Lucene search
K
SuseMost viewed

5412 matches found

SUSE Linux
SUSE Linux
•added 2025/02/14 3:26 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-45828: i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request bsc1235705. CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088...

8.7CVSS8.4AI score0.03558EPSS
Exploits4References1110
SUSE Linux
SUSE Linux
•added 2025/02/14 3:10 p.m.•3 views

Security update for python

This update for python fixes the following issues: CVE-2025-0938: functions urllib.parse.urlsplit and urlparse accept domain names including square brackets bsc1236705. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.3CVSS7.3AI score0.01499EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/11 2:12 p.m.•3 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250207T224745 2025-02-07T22:47:45Z. Refs jscPED-11136 Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-3456 CVE-2025-24786 GHSA-9r4c-jwx3-3j76 GO-2025-3457 CVE-2025-24787 GHSA-c7w4-9wv8-7x7...

8.3CVSS7AI score0.0268EPSS
Exploits4References58
SUSE Linux
SUSE Linux
•added 2025/02/11 10:31 a.m.•3 views

Security update for python3-numpy

This update for python3-numpy fixes the following issues: CVE-2021-41495: missing return value validation can lead to null pointer dereference. bsc1193911 Other bug fixes: Correction of advance in PCG with emulated int128. Patch Instructions: To install this SUSE update use the SUSE recommended...

5.5CVSS6.1AI score0.01154EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2025/02/10 7:34 a.m.•3 views

Security update for MozillaFirefox

This update for MozillaFirefox to 128.7esr fixes the following issues: MFSA 2025-09 CVE-2025-1009 bmo1936613 Use-after-free in XSLT CVE-2025-1010 bmo1936982 Use-after-free in Custom Highlight CVE-2025-1011 bmo1936454 A bug in WebAssembly code generation could result in a crash CVE-2025-1012...

8.8CVSS10AI score0.01163EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2025/02/07 1:0 p.m.•3 views

Security update for bind

This update for bind fixes the following issues: CVE-2024-11187: Fixes CPU exhaustion caused by many records in the additional section bsc1236596 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...

8.7CVSS7.8AI score0.14614EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/07 9:57 a.m.•3 views

Security update for rsync

This update for rsync fixes the following issues: Bump protocol version to 32 - make it easier to show server is patched. Fix FLAGGOTDIRFLIST collission with FLAGHLINKED Security update,CVE-2024-12747, bsc1235475 race condition in handling symbolic links Security update, fix multiple...

9.8CVSS7.5AI score0.72059EPSS
Exploits8References24
SUSE Linux
SUSE Linux
•added 2025/02/05 7:31 p.m.•3 views

Security update for google-osconfig-agent

This update for google-osconfig-agent fixes the following issues: Update to version 20250115.01 bsc1236406, bsc1236407 CVE-2024-24790: Bump the golang compiler version to 1.22.4 bsc1225974 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.2CVSS7.4AI score0.01952EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/02/04 9:15 a.m.•3 views

Security update for xrdp

This update for xrdp fixes the following issues: CVE-2024-39917: Enforce no login screen if requirecredentials is set bsc1227769 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.3CVSS7.2AI score0.00602EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/04 8:59 a.m.•3 views

Security update for rsync

This update for rsync fixes the following issues: CVE-2024-12084: Fixed Heap Buffer Overflow in Checksum Parsing bsc1234100. CVE-2024-12085: Fixed Info Leak via uninitialized Stack contents defeating ASLR bsc1234101. CVE-2024-12086: Fixed server leaking arbitrary client files bsc1234102...

9.8CVSS7.5AI score0.72059EPSS
Exploits8References24
SUSE Linux
SUSE Linux
•added 2025/02/03 4:33 p.m.•3 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2022-49043: Fixed a use-after-free in xmlXIncludeAddNode. bsc1236460 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comman...

7.5CVSS7.2AI score0.00257EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 3:13 p.m.•3 views

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.26+4 January 2025 CPU Security fixes: CVE-2025-21502: Enhance array handling JDK-8330045, bsc1236278 Other changes: JDK-8224624: Inefficiencies in CodeStrings::addcomment cause - timeouts JDK-8225045:...

6.3CVSS7.1AI score0.00971EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 3:10 p.m.•3 views

Security update for bind

This update for bind fixes the following issues: CVE-2024-11187: Fixes CPU exhaustion caused by many records in the additional section bsc1236596 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...

8.7CVSS7.3AI score0.14614EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 9:39 a.m.•3 views

Security update for clamav

This update for clamav fixes the following issues: New version 1.4.2: CVE-2025-20128, bsc1236307: Fixed a possible buffer overflow read bug in the OLE2 file parser that could cause a denial-of-service DoS condition. Start clamonacc with --fdpass to avoid errors due to clamd not being able to acce...

8.7CVSS7.8AI score0.03312EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2025/02/03 9:39 a.m.•3 views

Security update for clamav

This update for clamav fixes the following issues: New version 1.4.2: CVE-2025-20128, bsc1236307: Fixed a possible buffer overflow read bug in the OLE2 file parser that could cause a denial-of-service DoS condition. Start clamonacc with --fdpass to avoid errors due to clamd not being able to acce...

8.7CVSS8.1AI score0.03312EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2025/02/03 9:22 a.m.•3 views

Security update for dnsmasq

This update for dnsmasq fixes the following issues: Update to 2.90: CVE-2023-50387, CVE-2023-50868: Fixed a Denial Of Service while trying to validate specially crafted DNSSEC responses bsc1219823, bsc1219826. Fix reversion in --rev-server introduced in 2.88 which caused breakage if the prefix...

7.5CVSS7.5AI score0.99995EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2025/02/03 9:22 a.m.•3 views

Security update for python-dnspython

This update for python-dnspython fixes the following issues: CVE-2023-29483: Fixed potential DoS via the Tudoor mechanism bsc1222693. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

5.9CVSS7.3AI score0.01857EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/02/03 9:20 a.m.•3 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2024-56201: Fixed sandbox breakout through malicious content and filename of a template bsc1234808 CVE-2024-56326: Fixed sandbox breakout through indirect reference to format method bsc1234809 Patch Instructions: To install this SUSE...

8.1CVSS7.3AI score0.005EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/02/03 9:17 a.m.•3 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2024-52530: Fixed HTTP request smuggling via stripping null bytes from the ends of header names bsc1233285. CVE-2024-52531: Fixed buffer overflow via UTF-8 conversion in soupheaderparseparamliststrict bsc1233292. CVE-2024-52532: Fixed infini...

8.7CVSS7.8AI score0.00933EPSS
Exploits2References12
SUSE Linux
SUSE Linux
•added 2025/02/03 9:13 a.m.•3 views

Security update for glib2

This update for glib2 fixes the following issues: CVE-2024-52533: Fix a single byte buffer overflow bsc1233282. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for...

7.1CVSS7.8AI score0.01263EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/02/03 9:11 a.m.•3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20241112 release bsc1233313 CVE-2024-21853: Faulty finite state machines FSMs in the hardware logic in some 4th and 5th Generation Intel Xeon Processors may allow an authorized user to potentially enabl...

8.8CVSS7.6AI score0.00256EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/02/03 9:11 a.m.•3 views

Security update for containerd

This update for containerd fixes the following issues: Update to containerd v1.7.21. Upstream release notes: https://github.com/containerd/containerd/releases/tag/v1.7.21 Fixes CVE-2023-47108. bsc1217070 Fixes CVE-2023-45142. bsc1228553 Update to containerd v1.7.17. Upstream release notes:...

9.1CVSS7.4AI score0.91969EPSS
Exploits2References18
SUSE Linux
SUSE Linux
•added 2025/02/03 9:9 a.m.•3 views

Security update for wpa_supplicant

This update for wpasupplicant fixes the following issues: CVE-2023-52160: Fixed WiFi authentication bypass bsc1219975. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command list...

6.5CVSS7.6AI score0.01177EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 9:9 a.m.•3 views

Security update for libndp

This update for libndp fixes the following issues: CVE-2024-5564: Fixed buffer overflow in route information length field bsc1225771. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

7.5CVSS7.6AI score0.01165EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 9:9 a.m.•3 views

Security update for libarchive

This update for libarchive fixes the following issues: CVE-2024-48958: Fixed out-of-bounds access in executefilterdelta bsc1231624. CVE-2024-20697: Fixed out-of-bounds remote code execution vulnerability bsc1225972. CVE-2024-48957: Fixed out-of-bounds access in executefilteraudio bsc1231544. Patc...

7.8CVSS8.2AI score0.87784EPSS
Exploits2References14
SUSE Linux
SUSE Linux
•added 2025/02/03 9:7 a.m.•3 views

Security update for curl

This update for curl fixes the following issues: CVE-2024-9681: Fixed HSTS subdomain overwrites parent cache entry bsc1232528 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

6.9CVSS7.3AI score0.0197EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/02/03 9:4 a.m.•3 views

Security update for iperf

This update for iperf fixes the following issues: update to 3.17.1 bsc1224262, CVE-2024-26306: BREAKING CHANGE: iperf3's authentication features, when used with OpenSSL prior to 3.2.0, contain a vulnerability to a side-channel timing attack. To address this flaw, a change has been made to the...

5.9CVSS7.4AI score0.01107EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 8:57 a.m.•3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20240910 release bsc1230400 CVE-2024-23984: Observable discrepancy in RAPL interface for some Intel Processors may allow a privileged user to potentially enable information disclosure via local access...

6.8CVSS7AI score0.00209EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/02/03 8:57 a.m.•3 views

Security update for rust-keylime

This update for rust-keylime fixes the following issues: Update vendored crates CVE-2024-43806, bsc1229952, bsc1230029 rustix 0.37.25 rustix 0.38.34 shlex 1.3.0 Update to version 0.2.6+13: Enable test functional/iak-idevid-persisted-and-protected builddeps: bump uuid from 1.7.0 to 1.10.0 builddep...

7.5CVSS7.7AI score0.00949EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/02/03 8:56 a.m.•3 views

Security update for libarchive

This update for libarchive fixes the following issues: CVE-2024-20696: Fixed out-of-bounds access in in copyfromlzsswindowtounp bsc1225971 CVE-2024-20697: Fixed heap based buffer overflow in rar e8 filter bsc1225972 Patch Instructions: To install this SUSE update use the SUSE recommended...

7.3CVSS7.9AI score0.72163EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/02/03 8:56 a.m.•3 views

Security update for runc

This update for runc fixes the following issues: Update to runc v1.1.14. Upstream changelog is available from . CVE-2024-45310: Fixed that runc can be tricked into creating empty files/directories on host bsc1230092 Update to runc v1.1.13. Upstream changelog is available from . Fixed a performanc...

3.6CVSS7.2AI score0.00317EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/02/03 8:53 a.m.•3 views

Security update for keepalived

This update for keepalived fixes the following issues: CVE-2024-41184: Fixed integer overflow in vrrpipsetshandler bsc1228123 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

6.4CVSS7.6AI score0.00616EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 8:53 a.m.•3 views

Security update for qemu

This update for qemu fixes the following issues: Fix bsc1221812: block: Reschedule query-block during qcow2 invalidation bsc1221812 Fix bsc1229007, CVE-2024-7409: nbd/server: CVE-2024-7409: Close stray clients at server-stop bsc1229007 nbd/server: CVE-2024-7409: Drop non-negotiating clients...

8.2CVSS7.1AI score0.01027EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/02/03 8:52 a.m.•3 views

Security update for python-requests

This update for python-requests fixes the following issues: Update to 2.32.2 To provide a more stable migration for custom HTTPAdapters impacted by the CVE changes in 2.32.0, we've renamed getconnection to a new public API, getconnectionwithtlscontext. Existing custom HTTPAdapters will need to...

6CVSS7.5AI score0.0034EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/02/03 8:51 a.m.•3 views

Security update for mozilla-nss

This update for mozilla-nss fixes the following issues: update to NSS 3.101.2 ChaChaXor to return after the function update to NSS 3.101.1 missing sqlite header. GLOBALTRUST 2020: Set Distrust After for TLS and S/MIME. update to NSS 3.101 add diagnostic assertions for SFTKObject refcount. freeing...

6.5CVSS10AI score0.00816EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2025/02/03 8:49 a.m.•3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20240514 release bsc1224277 CVE-2023-45733: Security updates for INTEL-SA-01051 CVE-2023-46103: Security updates for INTEL-SA-01052 CVE-2023-45745,CVE-2023-47855: Security updates for INTEL-SA-01036...

7.9CVSS7.7AI score0.0075EPSS
Exploits0References22
SUSE Linux
SUSE Linux
•added 2025/02/03 8:48 a.m.•3 views

Security update for skopeo

This update for skopeo fixes the following issues: Update to version 1.14.4: CVE-2024-3727: digest type does not guarantee valid type bsc1224123 Packit: update packit targets Bump gopkg.in/go-jose to v2.6.3 Bump ocicrypt and go-jose CVE-2024-28180 Freeze the fedora-minimal image reference at Fedo...

8.3CVSS7.4AI score0.01956EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/02/03 8:48 a.m.•3 views

Security update for gnutls

This update for gnutls fixes the following issues: CVE-2024-28835: certtool crash when verifying a certificate chain bsc1221747 CVE-2024-28834: Fixed side-channel in the deterministic ECDSA bsc1221746 jitterentropy: Release the memory of the entropy collector when using jitterentropy with phtread...

5.3CVSS7.3AI score0.00718EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/02/03 8:47 a.m.•3 views

Security update for qemu

This update for qemu fixes the following issues: Update to version 8.2.5: target/loongarch: fix a wrong print in cpu dump ui/sdl2: Allow host to power down screen target/i386: fix SSE and SSE2 feature check target/i386: fix xsave.flat from kvm-unit-tests disas/riscv: Decode all of the pmpcfg and...

8.2CVSS7.8AI score0.00552EPSS
Exploits2References24
SUSE Linux
SUSE Linux
•added 2025/01/31 2:4 a.m.•3 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2023-45288: Fixed unclosed connections when receiving too many headers in golang.org/x/net/http2 bsc1236518 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.9CVSS7.3AI score0.91969EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/01/30 2:50 p.m.•3 views

Security update for buildah

This update for buildah fixes the following issues: Update to version 1.35.5 CVE-2024-11218: Fix TOCTOU error when bind and cache mounts use "src" values. bsc1236272 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.7CVSS7.7AI score0.00358EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/30 2:33 p.m.•3 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2023-45288: Fixed unclosed connections when receiving too many headers in golang.org/x/net/http2 bsc1236518 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.9CVSS7.1AI score0.91969EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/01/28 1:3 p.m.•3 views

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-150600105 fixes several issues. The following security issues were fixed: CVE-2024-40921: net: bridge: mst: pass vlan group directly to brmstvlansetstate bsc1227784. CVE-2024-40920: net: bridge: mst: fix suspicious rcu usage in brmstsetstate bsc1227781...

7.8CVSS7.6AI score0.00352EPSS
Exploits1References40
SUSE Linux
SUSE Linux
•added 2025/01/27 12:3 p.m.•3 views

Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059153 fixes several issues. The following security issues were fixed: CVE-2024-36971: Fixed dstnegativeadvice race bsc1226324. CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6...

7.8CVSS8.5AI score0.02701EPSS
Exploits4References112
SUSE Linux
SUSE Linux
•added 2025/01/24 4:34 p.m.•3 views

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.26+4 January 2025 CPU Security fixes: CVE-2025-21502: Enhance array handling JDK-8330045, bsc1236278 Other changes: JDK-8224624: Inefficiencies in CodeStrings::addcomment cause - timeouts JDK-8225045:...

6.3CVSS7.2AI score0.00971EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/24 4:34 p.m.•3 views

Security update for nodejs18

This update for nodejs18 fixes the following issues: Update to 18.20.6: CVE-2025-23085: Fixed HTTP2 memory leak on premature close and ERRPROTO bsc1236250 CVE-2025-22150: Fixed insufficiently random values used when defining the boundary for a multipart/form-data request in undici bsc1236258 Patc...

7.4CVSS7.3AI score0.01282EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/01/24 10:10 a.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-53095: smb: client: Fix use-after-free of network namespace bsc1233642. CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234853...

8.8CVSS8AI score0.02033EPSS
Exploits3References282
SUSE Linux
SUSE Linux
•added 2025/01/23 1:54 p.m.•3 views

Security update for docker-stable

This update for docker-stable fixes the following issues: CVE-2024-29018: Fixed external DNS request handling from 'internal' networks that could have led to data exfiltration bsc1234089. CVE-2024-23650: Fixed possibile BuildKit daemon crash via malicious BuildKit client or frontend request...

9.9CVSS6.7AI score0.16496EPSS
Exploits1References14
SUSE Linux
SUSE Linux
•added 2025/01/22 2:53 a.m.•3 views

Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, cont

This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.61.0: Release notes...

7.3AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/01/21 8:35 a.m.•3 views

Security update for dhcp

This update for dhcp fixes the following issues: Fixed dhcp not starting in case group nogroup is missing bsc1192020 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

7.2AI score
Exploits0References2
Total number of security vulnerabilities5000