Lucene search
+L

5671 matches found

SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for radvd

This update for radvd fixes the following issue CVE-2026-48715: stack-based buffer overflow in the radvdump Route Information option parser when processing crafted ICMPv6 Router Advertisements bsc1268641. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

7.5CVSS6.3AI score0.00203EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for tiff

This update for tiff fixes the following issues CVE-2026-12912: heap-based buffer overflow when processing crafted PixarLog-compressed TIFF image bsc1269779. CVE-2026-36849: denial of service when processing a a crafted TIFF file containing a large SamplesPerPixel tag value bsc1268434. Patch...

7.3CVSS6.2AI score0.00231EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues CVE-2026-53466: integer overflow in the XCF decoder can result in an out-of-bounds read when a crafted image is read bsc1270073. CVE-2026-53467: allocated memory left unchanged in the MNG decoder can lead to a heap information disclosure...

8.3CVSS6.3AI score0.00895EPSS
Exploits1References62
SUSE Linux
SUSE Linux
•added 4 days ago•7 views

Security update for containerd

This update for containerd rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

6.1AI score
Exploits0
SUSE Linux
SUSE Linux
•added 4 days ago•7 views

Security update for runc

This update for runc rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...

6.1AI score
Exploits0
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for helm

This update for helm rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...

6.1AI score
Exploits0
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for distribution

This update for distribution rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

6.1AI score
Exploits0
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for container-suseconnect

This update for container-suseconnect rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE...

6.1AI score
Exploits0
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for go1.26-openssl

This update for go1.26-openssl fixes the following issues Update to version go1.26.5 bsc1255111. CVE-2026-27145: crypto/x509: split candidate hostname only once bsc1267450. CVE-2026-39822: os: Root escape via symlink plus trailing slash bsc1271014. CVE-2026-42504: mime: quadratic complexity in...

7.7CVSS6.8AI score0.00939EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues Update to version go1.25.12 bsc1244485. CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. CVE-2026-27139: os: FileInfo can escape from a Root bsc1259268. CVE-2026-27142: html/template: URLs in meta content...

7.7CVSS6.8AI score0.00939EPSS
Exploits0References42
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for rootlesskit

This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

6.1AI score
Exploits0
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31771: Bluetooth: hcievent: move wake reason storage into validated event handlers bsc1264145. CVE-2026-43038: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach...

9.3CVSS7.1AI score0.00385EPSS
Exploits17References112
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for curl

This update for curl fixes the following issues CVE-2026-8286: wrong STARTTLS connection reuse bsc1268402. CVE-2026-8458: wrong reuse for different services bsc1268407. CVE-2026-8924: traling dot domain super cookie bsc1268409. CVE-2026-8927: env-set cross-proxy Digest auth state leak bsc1268413...

9.1CVSS6.1AI score0.01064EPSS
Exploits10References40
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for gnutls

This update for gnutls fixes the following issue Rebase the CVE-2026-42014 patch to include a missing call to p11kiturifree in gnutlspkcs11tokensetpin bsc1263713. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.1CVSS6.7AI score0.0015EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for sssd

This update for sssd fixes the following issues CVE-2026-14474: sudo LDAP provider searches entire directory tree for sudoRole objects by default, enabling privilege escalation bsc1270709. CVE-2026-14476: GPO cache path traversal via unsanitized gPCFileSysPath allows Kerberos authentication bypas...

8.8CVSS6.1AI score0.00501EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for python-cryptography

This update for python-cryptography fixes the following issues: CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270208. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length bsc1270620...

8.7CVSS6.2AI score0.00359EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for libpng12

This update for libpng12 fixes the following issue CVE-2026-25646: Heap buffer overflow vulnerability in pngsetdither/pngsetquantize bsc1258020. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively yo...

8.3CVSS6.8AI score0.00955EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for qemu

This update for qemu fixes the following issues CVE-2026-3886: QEMU calcimagehostmem Integer Overflow Local Privilege Escalation Vulnerability bsc1268061. CVE-2026-48004: heap use-after-free race condition allows a DoS by an unprivileged guest user bsc1270133. CVE-2026-48914: qemu-kvm: Heap Buffe...

8.8CVSS7AI score0.00122EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for yelp

This update for yelp fixes the following issue CVE-2026-13601: overly permissive Content Security Policy allows host file disclosure via Flatpak applications bsc1269625. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.1CVSS6.1AI score0.0012EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for yelp

This update for yelp fixes the following issue CVE-2026-13601: overly permissive Content Security Policy allows host file disclosure via Flatpak applications bsc1269625. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.1CVSS6.1AI score0.0012EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for yelp

This update for yelp fixes the following issue CVE-2026-13601: overly permissive Content Security Policy allows host file disclosure via Flatpak applications bsc1269625. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.1CVSS6.1AI score0.0012EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for perl-libwww-perl

This update for perl-libwww-perl fixes the following issue CVE-2026-8368: LWP: UserAgent: Authorization and Proxy-Authorization headers are leaked on cross-origin redirects bsc1265156. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6CVSS6.1AI score0.00266EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for glib-networking

This update for glib-networking fixes the following issue CVE-2026-10028: two certificates which are each signed by the other can lead to an infinite loop bsc1267979. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

5.3CVSS6.1AI score0.00181EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for python-paramiko

This update for python-paramiko fixes the following issues: CVE-2026-44405: data integrity compromise due to allowed SHA-1 algorithm use bsc1264225. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternativel...

6.3CVSS6.3AI score0.00114EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for glibc

This update for glibc fixes the following issues CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write bsc1263656. CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure bsc1263658. Patch...

5.3CVSS6.1AI score0.00358EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•6 views

Security update for glibc

This update for glibc fixes the following issues CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write bsc1263656. CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure bsc1263658. Patch...

5.3CVSS6.1AI score0.00358EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for dnsmasq

This update for dnsmasq fixes the following issues CVE-2026-12725: heap buffer overflow in logquery when logging unsupported DS/DNSKEY replies bsc1268764. CVE-2026-12969: out-of-bounds read in findsoa due to missing extrabytes validation bsc1268882. Changes for dnsmasq: Update to 2.93: Fix a...

8.2CVSS6.2AI score0.00403EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for tiff

This update for tiff fixes the following issues CVE-2026-12912: heap-based buffer overflow when processing crafted PixarLog-compressed TIFF image bsc1269779. CVE-2026-36849: denial of service when processing a a crafted TIFF file containing a large SamplesPerPixel tag value bsc1268434. Patch...

7.3CVSS6.2AI score0.00231EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for python-cryptography

This update for python-cryptography fixes the following issues CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270208. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length in rust-...

8.7CVSS6.6AI score0.00359EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for sssd

This update for sssd fixes the following issues CVE-2026-14474: sudo LDAP provider searches entire directory tree for sudoRole objects by default, enabling privilege escalation bsc1270709. CVE-2026-14476: GPO cache path traversal via unsanitized gPCFileSysPath allows Kerberos authentication bypas...

8.8CVSS6.1AI score0.00501EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues CVE-2026-42050: stack buffer overflow in XTileImage bsc1265048. CVE-2026-42326: information disclosure via malicious IPTC input file bsc1268092. CVE-2026-45031: denial of Service due to resource policy bypass in PSD decoder bsc1268094...

7.3CVSS6.6AI score0.01849EPSS
Exploits4References110
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues CVE-2026-42050: stack buffer overflow in XTileImage bsc1265048. CVE-2026-42326: information disclosure via malicious IPTC input file bsc1268092. CVE-2026-45031: denial of Service due to resource policy bypass in PSD decoder bsc1268094...

8.3CVSS6.6AI score0.01849EPSS
Exploits5References164
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for sccache

This update for sccache fixes the following issues: Update to version 0.15.017. CVE-2023-26964: hyper,h2: high resource consumption due to stream stacking when H2 component processes HTTP2 RSTSTREAM frames bsc1210346. CVE-2024-32650: rust-rustls: infinite loop in...

8.7CVSS6.7AI score0.01121EPSS
Exploits2References56
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for uriparser

This update for uriparser fixes the following issues CVE-2026-42371: numeric truncation in text range comparison when an application accepts URIs with a length in gigabytes bsc1262999. CVE-2026-44927: truncation of ptrdifft to int in various places bsc1264578. CVE-2026-44928: function family...

8.8CVSS6.1AI score0.00211EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for the Linux Kernel (Live Patch 82 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.307 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...

8.8CVSS6.7AI score0.00563EPSS
Exploits4References28
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for the Linux Kernel (Live Patch 42 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.172 fixes various security issues The following security issues were fixed: CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723. CVE-2026-52909: ip6vti: set netnsimmutable on the fallback device bsc1268662...

7.3CVSS6.1AI score0.00238EPSS
Exploits1References12
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for the Linux Kernel (Live Patch 28 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.118 fixes various security issues The following security issues were fixed: CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723. CVE-2026-52909: ip6vti: set netnsimmutable on the fallback device bsc1268662...

9CVSS6.1AI score0.00238EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for openssl-3

This update for openssl-3 fixes the following issues CVE-2026-34182: CMS AuthEnvelopedData Processing May Accept Forged Messages bsc1266344. CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption bsc1266350. Patch Instructions: To install this SUSE update use the SUSE...

6.5CVSS6.1AI score0.00349EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for openssl-3

This update for openssl-3 fixes the following issue CVE-2026-42767: NULL Pointer Dereference in CRMF EncryptedValue Decryption bsc1266350. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

6.5CVSS6.1AI score0.00349EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for the Linux Kernel (Live Patch 79 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.299 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...

8.8CVSS6.1AI score0.00563EPSS
Exploits4References28
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for the Linux Kernel (Live Patch 27 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.115 fixes various security issues The following security issues were fixed: CVE-2026-46120: ip6gre: Use cached t-net in ip6erspanchangelink bsc1267893. CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723...

9CVSS6.1AI score0.00238EPSS
Exploits1References24
SUSE Linux
SUSE Linux
•added 4 days ago•3 views

Security update for the Linux Kernel (Live Patch 41 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.169 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43366: iouring/kbuf: check if target buffer list is still legacy on...

8.5CVSS6.2AI score0.00238EPSS
Exploits1References32
SUSE Linux
SUSE Linux
•added 4 days ago•4 views

Security update for rootlesskit

This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: Containers Module...

6.1AI score
Exploits0
SUSE Linux
SUSE Linux
•added 4 days ago•5 views

Security update for the Linux Kernel (Live Patch 26 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.112 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1265197...

9CVSS6.1AI score0.00563EPSS
Exploits5References44
SUSE Linux
SUSE Linux
•added 5 days ago•5 views

Security update for the Linux Kernel (Live Patch 80 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.302 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...

8.8CVSS6.7AI score0.00563EPSS
Exploits4References28
SUSE Linux
SUSE Linux
•added 5 days ago•5 views

Security update for the Linux Kernel (Live Patch 55 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.222 fixes various security issues The following security issues were fixed: CVE-2026-46120: ip6gre: Use cached t-net in ip6erspanchangelink bsc1267893. CVE-2026-46173: exit: prevent preemption of oopsing TASKDEAD task bsc1267723...

7.8CVSS6.9AI score0.00238EPSS
Exploits1References20
SUSE Linux
SUSE Linux
•added 5 days ago•5 views

Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.293 fixes various security issues The following security issues were fixed: CVE-2026-31685: netfilter: ip6teui64: reject invalid MAC header for all packets bsc1263670. CVE-2026-43025: netfilter: ctnetlink: ignore explicit helper on new...

8.8CVSS6.7AI score0.00563EPSS
Exploits4References28
SUSE Linux
SUSE Linux
•added 5 days ago•6 views

Security update for the Linux Kernel (Live Patch 54 for SUSE Linux Enterprise 15 SP4)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.219 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1265197...

8.5CVSS6.6AI score0.00563EPSS
Exploits5References40
SUSE Linux
SUSE Linux
•added 5 days ago•6 views

Security update for the Linux Kernel (Live Patch 40 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.166 fixes various security issues The following security issues were fixed: CVE-2026-31758: usb: usbtmc: Flush anchored URBs in usbtmcrelease bsc1264094. CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1265197...

8.5CVSS6.7AI score0.00563EPSS
Exploits5References44
SUSE Linux
SUSE Linux
•added 5 days ago•5 views

Security update for glibc

This update for glibc fixes the following issues: CVE-2026-5435: resolv: More types as unknown in nssprintrrf bsc1263656, BZ 34033 resolv: Check for inetntop failure in nssprintrrf CVE-2026-6238: resolv: Fix buffer overreads in nssprintrrf bsc1263658, BZ 34069 Patch Instructions: To install this...

5.3CVSS6.1AI score0.00358EPSS
Exploits0References8
Total number of security vulnerabilities5671