Lucene search
K
SuseMost viewed

5440 matches found

SUSE Linux
SUSE Linux
•added 2025/06/25 6:3 p.m.•2 views

Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002322 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708...

8.5CVSS8AI score0.00272EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2025/06/25 11:44 a.m.•2 views

Security update for perl-File-Find-Rule

This update for perl-File-Find-Rule fixes the following issues: CVE-2011-10007: Fixed arbitrary code execution when grep encounters a crafted filename bsc1244148. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.6CVSS7.3AI score0.00736EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/25 8:16 a.m.•2 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-2784: Fixed Heap buffer over-read in skipinsignificantspace when sniffing content bsc1240750 CVE-2025-32050:Fixed Integer overflow in appendparamquoted bsc1240752 CVE-2025-32051:Fixed Segmentation fault when parsing malformed data URI...

8.8CVSS8AI score0.00798EPSS
Exploits1References64
SUSE Linux
SUSE Linux
•added 2025/06/25 5:33 a.m.•2 views

Security update for the Linux Kernel (Live Patch 55 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059198 fixes one issue. The following security issue was fixed: CVE-2022-49545: ALSA: usb-audio: Cancel pending work at closing a MIDI substream bsc1238730. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods...

7.3CVSS5.9AI score0.00254EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/25 4:34 a.m.•2 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2025-22868: golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2 bsc1239192. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

8.7CVSS7.3AI score0.00804EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/24 2:52 p.m.•2 views

Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2capsockcreate bsc1235062 CVE-2024-56582: btrfs: fix use-after-free in btrfsencodedreadendio bsc1235129 CVE-2024-56601: net: inet: do not...

8.5CVSS7.4AI score0.00236EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/06/24 2:48 p.m.•2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_4

This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231 CVE-2024-56582: btrfs: fix use-after-free in btrfsencodedreadendio bsc1235129 CVE-2024-56605: Bluetooth: L2CAP: do not leave...

8.5CVSS7.4AI score0.00236EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/06/24 2:48 p.m.•2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_4

This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231 CVE-2024-56582: btrfs: fix use-after-free in btrfsencodedreadendio bsc1235129 CVE-2024-56605: Bluetooth: L2CAP: do not leave...

8.5CVSS7.4AI score0.00236EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/06/24 2:33 p.m.•2 views

Security update for the Linux Kernel (Live Patch 60 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122228 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708...

8.5CVSS7.6AI score0.00272EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2025/06/24 12:8 p.m.•2 views

Security update for python311

This update for python311 fixes the following issues: Security issues fixed: CVE-2024-6923: Fixed email header injection due to unquoted newlines bsc1228780 CVE-2024-0397: Fixed memory race condition in ssl.SSLContext certificate store methods bsc1226447 CVE-2024-4032: Fixed incorrect IPv4 and IP...

7.5CVSS7.6AI score0.01034EPSS
Exploits0References18
SUSE Linux
SUSE Linux
•added 2025/06/24 11:33 a.m.•2 views

Security update for the Linux Kernel (Live Patch 64 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122244 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2022-49545: ALSA: usb-audio: Cancel pending work at closing a MIDI substream bsc1238730...

8.5CVSS7.6AI score0.00262EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/06/24 9:34 a.m.•2 views

Security update for the Linux Kernel RT (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001014 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708...

8.5CVSS7.6AI score0.00272EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2025/06/23 9:20 p.m.•2 views

Security update for the Linux Kernel RT (Live Patch 7 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001023 fixes one issue. The following security issue was fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaS...

8.5CVSS7.4AI score0.00236EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/23 8:3 p.m.•2 views

Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708...

8.5CVSS7.6AI score0.00272EPSS
Exploits0References40
SUSE Linux
SUSE Linux
•added 2025/06/23 8:3 p.m.•2 views

Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-150600108 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing bsc1233708...

8.5CVSS7.6AI score0.00272EPSS
Exploits0References44
SUSE Linux
SUSE Linux
•added 2025/06/23 1:47 p.m.•2 views

Security update for screen

This update for screen fixes the following issues: CVE-2025-46802: Fixed temporary chown of users' TTY to mode 0666 allowing PTY hijacking bsc1242269 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...

6CVSS7.3AI score0.0019EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/21 9:5 a.m.•2 views

Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: CVE-2025-47183: Fixed out-of-bounds read in MOV/MP4 demuxer bsc1244406. CVE-2025-47219: Fixed out-of-bounds read in MOV/MP4 demuxer bsc1244405. CVE-2024-47540: Fixed uninitialized stack memory in Matroska/WebM demuxer bsc1234421...

7.8CVSS9.5AI score0.01005EPSS
Exploits2References12
SUSE Linux
SUSE Linux
•added 2025/06/20 2:28 p.m.•2 views

Security update for iputils

This update for iputils fixes the following issues: CVE-2025-48964: Fixed integer overflow in ping statistics via zero timestamp bsc1243772 Fix ping on s390x printing invalid ttl bsc1243284 CVE-2025-47268: Fixed integer overflow in RTT calculation can lead to undefined behavior bsc1242300 Patch...

6.5CVSS7.6AI score0.0141EPSS
Exploits1References10
SUSE Linux
SUSE Linux
•added 2025/06/20 12:42 p.m.•2 views

Security update for perl

This update for perl fixes the following issues: CVE-2025-40909: do not change the current directory when cloning an open directory handle bsc1244079 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...

6.2CVSS7.2AI score0.00368EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/20 12:33 p.m.•2 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2025-22868: golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2 bsc1239192. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

8.7CVSS7.4AI score0.00804EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/20 11:4 a.m.•2 views

Security update for nodejs20

This update for nodejs20 fixes the following issues: Update to 20.19.2: CVE-2025-23166: improper error handling in async cryptographic operations crashes process bsc1243218. CVE-2025-23167: improper HTTP header block termination in llhttp bsc1243220. CVE-2025-23165: add missing call to...

8.2CVSS6.7AI score0.00763EPSS
Exploits1References14
SUSE Linux
SUSE Linux
•added 2025/06/20 10:41 a.m.•2 views

Security update for libblockdev

This update for libblockdev fixes the following issues: CVE-2025-6019: Suppress privilege escalation during xfs fs resize bsc1243285. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

7.3CVSS7.6AI score0.00423EPSS
Exploits18References4
SUSE Linux
SUSE Linux
•added 2025/06/20 10:38 a.m.•2 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2025-27587: timing side-channel vulnerability in the P-384 implementation when used with ECDSA bsc1243459. CVE-2024-12797: Fixed that RFC7250 handshakes with unauthenticated servers don't abort as expected. bsc1236599 CVE-2024-13176: Fixed...

8.8CVSS7.5AI score0.02357EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/06/20 9:40 a.m.•2 views

Security update for nodejs20

This update for nodejs20 fixes the following issues: Update to 20.19.2: CVE-2025-23166: improper error handling in async cryptographic operations crashes process bsc1243218. CVE-2025-23167: improper HTTP header block termination in llhttp bsc1243220. CVE-2025-23165: add missing call to...

8.2CVSS6.8AI score0.00763EPSS
Exploits1References14
SUSE Linux
SUSE Linux
•added 2025/06/20 9:40 a.m.•2 views

Security update for ghc-pandoc

This update for ghc-pandoc fixes the following issues: CVE-2024-38526: Fixed Polyfill Supply Chain Attack bsc1227690. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command liste...

5.4CVSS9.7AI score0.03832EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/20 9:3 a.m.•2 views

Security update for ignition

This update for ignition fixes the following issues: CVE-2025-22868: golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2 bsc1239192. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...

8.7CVSS7.3AI score0.00804EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/19 3:17 p.m.•2 views

Security update for apache2-mod_security2

This update for apache2-modsecurity2 fixes the following issues: CVE-2025-47947: Fixed denial of service through sanitiseMatchedBytes bsc1243978. CVE-2025-48866: Fixed denial of service via excessive number of arguments in sanitiseArg bsc1243976. Patch Instructions: To install this SUSE update us...

8.7CVSS7.3AI score0.0076EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/06/19 3:17 p.m.•2 views

Security update for apache2-mod_security2

This update for apache2-modsecurity2 fixes the following issues: CVE-2025-47947: Fixed denial of service through sanitiseMatchedBytes bsc1243978. CVE-2025-48866: Fixed denial of service via excessive number of arguments in sanitiseArg bsc1243976. Patch Instructions: To install this SUSE update us...

8.7CVSS7.8AI score0.0076EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/06/19 8:55 a.m.•2 views

Security update for pam

This update for pam fixes the following issues: CVE-2025-6020: pamnamespace: convert functions that may operate on a user-controlled path to operate on file descriptors instead of absolute path. And keep the bind-mount protection from protectmount as a defense in depthmeasure. bsc1244509 Patch...

7.8CVSS7.2AI score0.0039EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/19 8:35 a.m.•2 views

Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issues: CVE-2024-47538: Fixed stack-buffer overflow in vorbishandleidentificationpacket bnc1234415 CVE-2024-47600: Fixed out-of-bounds read in gst-discoverer-1.0 commandline tool bnc1234453 CVE-2024-47615: Fixed out-of-bounds write in Ogg...

7.8CVSS8AI score0.01298EPSS
Exploits5References40
SUSE Linux
SUSE Linux
•added 2025/06/19 7:14 a.m.•2 views

Security update for s390-tools

This update for s390-tools fixes the following issues: Security issues fixed: CVE-2025-3416: Fixed Use-After-Free in Md::fetch and Cipher::fetch in rust-openssl crate. bsc1242622 Other issues: Added the new IBM z17 9175 processor type. Patch Instructions: To install this SUSE update use the SUSE...

6.3CVSS7.2AI score0.00452EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/06/19 7:14 a.m.•2 views

Security update for gdm

This update for gdm fixes the following issues: CVE-2025-6018: pam.d: removes pamenv from auth stack for security reason bsc1243226. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

8.6CVSS7.4AI score0.00957EPSS
Exploits13References4
SUSE Linux
SUSE Linux
•added 2025/06/18 6:6 p.m.•2 views

Security update for pam

This update for pam fixes the following issues: CVE-2025-6018: pamenv: Change the default to not read the user .pamenvironment file bsc1243226. CVE-2025-6020: pamnamespace: convert functions that may operate on a user-controlled path to operate on file descriptors instead of absolute path...

8.6CVSS6.8AI score0.00957EPSS
Exploits13References8
SUSE Linux
SUSE Linux
•added 2025/06/18 3:25 p.m.•2 views

Security update for redis

This update for redis fixes the following issues: CVE-2025-21605: output buffer denial of service bsc1241708. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for yo...

8.7CVSS7.5AI score0.00824EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/18 11:22 a.m.•2 views

Security update for gdm

This update for gdm fixes the following issues: CVE-2025-6018: Removes pamenv from auth stack for security reason bsc1243226. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

8.6CVSS7.4AI score0.00957EPSS
Exploits13References4
SUSE Linux
SUSE Linux
•added 2025/06/18 11:22 a.m.•2 views

Security update for gdm

This update for gdm fixes the following issues: CVE-2025-6018: Removes pamenv from auth stack for security reason bsc1243226. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

8.6CVSS7.8AI score0.00957EPSS
Exploits13References4
SUSE Linux
SUSE Linux
•added 2025/06/18 11:21 a.m.•2 views

Security update for gdm

This update for gdm fixes the following issues: CVE-2025-6018: pam.d: removes pamenv from auth stack for security reason bsc1243226. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

8.6CVSS7.4AI score0.00957EPSS
Exploits13References4
SUSE Linux
SUSE Linux
•added 2025/06/18 11:21 a.m.•2 views

Security update for pam

This update for pam fixes the following issues: CVE-2025-6018: pamenv: Change the default to not read the user .pamenvironment file bsc1243226. pamnamespace: convert functions that may operate on a user-controlled path to operate on file descriptors instead of absolute path bsc1244509. Patch...

8.6CVSS7.2AI score0.00957EPSS
Exploits13References6
SUSE Linux
SUSE Linux
•added 2025/06/18 8:51 a.m.•2 views

Security update for libblockdev

This update for libblockdev fixes the following issues: CVE-2025-6019: Suppress privilege escalation during xfs fs resize bsc1243226 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

7.3CVSS7.6AI score0.00423EPSS
Exploits18References4
SUSE Linux
SUSE Linux
•added 2025/06/18 8:41 a.m.•2 views

Security update for python3-requests

This update for python3-requests fixes the following issues: CVE-2024-47081: fixes netrc credential leak bsc1244039. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

8.2CVSS7.3AI score0.00846EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/06/18 2:13 a.m.•2 views

Security update for golang-github-prometheus-alertmanager

This update for golang-github-prometheus-alertmanager fixes the following issues: Security: CVE-2025-22870: Fix proxy bypassing using IPv6 zone IDs bsc1238686 CVE-2023-45288: Fix HTTP/2 CONTINUATION flood in net/http bsc1236516 Patch Instructions: To install this SUSE update use the SUSE...

6.9CVSS7.1AI score0.91969EPSS
Exploits3References10
SUSE Linux
SUSE Linux
•added 2025/06/18 2:7 a.m.•2 views

Maintenance update for Multi-Linux Manager 4.3 Release Notes Release Notes

This update fixes the following issues: release-notes-susemanager: Update to SUSE Manager 4.3.15.2 SUSE Manager 4.3 will transition to LTS after June 2025 CVE Fixed CVE-2023-45288, CVE-2024-11741, CVE-2024-45337, CVE-2024-45339 CVE-2024-51744, CVE-2024-9264, CVE-2024-9476, CVE-2025-22870...

9.9CVSS7.2AI score0.97809EPSS
Exploits22References32
SUSE Linux
SUSE Linux
•added 2025/06/17 3:33 p.m.•2 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.4CVSS7.2AI score0.0129EPSS
Exploits1References706
SUSE Linux
SUSE Linux
•added 2025/06/16 2:56 p.m.•2 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52927: netfilter: allow exp not to be removed in nfctfindexpectation bsc1239644. CVE-2024-28956: x86/ibt: Keep IBT disabled during alternative patching...

8.7CVSS8AI score0.13944EPSS
Exploits3References1616
SUSE Linux
SUSE Linux
•added 2025/06/13 1:55 p.m.•2 views

Security update for python-Django

This update for python-Django fixes the following issues: CVE-2025-48432: log injection or forgery due to unescaped control characters being added into logs bsc1244095. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.9CVSS8.1AI score0.006EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/13 10:48 a.m.•2 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2025-27587: Fixed Minerva side channel vulnerability in P-384 bsc1240366 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

6CVSS7.3AI score0.00361EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/13 7:20 a.m.•2 views

Security update for kubernetes1.24

This update for kubernetes1.24 fixes the following issues: CVE-2025-22872: Properly handle trailing solidus in unquoted attribute value in foreign content bsc1241865. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS7.2AI score0.0045EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/13 7:20 a.m.•2 views

Security update for kubernetes1.23

This update for kubernetes1.23 fixes the following issues: CVE-2025-22872: Properly handle trailing solidus in unquoted attribute value in foreign content bsc1241865. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS7.2AI score0.0045EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/13 7:20 a.m.•2 views

Security update for libcryptopp

This update for libcryptopp fixes the following issues: CVE-2024-28285: Fixed potential leak of secret key of ElGamal encryption via fault injection bscbsc1224280. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch...

7CVSS7.6AI score0.00505EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/06/12 2:50 p.m.•2 views

Security update for audiofile

This update for audiofile fixes the following issues: CVE-2019-13147: Fixed NULL pointer dereference in ulaw2linearbuf that could lead to DOS bsc1140031. CVE-2022-24599: unverified user input when processing audio files can lead to information leak bsc1196487. Patch Instructions: To install this...

4.4CVSS7AI score0.01913EPSS
Exploits2References8
Total number of security vulnerabilities5000