Lucene search
K
SuseMost viewed

5411 matches found

SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for buildah

This update for buildah fixes the following issues CVE-2026-25680,CVE-2026-25681,CVE-2026-27136,CVE-2026-42502,CVE-2026-42506: golang.org/x/net/html: multiple issues when parsing HTML files bsc1267179. CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input...

9.1CVSS7AI score0.00868EPSS
Exploits2References58
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for exiv2-0_26

This update for exiv2-026 fixes the following issues CVE-2025-54080: out-of-bounds read in Exiv2::EpsImage::writeMetadata when writing metadata into a crafted image file bsc1248962. CVE-2026-25884: out-of-bounds read in CrwMap::decode0x0805 bsc1259083. CVE-2026-27596: integer overflow in...

8.3CVSS5.8AI score0.00367EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for curl

This update for curl fixes the following issues CVE-2026-4873: connection reuse ignores TLS requirement bsc1262631. CVE-2026-5545: wrong reuse of HTTP Negotiate connection bsc1262632. CVE-2026-5773: wrong reuse of SMB connection bsc1262633. CVE-2026-6253: proxy credentials leak over redirect-to...

8.3CVSS7.1AI score0.00639EPSS
Exploits6References24
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for libsoup

This update for libsoup fixes the following issue CVE-2026-1801: HTTP Request Smuggling in soupfilterinputstreamreadline bsc1257649. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

6.9CVSS5.8AI score0.00376EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for pacemaker

This update for pacemaker fixes the following issue CVE-2026-10649: denial of service via integer overflow in remote message decompression bsc1268381. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.5CVSS5.9AI score0.0044EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for cifs-utils

This update for cifs-utils fixes the following issue CVE-2026-12505: cifs.upcall local privilege escalation via requestkey-controlled namespace switch and NSS loading bsc1267389. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate o...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for sg3_utils

This update for sg3utils fixes the following issue Update to version 1.47+16.aad0b411: sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for sg3_utils

This update for sg3utils fixes the following issue Update to version 1.44763+23.769c9b5b: sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for sg3_utils

This update for sg3utils fixes the following issue Update to version 1.43+49.47792c16: sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added yesterday•2 views

Security update for sg3_utils

This update for sg3utils fixes the following issue sginq: --export output conformance for SCSI name string and ATA fields bsc1267823. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

5.8AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2026/04/15 2:33 p.m.•2 views

Security update for bind

This update for bind fixes the following issues: CVE-2026-1519: high CPU load during insecure delegation validation due to excessive NSEC3 iterations bsc1260805. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS7.4AI score0.01545EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/15 1:43 p.m.•2 views

Security update for nfs-utils

This update for nfs-utils fixes the following issue: Security fixes: CVE-2025-12801: rpc.mountd allows a NFSv3 client to escalate their privileges and access subdirectories and subtrees of an exported directory bsc1259204. Other fixes: Split from nfs-utils into its own spec and changelog file...

7.1CVSS5.8AI score0.00462EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2026/04/15 1:37 p.m.•2 views

Security update for rubygem-bundler

This update for rubygem-bundler fixes the following issues: Updated to version 2.2.34. CVE-2020-36327: Bundler chooses a dependency source based on the highest gem version number, which means that a rogue gem found at a public source may be chosen bsc1185842 CVE-2021-43809: rubygem-bundler: remot...

8.8CVSS6AI score0.06307EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2026/04/13 8:2 p.m.•2 views

Security update for openvswitch

This update for openvswitch fixes the following issues: CVE-2026-34956: invalid memory access via crafted FTP payloads in userspace conntrack flows specifying the FTP alg handler bsc1261273. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS5.8AI score0.00405EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 4:3 p.m.•2 views

Security update for tigervnc

This update for tigervnc fixes the following issues: CVE-2026-34352: Fixed permissions to prevent other users from observing the screen, or modifying what is sent to the client. bsc1260871 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7CVSS5.8AI score0.00247EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 4:1 p.m.•2 views

Security update for tigervnc

This update for tigervnc fixes the following issues: CVE-2026-34352: Fixed permissions to prevent other users from observing the screen, or modifying what is sent to the client. bsc1260871 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7CVSS5.8AI score0.00247EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/13 12:42 p.m.•2 views

Security update for the Linux Kernel (Live Patch 66 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.250 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2025-39973: i40e: add validation for ringlen param...

8.7CVSS5.8AI score0.00204EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/04/13 8:10 a.m.•2 views

Security update for openssl-1_0_0

This update for openssl-100 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00981EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2026/04/12 7:4 p.m.•2 views

Security update for the Linux Kernel (Live Patch 68 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.258 fixes various security issues The following security issues were fixed: CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. CVE-2025-39973: i40e: add validation for ringlen param...

8.7CVSS5.8AI score0.00204EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2026/04/12 10:34 a.m.•2 views

Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.25 fixes various security issues The following security issues were fixed: CVE-2025-71120: SUNRPC: svcauthgss: avoid NULL deref on zero length gsstoken in gssreadproxyverf bsc1256780. CVE-2026-22999: net/sched: schqfq: do not free...

8.7CVSS5.8AI score0.00344EPSS
Exploits6References20
SUSE Linux
SUSE Linux
•added 2026/04/10 2:4 p.m.•2 views

Security update for the Linux Kernel (Live Patch 32 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.127 fixes various security issues The following security issues were fixed: CVE-2025-71120: SUNRPC: svcauthgss: avoid NULL deref on zero length gsstoken in gssreadproxyverf bsc1256780. CVE-2026-22999: net/sched: schqfq: do not fre...

8.7CVSS6AI score0.00204EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2026/04/10 11:36 a.m.•2 views

Security update for cockpit-podman

This update for cockpit-podman fixes the following issues: CVE-2026-25547: brace-expansion: unbounded brace range expansion can lead to excessive CPU and memory consumption and may crash a Node.js process bsc1257836. CVE-2026-26996: minimatch: ReDoS when glob pattern contains many consecutive...

8.7CVSS5.8AI score0.00519EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2026/04/09 9:4 a.m.•2 views

Security update for the Linux Kernel (Live Patch 48 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.194 fixes one security issue The following security issue was fixed: CVE-2026-23209: macvlan: fix error recovery in macvlancommonnewlink bsc1258784. Patch Instructions: To install this SUSE update use the SUSE recommended...

8.5CVSS6.1AI score0.00119EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/09 2:36 a.m.•2 views

Security update for the Linux Kernel (Live Patch 40 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.164 fixes various security issues The following security issues were fixed: CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689...

8.7CVSS6.6AI score0.00204EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/04/09 1:53 a.m.•2 views

Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.70 fixes various security issues The following security issues were fixed: CVE-2025-39973: i40e: add validation for ringlen param bsc1252036. CVE-2025-40018: ipvs: Defer ipvsftp unregister during netns cleanup bsc1252689...

8.7CVSS6.6AI score0.00344EPSS
Exploits6References32
SUSE Linux
SUSE Linux
•added 2026/04/08 7:12 a.m.•2 views

Security update for bind

This update for bind fixes the following issues: CVE-2026-1519: high CPU load during insecure delegation validation due to excessive NSEC3 iterations bsc1260805. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS7.3AI score0.01545EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/02 3:8 p.m.•2 views

Security update for libsoup2

This update for libsoup2 fixes the following issue: CVE-2026-0716: improper bounds handling may allow out-of-bounds read bsc1256418. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

8.3CVSS5.9AI score0.00257EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/04/02 8:57 a.m.•2 views

Security update for python-tornado

This update for python-tornado fixes the following issues: CVE-2026-31958: parsing large multipart bodies with many parts can cause a denial of service bsc1259553. incomplete validation of cookie attributes allows for injection of user-controlled values in other cookie attributes bsc1259630. Patc...

8.7CVSS5.9AI score0.00375EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/04/02 8:29 a.m.•2 views

Security update for wireshark

This update for wireshark fixes the following issues: Update Wireshark to version 4.6.4 jscPED-15400. CVE-2024-9780: ITS dissector crash bsc1231475. CVE-2024-9781: AppleTalk and RELOAD Framing dissector crash bsc1231476. CVE-2024-11595: Loop with Unreachable Exit Condition 'Infinite Loop' in...

7.8CVSS6.7AI score0.00306EPSS
Exploits12References74
SUSE Linux
SUSE Linux
•added 2026/03/31 10:2 p.m.•2 views

Security update for python-tornado

This update for python-tornado fixes the following issues: CVE-2025-67724: missing validation of the supplied reason phrase bsc1254903. CVE-2025-67725: Denial of Service DoS via maliciously crafted HTTP request caused by the HTTPHeaders.add method bsc1254905. CVE-2026-31958: parsing large multipa...

8.7CVSS6.4AI score0.00396EPSS
Exploits0References14
SUSE Linux
SUSE Linux
•added 2026/03/30 11:21 a.m.•2 views

Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools

This update fixes the following issues: golang-github-prometheus-prometheus: CVE-2026-27606: Fix arbitrary file write via path traversal in rollup bsc1258893 Bump rollup to version 4.59.0 Drop SLE 12 support jscPED-15474 CVE-2026-25547: Fix unbounded brace range expansion leading to excessive CPU...

9.8CVSS6.8AI score0.01402EPSS
Exploits2References52
SUSE Linux
SUSE Linux
•added 2026/03/27 1:33 a.m.•2 views

Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.3 fixes various security issues The following security issues were fixed: CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds bsc1257629. CVE-2025-38488: smb: client: fix use-after-free in...

8.7CVSS6.8AI score0.00278EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/03/26 5:51 p.m.•2 views

Security update for xen

This update for xen fixes the following issues: CVE-2026-23554: xen: Use after free of paging structures in EPT bsc1259247, XSA-480 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.8CVSS5.9AI score0.00128EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/26 5:34 p.m.•2 views

Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.65 fixes various security issues The following security issues were fixed: CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. CVE-2025-40258: mptcp: fix race condition in...

8.7CVSS5.9AI score0.00278EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/26 12:42 p.m.•2 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-21738: ata: libata-sff: Ensure that we cannot write outside the allocated buffer bsc1238917. CVE-2025-40242: gfs2: Fix unlikely race in gdlmputlock bsc1255075...

8.5CVSS6AI score0.00192EPSS
Exploits0References58
SUSE Linux
SUSE Linux
•added 2026/03/26 8:57 a.m.•2 views

Security update for nghttp2

This update for nghttp2 fixes the following issues: CVE-2026-27135: Assertion failure due to missing state validation can lead to DoS bsc1259845. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...

8.2CVSS5.8AI score0.00775EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/26 7:34 a.m.•2 views

Security update for the Linux Kernel (Live Patch 33 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.130 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2023-53781: smc: Fix use-after-free in tcpwritetimerhandl...

8.7CVSS6.8AI score0.00196EPSS
Exploits0References36
SUSE Linux
SUSE Linux
•added 2026/03/24 3:11 a.m.•2 views

Security update for util-linux

This update for util-linux fixes the following issues: Security issue: CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859. Non security issues: recognize fuse "portal" as a virtual file system bsc1234736. fdisk: fix possible partition overlay and da...

6.3CVSS5.8AI score0.00436EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/03/23 2:4 p.m.•2 views

Security update for the Linux Kernel (Live Patch 76 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.290 fixes various security issues The following security issues were fixed: CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. CVE-2022-50756: nvme-pci: fix mempool alloc size bsc1256217...

8.7CVSS6.7AI score0.00206EPSS
Exploits0References24
SUSE Linux
SUSE Linux
•added 2026/03/20 1:41 p.m.•2 views

Security update for

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.13 fixes various security issues The following security issues were fixed: CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. CVE-2025-40258: mptcp: fix race condition in...

8.7CVSS6.4AI score0.00278EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2026/03/10 8:35 a.m.•2 views

Security update for util-linux

This update for util-linux fixes the following issues: CVE-2026-3184: Fix full hostname usage for PAM to ensure correct access control for "login -h" bsc1258859. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS5.8AI score0.00436EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/03/09 3:33 p.m.•2 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-24481: Possible Heap Information Disclosure in PSD ZIP Decompression bsc1258743. CVE-2026-24484: denial of service vulnerability via multi-layer nested MVG to SVG conversion bsc1258790. CVE-2026-24485: denial of service via malforme...

9.2CVSS6AI score0.00671EPSS
Exploits0References124
SUSE Linux
SUSE Linux
•added 2026/03/03 3:15 p.m.•2 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2026-1467: lack of input sanitization can lead to unintended or unauthorized HTTP requests bsc1257398. CVE-2026-1539: proxy authentication credentials leaked via the Proxy-Authorization header when handling HTTP redirects bsc1257441...

8.8CVSS5.9AI score0.00423EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2026/03/03 1:10 p.m.•2 views

Security update for postgresql14

This update for postgresql14 fixes the following issues: Update to version 14.22 bsc1258754. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to...

8.8CVSS6.5AI score0.01208EPSS
Exploits3References18
SUSE Linux
SUSE Linux
•added 2026/03/01 7:33 p.m.•2 views

Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.133 fixes various security issues The following security issues were fixed: CVE-2023-54142: gtp: Fix use-after-free in gtpencapdestroy bsc1256097. CVE-2025-38129: pagepool: fix use-after-free in pagepoolrecycleinring bsc1258139...

8.5CVSS6.9AI score0.00195EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2026/02/16 9:4 a.m.•2 views

Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.11 fixes various security issues The following security issues were fixed: CVE-2025-39742: RDMA: hfi1: fix possible divide-by-zero in findhwthreadmask bsc1249480. CVE-2025-40129: sunrpc: fix null pointer dereference on zero-length...

8.7CVSS5.4AI score0.00184EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2026/02/11 4:15 p.m.•2 views

Security update for munge

This update for munge fixes the following issues: CVE-2026-25506: buffer overflow in message unpacking bsc1257651. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed f...

7.7CVSS5.8AI score0.00302EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/11 8:30 a.m.•2 views

Security update for python313-wheel

This update for python313-wheel fixes the following issues: CVE-2026-24049: Fixed absent path sanitization can cause arbitrary file permission modification bsc1257100. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.7CVSS5.7AI score0.00311EPSS
Exploits2References4
SUSE Linux
SUSE Linux
•added 2026/02/11 8:29 a.m.•2 views

Security update for python-brotlipy

This update for python-brotlipy fixes the following issues: Add max length decompression bsc1254867, bsc1256017 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for...

5.5AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2026/02/03 1:9 p.m.•2 views

Security update for python-urllib3

This update for python-urllib3 fixes the following issues: CVE-2025-66471: excessive resource consumption via decompression of highly compressed data in Streaming API bsc1254867. CVE-2025-66418: resource exhaustion via unbounded number of links in the decompression chain bsc1254866. Patch...

6.9CVSS5.3AI score0.00622EPSS
Exploits0References8
Total number of security vulnerabilities5000