5671 matches found
Security update for radvd
This update for radvd fixes the following issue CVE-2026-48715: stack-based buffer overflow in the radvdump Route Information option parser when processing crafted ICMPv6 Router Advertisements bsc1268641. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...
Security update for tiff
This update for tiff fixes the following issues CVE-2026-12912: heap-based buffer overflow when processing crafted PixarLog-compressed TIFF image bsc1269779. CVE-2026-36849: denial of service when processing a a crafted TIFF file containing a large SamplesPerPixel tag value bsc1268434. Patch...
Security update for ImageMagick
This update for ImageMagick fixes the following issues CVE-2026-53466: integer overflow in the XCF decoder can result in an out-of-bounds read when a crafted image is read bsc1270073. CVE-2026-53467: allocated memory left unchanged in the MNG decoder can lead to a heap information disclosure...
Security update for containerd
This update for containerd rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...
Security update for runc
This update for runc rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...
Security update for helm
This update for helm rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...
Security update for distribution
This update for distribution rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...
Security update for container-suseconnect
This update for container-suseconnect rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE...
Security update for go1.26-openssl
This update for go1.26-openssl fixes the following issues Update to version go1.26.5 bsc1255111. CVE-2026-27145: crypto/x509: split candidate hostname only once bsc1267450. CVE-2026-39822: os: Root escape via symlink plus trailing slash bsc1271014. CVE-2026-42504: mime: quadratic complexity in...
Security update for go1.25-openssl
This update for go1.25-openssl fixes the following issues Update to version go1.25.12 bsc1244485. CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. CVE-2026-27139: os: FileInfo can escape from a Root bsc1259268. CVE-2026-27142: html/template: URLs in meta content...
Security update for rootlesskit
This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31771: Bluetooth: hcievent: move wake reason storage into validated event handlers bsc1264145. CVE-2026-43038: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach...
Security update for curl
This update for curl fixes the following issues CVE-2026-8286: wrong STARTTLS connection reuse bsc1268402. CVE-2026-8458: wrong reuse for different services bsc1268407. CVE-2026-8924: traling dot domain super cookie bsc1268409. CVE-2026-8927: env-set cross-proxy Digest auth state leak bsc1268413...
Security update for gnutls
This update for gnutls fixes the following issue Rebase the CVE-2026-42014 patch to include a missing call to p11kiturifree in gnutlspkcs11tokensetpin bsc1263713. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
Security update for sssd
This update for sssd fixes the following issues CVE-2026-14474: sudo LDAP provider searches entire directory tree for sudoRole objects by default, enabling privilege escalation bsc1270709. CVE-2026-14476: GPO cache path traversal via unsanitized gPCFileSysPath allows Kerberos authentication bypas...
Security update for python-cryptography
This update for python-cryptography fixes the following issues: CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270208. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length bsc1270620...
Security update for libpng12
This update for libpng12 fixes the following issue CVE-2026-25646: Heap buffer overflow vulnerability in pngsetdither/pngsetquantize bsc1258020. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively yo...
Security update for qemu
This update for qemu fixes the following issues CVE-2026-3886: QEMU calcimagehostmem Integer Overflow Local Privilege Escalation Vulnerability bsc1268061. CVE-2026-48004: heap use-after-free race condition allows a DoS by an unprivileged guest user bsc1270133. CVE-2026-48914: qemu-kvm: Heap Buffe...
Security update for yelp
This update for yelp fixes the following issue CVE-2026-13601: overly permissive Content Security Policy allows host file disclosure via Flatpak applications bsc1269625. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for yelp
This update for yelp fixes the following issue CVE-2026-13601: overly permissive Content Security Policy allows host file disclosure via Flatpak applications bsc1269625. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for yelp
This update for yelp fixes the following issue CVE-2026-13601: overly permissive Content Security Policy allows host file disclosure via Flatpak applications bsc1269625. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for perl-libwww-perl
This update for perl-libwww-perl fixes the following issue CVE-2026-8368: LWP: UserAgent: Authorization and Proxy-Authorization headers are leaked on cross-origin redirects bsc1265156. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
Security update for glib-networking
This update for glib-networking fixes the following issue CVE-2026-10028: two certificates which are each signed by the other can lead to an infinite loop bsc1267979. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for python-paramiko
This update for python-paramiko fixes the following issues: CVE-2026-44405: data integrity compromise due to allowed SHA-1 algorithm use bsc1264225. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternativel...
Security update for glibc
This update for glibc fixes the following issues CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write bsc1263656. CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure bsc1263658. Patch...
Security update for glibc
This update for glibc fixes the following issues CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write bsc1263656. CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure bsc1263658. Patch...
Security update for dnsmasq
This update for dnsmasq fixes the following issues CVE-2026-12725: heap buffer overflow in logquery when logging unsupported DS/DNSKEY replies bsc1268764. CVE-2026-12969: out-of-bounds read in findsoa due to missing extrabytes validation bsc1268882. Changes for dnsmasq: Update to 2.93: Fix a...
Security update for tiff
This update for tiff fixes the following issues CVE-2026-12912: heap-based buffer overflow when processing crafted PixarLog-compressed TIFF image bsc1269779. CVE-2026-36849: denial of service when processing a a crafted TIFF file containing a large SamplesPerPixel tag value bsc1268434. Patch...
Security update for python-cryptography
This update for python-cryptography fixes the following issues CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270208. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-...
Security update for sssd
This update for sssd fixes the following issues CVE-2026-14474: sudo LDAP provider searches entire directory tree for sudoRole objects by default, enabling privilege escalation bsc1270709. CVE-2026-14476: GPO cache path traversal via unsanitized gPCFileSysPath allows Kerberos authentication bypas...
Security update for ImageMagick
This update for ImageMagick fixes the following issues CVE-2026-42050: stack buffer overflow in XTileImage bsc1265048. CVE-2026-42326: information disclosure via malicious IPTC input file bsc1268092. CVE-2026-45031: denial of Service due to resource policy bypass in PSD decoder bsc1268094...
Security update for ImageMagick
This update for ImageMagick fixes the following issues CVE-2026-42050: stack buffer overflow in XTileImage bsc1265048. CVE-2026-42326: information disclosure via malicious IPTC input file bsc1268092. CVE-2026-45031: denial of Service due to resource policy bypass in PSD decoder bsc1268094...
Security update for sccache
This update for sccache fixes the following issues: Update to version 0.15.017. CVE-2023-26964: hyper,h2: high resource consumption due to stream stacking when H2 component processes HTTP2 RSTSTREAM frames bsc1210346. CVE-2024-32650: rust-rustls: infinite loop in...
Security update for uriparser
This update for uriparser fixes the following issues CVE-2026-42371: numeric truncation in text range comparison when an application accepts URIs with a length in gigabytes bsc1262999. CVE-2026-44927: truncation of ptrdifft to int in various places bsc1264578. CVE-2026-44928: function family...
Security update for the Linux Kernel (Live Patch 82 for SUSE Linux Enterprise 12 SP5)
This update for the SUSE Linux Enterprise Kernel 4.12.14-122.307 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...
Security update for the Linux Kernel (Live Patch 42 for SUSE Linux Enterprise 15 SP5)
This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.172 fixes various security issues The following security issues were fixed: CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723. CVE-2026-52909: ip6vti: set netnsimmutable on the fallback device bsc1268662...
Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP6)
This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.118 fixes various security issues The following security issues were fixed: CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723. CVE-2026-52909: ip6vti: set netnsimmutable on the fallback device bsc1268662...
Security update for openssl-3
This update for openssl-3 fixes the following issues CVE-2026-34182: CMS AuthEnvelopedData Processing May Accept Forged Messages bsc1266344. CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption bsc1266350. Patch Instructions: To install this SUSE update use the SUSE...
Security update for openssl-3
This update for openssl-3 fixes the following issue CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption bsc1266350. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Security update for the Linux Kernel (Live Patch 79 for SUSE Linux Enterprise 12 SP5)
This update for the SUSE Linux Enterprise Kernel 4.12.14-122.299 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...
Security update for the Linux Kernel (Live Patch 27 for SUSE Linux Enterprise 15 SP6)
This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.115 fixes various security issues The following security issues were fixed: CVE-2026-46120: ip6gre: Use cached t-net in ip6erspanchangelink bsc1267893. CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723...
Security update for the Linux Kernel (Live Patch 41 for SUSE Linux Enterprise 15 SP5)
This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.169 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43366: iouring/kbuf: check if target buffer list is still legacy on...
Security update for rootlesskit
This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: Containers Module...
Security update for the Linux Kernel (Live Patch 26 for SUSE Linux Enterprise 15 SP6)
This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.112 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1265197...
Security update for the Linux Kernel (Live Patch 80 for SUSE Linux Enterprise 12 SP5)
This update for the SUSE Linux Enterprise Kernel 4.12.14-122.302 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...
Security update for the Linux Kernel (Live Patch 55 for SUSE Linux Enterprise 15 SP4)
This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.222 fixes various security issues The following security issues were fixed: CVE-2026-46120: ip6gre: Use cached t-net in ip6erspanchangelink bsc1267893. CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723...
Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5)
This update for the SUSE Linux Enterprise Kernel 4.12.14-122.293 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...
Security update for the Linux Kernel (Live Patch 54 for SUSE Linux Enterprise 15 SP4)
This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.219 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1265197...
Security update for the Linux Kernel (Live Patch 40 for SUSE Linux Enterprise 15 SP5)
This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.166 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1265197...
Security update for glibc
This update for glibc fixes the following issues: CVE-2026-5435: resolv: More types as unknown in nssprintrrf bsc1263656, BZ 34033 resolv: Check for inetntop failure in nssprintrrf CVE-2026-6238: resolv: Fix buffer overreads in nssprintrrf bsc1263658, BZ 34069 Patch Instructions: To install this...