Lucene search
K
SuseMost viewed

5423 matches found

SUSE Linux
SUSE Linux
•added 2025/02/03 8:48 a.m.•3 views

Security update for gnutls

This update for gnutls fixes the following issues: CVE-2024-28835: certtool crash when verifying a certificate chain bsc1221747 CVE-2024-28834: Fixed side-channel in the deterministic ECDSA bsc1221746 jitterentropy: Release the memory of the entropy collector when using jitterentropy with phtread...

5.3CVSS7.3AI score0.00718EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/02/03 8:47 a.m.•3 views

Security update for qemu

This update for qemu fixes the following issues: Update to version 8.2.5: target/loongarch: fix a wrong print in cpu dump ui/sdl2: Allow host to power down screen target/i386: fix SSE and SSE2 feature check target/i386: fix xsave.flat from kvm-unit-tests disas/riscv: Decode all of the pmpcfg and...

8.2CVSS7.8AI score0.00552EPSS
Exploits2References24
SUSE Linux
SUSE Linux
•added 2025/02/03 8:46 a.m.•3 views

Security update for util-linux

This update for util-linux fixes the following issues: Security issue fixed: CVE-2024-28085: Properly neutralize escape sequences in wall to avoid potential account takeover. bsc1221831 Non-security issues fixed: Fix hang of lscpu -e bsc1225598 lscpu: Add more ARM cores bsc1223605 Document that...

8.4CVSS7.1AI score0.02242EPSS
Exploits3References12
SUSE Linux
SUSE Linux
•added 2025/01/31 2:4 a.m.•3 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2023-45288: Fixed unclosed connections when receiving too many headers in golang.org/x/net/http2 bsc1236518 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.9CVSS7.3AI score0.91969EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/01/30 2:50 p.m.•3 views

Security update for buildah

This update for buildah fixes the following issues: Update to version 1.35.5 CVE-2024-11218: Fix TOCTOU error when bind and cache mounts use "src" values. bsc1236272 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

8.7CVSS7.7AI score0.00358EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/30 2:33 p.m.•3 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2023-45288: Fixed unclosed connections when receiving too many headers in golang.org/x/net/http2 bsc1236518 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.9CVSS7.1AI score0.91969EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/01/28 1:3 p.m.•3 views

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-150600105 fixes several issues. The following security issues were fixed: CVE-2024-40921: net: bridge: mst: pass vlan group directly to brmstvlansetstate bsc1227784. CVE-2024-40920: net: bridge: mst: fix suspicious rcu usage in brmstsetstate bsc1227781...

7.8CVSS7.6AI score0.00352EPSS
Exploits1References40
SUSE Linux
SUSE Linux
•added 2025/01/27 12:3 p.m.•3 views

Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059153 fixes several issues. The following security issues were fixed: CVE-2024-36971: Fixed dstnegativeadvice race bsc1226324. CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6...

7.8CVSS8.5AI score0.02701EPSS
Exploits4References112
SUSE Linux
SUSE Linux
•added 2025/01/24 4:34 p.m.•3 views

Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.26+4 January 2025 CPU Security fixes: CVE-2025-21502: Enhance array handling JDK-8330045, bsc1236278 Other changes: JDK-8224624: Inefficiencies in CodeStrings::addcomment cause - timeouts JDK-8225045:...

6.3CVSS7.2AI score0.00971EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/24 4:34 p.m.•3 views

Security update for nodejs18

This update for nodejs18 fixes the following issues: Update to 18.20.6: CVE-2025-23085: Fixed HTTP2 memory leak on premature close and ERRPROTO bsc1236250 CVE-2025-22150: Fixed insufficiently random values used when defining the boundary for a multipart/form-data request in undici bsc1236258 Patc...

7.4CVSS7.3AI score0.01282EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/01/24 10:10 a.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-53095: smb: client: Fix use-after-free of network namespace bsc1233642. CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234853...

8.8CVSS8AI score0.02033EPSS
Exploits3References282
SUSE Linux
SUSE Linux
•added 2025/01/23 1:54 p.m.•3 views

Security update for docker-stable

This update for docker-stable fixes the following issues: CVE-2024-29018: Fixed external DNS request handling from 'internal' networks that could have led to data exfiltration bsc1234089. CVE-2024-23650: Fixed possibile BuildKit daemon crash via malicious BuildKit client or frontend request...

9.9CVSS6.7AI score0.16496EPSS
Exploits1References14
SUSE Linux
SUSE Linux
•added 2025/01/22 2:53 a.m.•3 views

Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, cont

This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.61.0: Release notes...

7.3AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/01/21 8:35 a.m.•3 views

Security update for dhcp

This update for dhcp fixes the following issues: Fixed dhcp not starting in case group nogroup is missing bsc1192020 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

7.2AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/01/20 1:26 p.m.•3 views

Security update for libqt5-qtwebkit

This update for libqt5-qtwebkit fixes the following issues: CVE-2024-40779: Fixed heap buffer overflow in computeSampleUsingLinearInterpolation bsc1228693 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.5CVSS7.9AI score0.00339EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/17 3:33 p.m.•3 views

Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005565 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637...

7.8CVSS8.6AI score0.00757EPSS
Exploits2References88
SUSE Linux
SUSE Linux
•added 2025/01/17 2:38 p.m.•3 views

Security update for redis7

This update for redis7 fixes the following issues: CVE-2024-51741: Fixed a bug where malformed ACL selectors can trigger a server panic when accessed. bsc1235386 CVE-2024-46981: Fixed a bug where lua scripts can be used to manipulate the garbage collector, leading to remote code execution...

8.8CVSS7AI score0.07802EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/01/17 11:59 a.m.•3 views

Security update for rsync

This update for rsync fixes the following issues: CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. bsc1234102 CVE-2024-12087: arbitrary file...

8.8CVSS7.4AI score0.09353EPSS
Exploits4References22
SUSE Linux
SUSE Linux
•added 2025/01/16 5:3 p.m.•3 views

Security update for python-Django

This update for python-Django fixes the following issues: CVE-2024-56374: Fixed lack of upper bound limit enforcement in strings when performing IPv6 validation that could lead to denial of service bsc1235856 Patch Instructions: To install this SUSE update use the SUSE recommended installation...

8.2CVSS6.7AI score0.01854EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/15 2:55 p.m.•3 views

Security update for rsync

This update for rsync fixes the following issues: NOTE: This update was retracted as one of the fixes was broken. A new update will be issued. CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client machine's file...

8.8CVSS7.3AI score0.09353EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2025/01/15 2:51 p.m.•3 views

Security update for rsync

This update for rsync fixes the following issues: NOTE: This update has been retracted due to a buggy security fix. A followup update will be provided. CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client...

8.8CVSS7.5AI score0.09353EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2025/01/15 9:9 a.m.•3 views

Security update for rsync

This update for rsync fixes the following issues: CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. bsc1234102 CVE-2024-12087: arbitrary file...

8.8CVSS7.3AI score0.09353EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2025/01/15 9:8 a.m.•3 views

Security update for rsync

This update for rsync fixes the following issues: CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. bsc1234102 CVE-2024-12087: arbitrary file...

8.8CVSS7.4AI score0.09353EPSS
Exploits4References16
SUSE Linux
SUSE Linux
•added 2025/01/15 9:7 a.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-26924: scsi: lpfc: Release hbalock before calling lpfcworkerwakeup bsc1225820. CVE-2024-27397: netfilter: nftables: use timestamp to check for set eleme...

8.8CVSS8.7AI score0.02033EPSS
Exploits1References672
SUSE Linux
SUSE Linux
•added 2025/01/14 5:33 p.m.•3 views

Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122201 fixes several issues. The following security issues were fixed: CVE-2022-48686: Fixed UAF when detecting digest errors bsc1226337. CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956...

7.8CVSS7.9AI score0.01166EPSS
Exploits3References100
SUSE Linux
SUSE Linux
•added 2025/01/14 5:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 42 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059153 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637...

7.8CVSS8.5AI score0.01166EPSS
Exploits3References108
SUSE Linux
SUSE Linux
•added 2025/01/14 7:33 a.m.•3 views

Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122216 fixes several issues. The following security issues were fixed: CVE-2022-48686: Fixed UAF when detecting digest errors bsc1226337. CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956...

7.8CVSS7.8AI score0.01166EPSS
Exploits3References80
SUSE Linux
SUSE Linux
•added 2025/01/10 2:49 p.m.•3 views

Security update for apptainer

This update for apptainer fixes the following issues: Update to version 1.3.6 CVE-2024-28180: Fixed an improper handling of highly compressed data in go-jose. bsc1235211 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

4.3CVSS6.4AI score0.01956EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/10 11:33 a.m.•3 views

Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: Update to version 0.0.20250108T191942 2025-01-08T19:19:42Z. Refs jscPED-11136 Go CVE Numbering Authority IDs added or updated with aliases: GO-2025-3371 GHSA-2r2v-9pf8-6342 GO-2025-3374 CVE-2025-22130 GHSA-j4jw-m6xr-fv6c Update to...

8.2CVSS6.8AI score0.75197EPSS
Exploits5References38
SUSE Linux
SUSE Linux
•added 2025/01/09 4:36 p.m.•3 views

Security update for gstreamer

This update for gstreamer fixes the following issues: CVE-2024-47606: Fixed an integer overflows in MP4/MOV demuxer and memory allocator that can lead to out-of-bounds writes. boo1234449 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7.8CVSS8.4AI score0.01344EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/01/09 4:7 p.m.•3 views

Security update for libmfx

This update for libmfx fixes the following issues: CVE-2023-48368: Fixed an improper input validation. bsc1226897 CVE-2023-45221: Fixed an improper buffer restrictions. bsc1226898 CVE-2023-22656: Fixed an out-of-bounds read. bsc1226899 CVE-2023-47282: Fixed an out-of-bounds write. bsc1226900...

5.9CVSS7.5AI score0.00281EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2025/01/06 9:2 a.m.•3 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2024-56326: sandbox breakout through indirect reference to format method in template file. bsc1234809 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch...

8.1CVSS7.3AI score0.005EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2024/12/26 7:42 p.m.•3 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2024-56378: Fixed out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc bsc1234795 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

4.8CVSS7.2AI score0.0062EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2024/12/24 12:40 p.m.•3 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2024-56378: out-of-bounds read within JBIG2Bitmap::combine, which can lead to an application crash. bsc1234795 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

4.8CVSS7.7AI score0.0062EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2024/12/23 7:42 p.m.•3 views

Security update for gdb

This update for gdb fixes the following issues: Mention changes in GDB 14: GDB now supports the AArch64 Scalable Matrix Extension 2 SME2, which includes a new 512 bit lookup table register named ZT0. GDB now supports the AArch64 Scalable Matrix Extension SME, which includes a new matrix register...

8.2CVSS7.5AI score0.00756EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2024/12/20 10:20 a.m.•3 views

Security update for emacs

This update for emacs fixes the following issues: CVE-2024-53920: Fixed arbitrary code execution via Lisp macro expansion bsc1233894 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

8.4CVSS8.1AI score0.00526EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2024/12/18 3:3 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47594: mptcp: never allow the PM to close a listener subflow bsc1226560. CVE-2022-48983: iouring: Fix a null-ptr-deref in iotctxexitcb bsc1231959...

8.5CVSS8.5AI score0.03301EPSS
Exploits3References1006
SUSE Linux
SUSE Linux
•added 2024/12/17 12:52 p.m.•3 views

Security update for ovmf

This update for ovmf fixes the following issues: CVE-2024-1298: MdeModulePkg: Potential UINT32 overflow in S3 ResumeCount bsc1225889 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

6CVSS6.9AI score0.00217EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2024/12/16 4:43 p.m.•3 views

Security update for libaom, libyuv

This update for libaom, libyuv fixes the following issues: libaom was updated to version 3.7.1: Bug Fixes: aomedia:3349: heap overflow when increasing resolution aomedia:3478: GCC 12.2.0 emits a -Wstringop-overflow warning on aom/av1/encoder/motionsearchfacade.c aomedia:3489: Detect encoder and...

7.5CVSS6.4AI score0.01165EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2024/12/16 1:17 p.m.•3 views

Security update for vim

This update for vim fixes the following issues: CVE-2024-47814: Fixed use-after-free when closing buffers in Vim bsc1231373 CVE-2024-43374: Fixed use-after-free in alistadd bsc1229238 Other fixes: Updated to version 9.1.0836 Patch Instructions: To install this SUSE update use the SUSE recommended...

4.6CVSS6AI score0.00349EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2024/12/16 1:16 p.m.•3 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2024-30251: Fixed infinite loop on specially crafted POST request bsc1223726. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...

7.5CVSS6.9AI score0.01085EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2024/12/13 8:16 p.m.•3 views

Security update for docker

This update for docker fixes the following issues: Update docker-buildx to v0.19.2. See upstream changelog online at . Some notable changelogs from the last update: Add a new toggle file /etc/docker/suse-secrets-enable which allows users to disable the SUSEConnect integration with Docker which...

9.9CVSS7.1AI score0.16496EPSS
Exploits0References26
SUSE Linux
SUSE Linux
•added 2024/12/13 3:34 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-53095: smb: client: Fix use-after-free of network namespace bsc1233642. CVE-2023-52778: mptcp: deal with large GSO size bsc1224948. CVE-2023-52920: bpf: suppo...

8.7CVSS7.9AI score0.03301EPSS
Exploits8References2242
SUSE Linux
SUSE Linux
•added 2024/12/13 3:32 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52524: net: nfc: llcp: Add lock when modifying device list bsc1220927. CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core bsc1232224...

7.8CVSS7.9AI score0.00809EPSS
Exploits1References118
SUSE Linux
SUSE Linux
•added 2024/12/13 3:20 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52524: Fixed possible corruption in nfc/llcp bsc1220927. CVE-2024-49925: fbdev: efifb: Register sysfs groups through driver core bsc1232224 CVE-2024-50089:...

7.8CVSS8.6AI score0.00809EPSS
Exploits1References118
SUSE Linux
SUSE Linux
•added 2024/12/11 8:31 a.m.•3 views

Security update for curl

This update for curl fixes the following issues: CVE-2024-11053: Fixed password leak used for the first host to the followed-to host under certain circumstances bsc1234068 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...

5.3CVSS6.9AI score0.01351EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2024/12/09 10:4 a.m.•3 views

Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059158 fixes several issues. The following security issues were fixed: CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. CVE-2021-47598: schcake: do not call...

7.8CVSS8.4AI score0.01166EPSS
Exploits2References92
SUSE Linux
SUSE Linux
•added 2024/12/06 3:40 p.m.•3 views

Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Updated to Java 8.0 Service Refresh 8 Fix Pack 35 with Oracle October 15 2024 CPU bsc1232064: - CVE-2024-21208: Fixed partial DoS in component Networking bsc1231702,JDK-8328286 - CVE-2024-21210: Fixed unauthorized update, insert or delete...

6.3CVSS6.5AI score0.01157EPSS
Exploits0References22
SUSE Linux
SUSE Linux
•added 2024/12/06 3:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024191 fixes several issues. The following security issues were fixed: CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. CVE-2021-47600: dm btree remove: fix use afte...

7.8CVSS8AI score0.01166EPSS
Exploits2References76
SUSE Linux
SUSE Linux
•added 2024/12/06 3:4 p.m.•3 views

Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122216 fixes several issues. The following security issues were fixed: CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. CVE-2024-35949: btrfs: make sure that WRITTEN is set on all metadata blocks bsc1229273. CVE-2024-35863: Fixed potential UA...

7.8CVSS7.8AI score0.01166EPSS
Exploits2References68
Total number of security vulnerabilities5000