Lucene search
K
SuseMost viewed

5411 matches found

SUSE Linux
SUSE Linux
•added 2025/09/23 7:55 a.m.•2 views

Security update for kernel-livepatch-MICRO-6-0_Update_7

This update for kernel-livepatch-MICRO-6-0Update7 fixes the following issues: CVE-2025-38177: kernel: schhfsc: make hfscqlennotify idempotent bsc1246356 CVE-2025-38109: net/mlx5: fix ECVF vports unload on shutdown flow bsc1245685 CVE-2025-38181: calipso: fix null-ptr-deref in calipsoreqset,delatt...

8.5CVSS7.1AI score0.00172EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2025/09/23 7:54 a.m.•2 views

Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: CVE-2025-38177: kernel: schhfsc: make hfscqlennotify idempotent bsc1246356 CVE-2025-38109: net/mlx5: fix ECVF vports unload on shutdown flow bsc1245685 CVE-2025-38181: calipso: fix null-ptr-deref in calipsoreqset,delatt...

8.5CVSS7AI score0.00824EPSS
Exploits3References24
SUSE Linux
SUSE Linux
•added 2025/09/23 7:53 a.m.•2 views

Security update for kernel-livepatch-MICRO-6-0_Update_5

This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: CVE-2025-38177: kernel: schhfsc: make hfscqlennotify idempotent bsc1246356 CVE-2025-38109: net/mlx5: fix ECVF vports unload on shutdown flow bsc1245685 CVE-2025-38181: calipso: fix null-ptr-deref in calipsoreqset,delatt...

8.5CVSS7.1AI score0.00824EPSS
Exploits3References24
SUSE Linux
SUSE Linux
•added 2025/09/22 11:54 a.m.•2 views

Security update for aide

This update for aide fixes the following issues: CVE-2025-54389: Fixed improper output neutralization bsc1247884 CVE-2025-54409: Fixed null pointer dereference after reading incorrectly encoded xattr attributes from database bsc1247885 Patch Instructions: To install this SUSE update use the SUSE...

6.9CVSS7AI score0.00216EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/09/19 5:43 p.m.•2 views

Security update for cairo

This update for cairo fixes the following issues: CVE-2025-50422: NULL pointer access in activeedgestotraps can lead to crash in Poppler bsc1247589. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternativel...

3.3CVSS6.6AI score0.00205EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/19 12:18 p.m.•2 views

Security update for bluez

This update for bluez fixes the following issues: CVE-2023-45866: keystroke injection and arbitrary command execution via HID device connections bsc1217877. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS7.4AI score0.07879EPSS
Exploits8References4
SUSE Linux
SUSE Linux
•added 2025/09/19 12:13 p.m.•2 views

Security update for frr

This update for frr fixes the following issues: CVE-2024-55553: excessive resource consumption may lead to denial of service due to repeated RIB revalidation when processing several RPKI updates bsc1235237. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

6.9CVSS7.1AI score0.00823EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/18 10:35 a.m.•2 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2024-52615: wide-area DNS uses constant source port for queries and can expose the Avahi-daemon to DNS spoofing attacks bsc1233421. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.3CVSS5.5AI score0.00574EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/18 4:36 a.m.•2 views

Security update for cups

This update for cups fixes the following issues: CVE-2024-47175: no validation of IPP attributes in ppdCreatePPDFromIPP2 when writing to a temporary PPD file allows for the injection of attacker-controlled data to the resulting PPD bsc1230932. CVE-2025-58060: no password check when AuthType is se...

9.3CVSS8.3AI score0.73062EPSS
Exploits7References14
SUSE Linux
SUSE Linux
•added 2025/09/18 12:10 a.m.•2 views

Security update for net-tools

This update for net-tools fixes the following issues: Security issues fixed: CVE-2025-46836: missing bounds check in getname may lead to a stack buffer overflow bsc1243581. Avoid unsafe use of memcpy in ifconfig bsc1248687. Prevent overflow in ax25 and netrom bsc1248687. Fix stack buffer overflow...

6.6CVSS7.3AI score0.00158EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/09/17 7:1 p.m.•2 views

Security update for raptor

This update for raptor fixes the following issues: CVE-2024-57823: Fixed integer underflow when normalizing a URI with the turtle parser bsc1235673. CVE-2024-57822: Fixed heap buffer overread when parsing triples with the nquads parser bsc1235674. Patch Instructions: To install this SUSE update u...

6.9CVSS7.3AI score0.00315EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/09/17 11:11 a.m.•2 views

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Updated CUDA variant to 580.82.07: CVE-2025-23277: Fixed access to memory outside bounds permitted under normal use cases in NVIDIA Display Driver bsc1247528. CVE-2025-23278: Fixed improper index validation by issuing a cal...

7.8CVSS7.3AI score0.00203EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2025/09/16 5:4 p.m.•2 views

Security update for expat

This update for expat fixes the following issues: expat was updated to version 2.7.1: Bug fixes: Restore event pointer behavior from Expat 2.6.4 that the fix to CVE-2024-8176 changed in 2.7.0; affected API functions are: - XMLGetCurrentByteCount - XMLGetCurrentByteIndex - XMLGetCurrentColumnNumbe...

8.7CVSS8.1AI score0.01569EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/16 6:28 a.m.•2 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: CVE-2025-6199: Fixed uninitialized memory leading to arbitrary memory leak bsc1245227 CVE-2025-7345: Fixed heap buffer overflow within the gdkpixbufjpegimageloadincrement function bsc1246114 Patch Instructions: To install this SUSE update use...

8.5CVSS7.6AI score0.01051EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/09/15 12:33 p.m.•2 views

Security update for krb5

This update for krb5 fixes the following issues: CVE-2025-3576: weakness in the MD5 checksum design allows for spoofing of GSSAPI-protected messages that are using RC4-HMAC-MD5 bsc1241219. Krb5, as a very old protocol, supported quite a number of ciphers that are not longer up to current...

8.2CVSS7AI score0.00276EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/15 9:19 a.m.•2 views

Security update for jasper

This update for jasper fixes the following issues: CVE-2025-8835: missing range check in the JPEG-2000 JPC Encoder leads to assertion failure and crash when processing a malformed JPEG2000 image with an invalid cblkwidth parameter bsc1247904. CVE-2025-8836: out-of-bounds array indexing in functio...

6.9CVSS7.2AI score0.00205EPSS
Exploits3References12
SUSE Linux
SUSE Linux
•added 2025/09/13 9:9 p.m.•2 views

Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002360 fixes several issues. The following security issue was fixed: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...

8.5CVSS6.7AI score0.00153EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/12 1:40 p.m.•2 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.4CVSS7.9AI score0.01345EPSS
Exploits8References256
SUSE Linux
SUSE Linux
•added 2025/09/12 12:27 p.m.•2 views

Security update for python-eventlet

This update for python-eventlet fixes the following issues: CVE-2025-58068: improper handling of HTTP trailer sections in WSGI parser leads to HTTP request smuggling bsc1248994. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

6.5CVSS6.7AI score0.00363EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/12 12:24 p.m.•2 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2025-53643: request smuggling vulnerability due to incorrect parsing trailer sections of an HTTP request bsc1246517. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

6.3CVSS7.5AI score0.00297EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/12 12:19 p.m.•2 views

Security update for python-h2

This update for python-h2 fixes the following issues: CVE-2025-57804: Fixed HTTP Request Smuggling due to illegal characters in headers bsc1248737 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

6.9CVSS6.7AI score0.0161EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/11 3:47 p.m.•2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_10

This update for kernel-livepatch-MICRO-6-0-RTUpdate10 fixes the following issues: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350 CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/11 3:45 p.m.•2 views

Security update for kernel-livepatch-MICRO-6-0_Update_9

This update for kernel-livepatch-MICRO-6-0Update9 fixes the following issues: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

8.5CVSS7.1AI score0.00153EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/11 12:38 p.m.•2 views

Security update for regionServiceClientConfigEC2

This update for regionServiceClientConfigEC2 contains the following fixes: Update to version 5.0.0. bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update dependency to accomodate metadata binary package name...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/11 10:29 a.m.•2 views

Security update for vim

This update for vim fixes the following issues: CVE-2025-53906: Fixed malicious zip archive causing path traversal bsc1246602 CVE-2025-53905: Fixed malicious tar archive causing path traversal bsc1246604 CVE-2025-55157: Fixed use-after-free in internal tuple reference management bsc1247938...

6.7CVSS7.4AI score0.00731EPSS
Exploits2References16
SUSE Linux
SUSE Linux
•added 2025/09/11 10:22 a.m.•2 views

Security update for postgresql16

This update for postgresql16 fixes the following issues: Upgraded to 16.10: CVE-2025-8713: Fixed optimizer statistics exposing sampled data within a view, partition, or child table bsc1248120 CVE-2025-8714: Fixed untrusted data inclusion in pgdump allows superuser of origin server to execute...

8.8CVSS8.2AI score0.00709EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2025/09/10 4:34 p.m.•2 views

Security update for the Linux Kernel (Live Patch 59 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059211 fixes one issue. The following security issue was fixed: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

8.5CVSS7.2AI score0.00153EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/10 12:35 p.m.•2 views

Security update for the Linux Kernel (Live Patch 69 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122261 fixes several issues. The following security issues were fixed: CVE-2025-38000: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue bsc1245775. CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To...

8.5CVSS7.6AI score0.00179EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/09/10 12:35 p.m.•2 views

Security update for the Linux Kernel (Live Patch 66 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122250 fixes several issues. The following security issues were fixed: CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237930. CVE-2025-38000: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue bsc1245775. CVE-2025-38212: ipc: fi...

8.5CVSS7.6AI score0.00259EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/09/10 12:34 p.m.•2 views

Security update for the Linux Kernel (Live Patch 61 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122231 fixes several issues. The following security issues were fixed: CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237930. CVE-2025-38000: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue bsc1245775. CVE-2024-47674: mm: avo...

8.5CVSS7.7AI score0.00259EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2025/09/09 10:25 a.m.•2 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077...

9CVSS7.5AI score0.04065EPSS
Exploits7References28
SUSE Linux
SUSE Linux
•added 2025/09/09 10:22 a.m.•2 views

Security update for curl

This update for curl fixes the following issues: CVE-2025-5399: libcurl can possibly get trapped in an endless busy-loop when processing specially crafted packets bsc1243933. CVE-2025-5025: No QUIC certificate pinning with wolfSSL bsc1243706. CVE-2025-4947: QUIC certificate check skip with wolfSS...

8.3CVSS7.1AI score0.01226EPSS
Exploits4References18
SUSE Linux
SUSE Linux
•added 2025/09/09 10:20 a.m.•2 views

Security update for sqlite3

This update for sqlite3 fixes the following issues: CVE-2025-6965: Fixed integer truncation bsc1246597. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your...

7.7CVSS7.4AI score0.73495EPSS
Exploits3References4
SUSE Linux
SUSE Linux
•added 2025/09/08 9:13 p.m.•2 views

Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001044 fixes several issues. The following security issue was fixed: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...

8.5CVSS8.4AI score0.00153EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/08 1:48 p.m.•2 views

Security update for gstreamer

This update for gstreamer fixes the following issues: CVE-2024-47606: Avoid integer overflow when allocating sysmem bsc1234449. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.8CVSS8.2AI score0.01344EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/08 1:38 p.m.•2 views

Security update for firebird

This update for firebird fixes the following issues: CVE-2017-11509: authenticated remote code execution via the definition external functions that don't match the original definition of the entry point bsc1087421. Patch Instructions: To install this SUSE update use the SUSE recommended...

9.9CVSS8.1AI score0.06224EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/09/05 1:29 p.m.•2 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2025-4945: Fixed Integer Overflow in Cookie Expiration Date Handling in libsoup bsc1243314. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternativel...

3.7CVSS6.2AI score0.00538EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/05 12:55 p.m.•2 views

Security update for aide

This update for aide fixes the following issues: CVE-2025-54389: Escape control characters in report and log output bsc1247884. CVE-2025-54409: Fix null pointer dereference after reading incorrectly encoded xattr attributes from database bsc1247885. Patch Instructions: To install this SUSE update...

6.9CVSS7AI score0.00216EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/09/05 12:16 p.m.•2 views

Security update for opensc

This update for opensc fixes the following issues: CVE-2023-5992: Side-channel leaks while stripping encryption PKCS1 padding bsc1219386. CVE-2024-8443: Heap buffer overflow in OpenPGP driver when generating key bsc1230364. CVE-2024-45620: Incorrect handling of the length of buffers or files in...

4.4CVSS6.3AI score0.01156EPSS
Exploits1References32
SUSE Linux
SUSE Linux
•added 2025/09/04 10:55 a.m.•2 views

Security update for rav1e

This update for rav1e fixes the following issues: CVE-2024-58266: shlex: Fixed certain bytes allowed to appear unquoted and unescaped in command arguments bsc1247207 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

3.6CVSS6.6AI score0.0078EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/04 10:48 a.m.•2 views

Security update for gimp

This update for gimp fixes the following issues: CVE-2025-2760: lack of proper validation of user-supplied data in DDS parser can lead to integer overflow and remote code execution bsc1241690. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

7.1CVSS8.6AI score0.06312EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/03 4:6 p.m.•2 views

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Updated CUDA variant to 580.65.06: CVE-2025-23277: Fixed access memory outside bounds permitted under normal use cases in NVIDIA Display Driver bsc1247528 CVE-2025-23278: Fixed improper index validation by issuing a call wi...

7.8CVSS7.2AI score0.00203EPSS
Exploits0References46
SUSE Linux
SUSE Linux
•added 2025/09/03 12:48 p.m.•2 views

Security update for python-aiohttp

This update for python-aiohttp fixes the following issues: CVE-2025-53643: Fixed request smuggling due to incorrect parsing of chunked trailer section bsc1246517 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS7.4AI score0.00297EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/01 12:46 p.m.•2 views

Security update for git

This update for git fixes the following issues: Updated to 2.43.7 jscPED-13447: CVE-2025-27613: Fixed arbitrary writable file creation and truncation in Gitk bsc1245938 CVE-2025-27614: Fixed arbitrary script execution via repo clonation in Gitk bsc1245939 CVE-2025-46835: Fixed arbitrary writable...

8.5CVSS8.7AI score0.02775EPSS
Exploits9References22
SUSE Linux
SUSE Linux
•added 2025/09/01 10:48 a.m.•2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_9

This update for kernel-livepatch-MICRO-6-0-RTUpdate9 fixes the following issues: CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350 CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the...

8.5CVSS7.8AI score0.002EPSS
Exploits0References14
SUSE Linux
SUSE Linux
•added 2025/09/01 10:44 a.m.•2 views

Security update for kernel-livepatch-MICRO-6-0_Update_2

This update for kernel-livepatch-MICRO-6-0Update2 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/01 7:3 a.m.•2 views

Security update for libarchive

This update for libarchive fixes the following issues: CVE-2025-5916, Fixed integer overflow while reading warc files at archivereadsupportformatwarc.c bsc1244270 CVE-2025-5914: Fixed double free due to an integer overflow in the archivereadformatrarseekdata function bsc1244272 Patch Instructions...

7.3CVSS7AI score0.00326EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/08/29 3:12 p.m.•2 views

Security update for postgresql15

This update for postgresql15 fixes the following issues: Upgrade to 15.14: CVE-2025-8713: optimizer statistics can expose sampled data within a view, partition, or child table bsc1248120. CVE-2025-8714: untrusted data inclusion in pgdump lets superuser of origin server execute arbitrary code in...

8.8CVSS7.8AI score0.00709EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 2025/08/29 2:48 p.m.•2 views

Security update for kernel-livepatch-MICRO-6-0_Update_6

This update for kernel-livepatch-MICRO-6-0Update6 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS7.2AI score0.002EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/08/29 2:1 p.m.•2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_8

This update for kernel-livepatch-MICRO-6-0-RTUpdate8 fixes the following issues: CVE-2025-38079: crypto: algifhash - fix double free in hashaccept bsc1245218 CVE-2025-38083: netsched: prio: fix a race in priotune bsc1245350 CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350...

8.5CVSS8AI score0.002EPSS
Exploits0References16
Total number of security vulnerabilities5000