixed: CVE-2025-27466: NULL pointer dereference in the Viridian interface when updating the reference TSC area bsc1248807. CVE-2025-58142: NULL pointer dereference in the Viridian interface due to assumption that the SIM page is mapp...

7CVSS6.5AI score0.00435EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/09/11 12:38 p.m.•3 views

Security update for regionServiceClientConfigGCE

This update for regionServiceClientConfigGCE contains the following fixes: Update to version 5.0.0. bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update conditional to handle name change of metadata package in...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/11 12:38 p.m.•3 views

Security update for regionServiceClientConfigAzure

This update for regionServiceClientConfigAzure contains the following fixes: Update to version 3.0.0. bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update dependency name for metadata package, name change in S...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/11 11:6 a.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077...

9CVSS7.4AI score0.04065EPSS
Exploits7References30
SUSE Linux
SUSE Linux
•added 2025/09/10 6:4 p.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077...

9CVSS7.2AI score0.04065EPSS
Exploits7References30
SUSE Linux
SUSE Linux
•added 2025/09/10 6:1 p.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077...

9CVSS7.2AI score0.04065EPSS
Exploits7References28
SUSE Linux
SUSE Linux
•added 2025/09/10 5:58 p.m.•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077. CVE-2025-55154: Fixed integer overflow when performing magnified size calculations in ReadOneMNGIMage bsc1248078. CVE-2025-55160: Fixed...

9CVSS7.2AI score0.04065EPSS
Exploits6References24
SUSE Linux
SUSE Linux
•added 2025/09/09 12:59 p.m.•3 views

Security update for regionServiceClientConfigGCE

This update for regionServiceClientConfigGCE contains the following fixes: Update to version 5.0.0 bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update conditional to handle name change of metadata package in...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/09 10:57 a.m.•3 views

Security update for microcode_ctl

This update for microcodectl fixes the following issues: Intel CPU Microcode was updated to the 20250812 release bsc1248438 CVE-2025-20109: Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel Processors may allow an authenticated user to potentially enable...

7.9CVSS7.2AI score0.00169EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/09 10:18 a.m.•3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250812 release bsc1248438 CVE-2025-20109: Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel Processors may allow an authenticated user to potentially enable...

7.9CVSS7AI score0.00169EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/08 9:13 p.m.•3 views

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-15070073 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-38001: netsched: hfsc: Address reentrant enqueue adding class to eltree twice bsc1244235...

8.5CVSS7.5AI score0.00369EPSS
Exploits3References18
SUSE Linux
SUSE Linux
•added 2025/09/08 9:13 p.m.•3 views

Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001044 fixes several issues. The following security issue was fixed: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...

8.5CVSS8.4AI score0.00153EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/08 4:9 p.m.•3 views

Security update for ovmf

This update for ovmf fixes the following issues: CVE-2023-45229: Fixed integer underflow when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879 CVE-2023-45230: Fixed buffer overflow in the DHCPv6 client via a long Server ID option bsc1218880 Patch Instructions: To install this...

8.3CVSS7.4AI score0.01213EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2025/09/08 1:37 p.m.•3 views

Security update for podman

This update for podman fixes the following issues: CVE-2025-6032: Machine init command fails to verify TLS certificate when downloading VM images from an OCI registry bsc1245320. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate o...

9CVSS6.6AI score0.00397EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/05 12:55 p.m.•3 views

Security update for grub2

This update for grub2 fixes the following issues: CVE-2024-56738: Side-channel attack due to not constant-timealgorithm in grubcryptomemcmp bsc1234959. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.7CVSS6.9AI score0.00386EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/05 12:55 p.m.•3 views

Security update for jq

This update for jq fixes the following issues: CVE-2025-48060: Fixed stack-buffer-overflow in jqfuzzexecute jvstringvfmt bsc1244116. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

6.9CVSS7AI score0.00443EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/09/05 12:17 p.m.•3 views

Security update for protobuf

This update for protobuf fixes the following issues: CVE-2024-2410: Use after free when parsing JSON from a stream bsc1223947. CVE-2024-7254: StackOverflow vulnerability in Protocol Buffers bsc1230778. CVE-2025-4565: Parsing of untrusted Protocol Buffers data containing an arbitrary number of...

8.2CVSS7.8AI score0.02772EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/09/05 12:2 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. CVE-2025-38006: net: mctp: Do not access ifaindex when missing bsc1244930...

9.2CVSS7.9AI score0.02838EPSS
Exploits3References412
SUSE Linux
SUSE Linux
•added 2025/09/05 10:36 a.m.•3 views

Security update for perl-Authen-SASL, perl-Crypt-URandom

This update for perl-Authen-SASL, perl-Crypt-URandom fixes the following issues: Changes in perl-Authen-SASL: CVE-2025-40918: insecurely generated client nonce bsc1246623 Changes in perl-Crypt-URandom: Shipped in version 0.540.0 0.54. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS7.1AI score0.00394EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/05 10:12 a.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. CVE-2025-38006: net: mctp: Do not access ifaindex when missing bsc1244930...

9.2CVSS7.2AI score0.02838EPSS
Exploits3References412
SUSE Linux
SUSE Linux
•added 2025/09/05 8:27 a.m.•3 views

Security update for python-maturin

This update for python-maturin fixes the following issues: CVE-2025-58160: terminal escape injection via ANSI sequences from untrusted input bsc1249011. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

3.1CVSS7.4AI score0.00303EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/04 10:51 a.m.•3 views

Security update for ovmf

This update for ovmf fixes the following issues: CVE-2023-45229: Fixed integer underflow when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879 CVE-2023-45230: Fixed buffer overflow in the DHCPv6 client via a long Server ID option bsc1218880 Patch Instructions: To install this...

8.3CVSS7.5AI score0.01213EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2025/09/03 10:48 a.m.•3 views

Security update for munge

This update for munge fixes the following issues: Make logrotate work on log as user munge to prevent local privilege escalation bsc1246088. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...

7AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/09/02 5:42 p.m.•3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250812 release bsc1248438 CVE-2025-20109: Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel Processors may allow an authenticated user to potentially enable...

7.9CVSS7AI score0.00169EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/02 5:41 p.m.•3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250812 release bsc1248438 CVE-2025-20109: Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel Processors may allow an authenticated user to potentially enable...

7.9CVSS7.2AI score0.00169EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/02 3:38 p.m.•3 views

Security update for python-eventlet

This update for python-eventlet fixes the following issues: CVE-2025-58068: improper handling of HTTP trailer sections in WSGI parser leads to HTTP request smuggling bsc1248994. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

6.5CVSS6.7AI score0.00363EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/01 1:56 p.m.•3 views

Recommended update for nginx

This update for nginx fixes the following issues: Drop root priviledges while running logrotate bsc1246090 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your...

7.1AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/09/01 1:41 p.m.•3 views

Security update for python-future

This update for python-future fixes the following issues: CVE-2025-50817: Fixed arbitrary code execution via the automatic import of file test.py bsc1248124 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.5CVSS7.6AI score0.00271EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/01 1:5 p.m.•3 views

Security update for ruby2.5

This update for ruby2.5 fixes the following issues: CVE-2025-6442: Fixed readheader HTTP Request Smuggling Vulnerability in WEBrick bsc1245254 CVE-2025-27221: Fixed userinfo leakage in URIjoin, URImerge and URI+ bsc1237805 Patch Instructions: To install this SUSE update use the SUSE recommended...

6.5CVSS6.3AI score0.00472EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/09/01 10:50 a.m.•3 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_3

This update for kernel-livepatch-MICRO-6-0-RTUpdate3 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/01 10:48 a.m.•3 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_9

This update for kernel-livepatch-MICRO-6-0-RTUpdate9 fixes the following issues: CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350 CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the...

8.5CVSS7AI score0.002EPSS
Exploits0References14
SUSE Linux
SUSE Linux
•added 2025/09/01 10:48 a.m.•3 views

Security update for kernel-livepatch-MICRO-6-0_Update_9

This update for kernel-livepatch-MICRO-6-0Update9 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS8AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 3:14 p.m.•3 views

Security update for postgresql14

This update for postgresql14 fixes the following issues: Upgrade to 14.19: CVE-2025-8713: optimizer statistics can expose sampled data within a view, partition, or child table bsc1248120. CVE-2025-8714: untrusted data inclusion in pgdump lets superuser of origin server execute arbitrary code in...

8.8CVSS7.8AI score0.00709EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2025/08/29 2:48 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0_Update_7

This update for kernel-livepatch-MICRO-6-0Update7 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 2:48 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0_Update_8

This update for kernel-livepatch-MICRO-6-0Update8 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 2:48 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_7

This update for kernel-livepatch-MICRO-6-0-RTUpdate7 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS8AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 2:27 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0_Update_5

This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS8AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 2:27 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0_Update_7

This update for kernel-livepatch-MICRO-6-0Update7 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS8AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 2:26 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0_Update_8

This update for kernel-livepatch-MICRO-6-0Update8 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS8AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 2:25 p.m.•3 views

Security update for kernel-livepatch-MICRO-6-0_Update_3

This update for kernel-livepatch-MICRO-6-0Update3 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 1:49 p.m.•3 views

Security update for python-future

This update for python-future fixes the following issues: CVE-2025-50817: Fixed arbitrary code execution via the automatic import of file test.py bsc1248124 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.5CVSS8AI score0.00271EPSS
Exploits0References4
Total number of security vulnerabilities5000