5373 matches found
Security update for util-linux
This update for util-linux fixes the following issue CVE-2026-27456: TOCTOU in the mount program when setting up loop devices bsc1261606. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...
Security update for terraform-provider-local, terraform-provider-null
This update for terraform-provider-local, terraform-provider-null fixes the following issue CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1265658. Patch Instructions: To install this SUSE update use the SUSE recommended installati...
Security update for python-python-multipart
This update for python-python-multipart fixes the following issues CVE-2026-53537: multipart/form-data with extended parameters can lead to file or parameter smuggling bsc1268506. CVE-2026-53538: urlencoded requests containing semicolons can lead to form field smuggling bsc1268496. CVE-2026-53539...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-38549: efivarfs: Fix memory leak of efivarfsfsinfo in fscontext error paths bsc1248235. CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished...
Security update for openvswitch
This update for openvswitch fixes the following issues CVE-2026-5265: heap over-read in ICMP error response generation bsc1262498. CVE-2026-5367: heap over-read in OVN DHCPv6 client ID processing bsc1262499. Patch Instructions: To install this SUSE update use the SUSE recommended installation...
Security update for graphite2
This update for graphite2 fixes the following issue: CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...
Security update for graphite2
This update for graphite2 fixes the following issue: CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...
Security update for openvswitch3
This update for openvswitch3 fixes the following issues CVE-2026-5265: heap over-read in ICMP error response generation bsc1262498. CVE-2026-5367: heap over-read in OVN DHCPv6 client ID processing bsc1262499. Patch Instructions: To install this SUSE update use the SUSE recommended installation...
Security update for openvswitch
This update for openvswitch fixes the following issues CVE-2026-5265: heap over-read in ICMP error response generation bsc1262498. CVE-2026-5367: heap over-read in OVN DHCPv6 client ID processing bsc1262499. Patch Instructions: To install this SUSE update use the SUSE recommended installation...
Security update for graphite2
This update for graphite2 fixes the following issue CVE-2026-50593: Out-of-bounds write via Graphite actions bsc1267733. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...
Security update for apache-sshd, jpgpj
This update for apache-sshd, jpgpj fixes the following issues CVE-2020-36843: no check performed on scalar to avoid signature malleability bsc1239551. CVE-2026-48827: Apache MINA SSHD: Path traversal in org.apache.sshd: sshd-git bsc1267018. Changes for jpgpj: Initial packaging with v1.3 Changes f...
Security update for python-starlette
This update for python-starlette fixes the following issues CVE-2026-54282: request path that lacks a leading forward slash can lead to request.url.hostname manipulation bsc1268520. CVE-2026-54283: urlencoded request body with an oversized data can lead to a denial of service bsc1268517. Patch...
Security update for amazon-ssm-agent
This update for amazon-ssm-agent fixes the following issues Update to version 3.3.4624.0: CVE-2025-22869: golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh bsc1239342. CVE-2025-22870: golang.org/x/net/proxy: proxy bypass using IPv6 zone IDs bsc1238702...
Security update for amazon-ssm-agent
This update for amazon-ssm-agent fixes the following issues Update to version 3.3.4624.0: CVE-2025-22869: golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh bsc1239342. CVE-2025-22870: golang.org/x/net/proxy: proxy bypass using IPv6 zone IDs bsc1238702...
Security update for azure-storage-azcopy
This update for azure-storage-azcopy fixes the following issues Update to 10.32.4: CVE-2025-47907: database/sql: incorrect results returned from Rows.Scan bsc1247720. CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo- header...
Security update for glibc
This update for glibc fixes the following issues: CVE-2026-4046: Use pending character state in IBM1390, IBM1399 character sets bsc1261206, BZ 33980 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternativel...
Security update for python313
This update for python313 fixes the following issues Security issues: CVE-2026-1502: HTTP client proxy tunnel headers not validated for CR/LF bsc1261969. CVE-2026-3446: Base64 decoding stops at first padded quad by default bsc1261970. CVE-2026-4786: oss-security CPython: Incomplete mitigation of ...
Security update for openvswitch
This update for openvswitch fixes the following issues Update ovn to 25.03.3: CVE-2026-5265: heap over-read in ICMP error response generation bsc1262498. CVE-2026-5367: heap over-read in OVN DHCPv6 client ID processing bsc1262499. Patch Instructions: To install this SUSE update use the SUSE...
Security update for ldns
This update for ldns fixes the following issue CVE-2026-10846: When ldns is used by applications for stub resolving, it does not sufficiently verify that received responses belong to a sent query bsc1267670. Patch Instructions: To install this SUSE update use the SUSE recommended installation...
Security update for ldns
This update for ldns fixes the following issue CVE-2026-10846: When ldns is used by applications for stub resolving, it does not sufficiently verify that received responses belong to a sent query bsc1267670. Patch Instructions: To install this SUSE update use the SUSE recommended installation...
Security update for kubernetes-old
This update for kubernetes-old fixes the following issues: CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGSMAXFRAMESIZE bsc1265747. CVE-2026-35469: github.com/moby/spdystream: memory amplification in SPDY frame parsing leads to denial of service...
Security update for strongswan
This update for strongswan fixes the following issues CVE-2026-35328: infinite loop when handling supported versions TLS extension bsc1261712. CVE-2026-35329: null pointer dereference when processing padding in PKCS7 bsc1261717. CVE-2026-35330: integer underflow when handling EAP-SIM/AKA attribut...
Security update for dnsmasq
This update for dnsmasq fixes the following issues CVE-2026-2291: VU471747: dnsmasq can be abused to record false cached data enabling DoS or attacker redirect bsc1258251. CVE-2026-4890: DoS vulnerability in the DNSSEC validation bsc1265001. CVE-2026-4891: heap-based out-of-bounds read...
Security update for frr
This update for frr fixes the following issue: CVE-2026-5107: Fixed an improper access controls in EVPN Type-2 Route Handler bsc1261013. CVE-2026-28532: Harden TE/SR TLV iteration against malformed lengths bsc1263859. CVE-2026-37457: Fix off-by-one error in FlowSpec operator array bounds check...
Security update for frr
This update for frr fixes the following issues CVE-2026-5107: Fixed an improper access controls in EVPN Type-2 Route Handler bsc1261013. CVE-2026-28532: Harden TE/SR TLV iteration against malformed lengths bsc1263859. CVE-2026-37457: Fix off-by-one error in FlowSpec operator array bounds check...
Security update for frr
This update for frr fixes the following issues Update to frr 8.5.7: CVE-2026-5107: Fixed an improper access controls in EVPN Type-2 Route Handler bsc1261013. CVE-2026-28532: Harden TE/SR TLV iteration against malformed lengths bsc1263859. CVE-2026-37457: Fix off-by-one error in FlowSpec operator...
Security update for java-1_8_0-ibm
This update for java-180-ibm fixes the following issues CVE-2026-22007: APIs in the specified component can lead to an unauthorized read access bsc1262490. CVE-2026-22013: unauthenticated attacker with network access can access to critical data bsc1262494. CVE-2026-22016: APIs in the specified...
Security update for rootlesskit
This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...
Security update for rootlesskit
This update for rootlesskit rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...
Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-10263: arm64: Add workaround for Cortex-A76 erratum 1286807 bsc1266290. CVE-2025-40253: s390/ctcm: Fix double-kfree bsc1255084. CVE-2025-68822: Input: alps - fix...
Security update for krb5
This update for krb5 fixes the following issues Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15.4 zypper in -t patch...
Security update for ffmpeg-4
This update for ffmpeg-4 fixes the following issues Update to version 4.4.7: CVE-2023-6601: HLS Unsafe File Extension Bypass bsc1220545. CVE-2024-35366: FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parseoptions function of sbgdec.c within the libavformat module. When parsing...
Security update for ffmpeg-4
This update for ffmpeg-4 fixes the following issues Update to version 4.4.7: CVE-2023-6601: HLS Unsafe File Extension Bypass bsc1220545. CVE-2024-35366: FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parseoptions function of sbgdec.c within the libavformat module. When parsing...
Security update for perl-HTTP-Daemon
This update for perl-HTTP-Daemon fixes the following issues: CVE-2026-8450: Fixed OS command injection via sendfile bsc1266370. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...
Security update for rustup
This update for rustup fixes the following issues CVE-2026-25727: time: parsing of user-provided input by the RFC 2822 date parser can lead to stack exhaustion bsc1257902. rust-shlex: Multiple issues involving quote API RUSTSEC-2024-0006, GHSA-r7qv-8r2h-pg27 bsc1230032. Patch Instructions: To...
Security update for glibc
This update for glibc fixes the following issues: CVE-2026-5928: libio: Fix ungetwc operating on byte stream bsc1262464, BZ 33998 CVE-2026-5450: stdio-common: Fix buffer overflow in scanf %mc bsc1262465, BZ 34008 CVE-2026-4046: Use pending character state in IBM1390, IBM1399 character sets...
Security update for helm
This update for helm rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise Hi...
Security update for alloy
This update for alloy fixes the following issues Security issues: CVE-2026-4427: github.com/jackc/pgproto3/v2: improper validation of field length allows a malicious PostgreSQL server to crash a client application via a DataRow message bsc1259919. CVE-2026-25934: github.com/go-git/go-git/v5:...
Security update for wireshark
This update for wireshark fixes the following issues CVE-2026-5405: RDP dissector crash bsc1263767. CVE-2026-5656: Profile import crash and possible code execution bsc1263809. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...
Security update for openssh8.4
This update for openssh8.4 fixes the following issues CVE-2026-3497: Information disclosure or denial of service due to uninitialized variables bsc1259642. CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. CVE-2026-35388: omitted connection multiplexing...
Security update for docker
This update for docker fixes the following issues: Update to Docker 29.4.0. See upstream changelog online at Update to buildx 0.33.0. See upstream changelog online at Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: CVE-2026-44988: Fixed missing validation of rectangle width in tight gradient decoding can lead to server-triggered out-of-bounds write bsc1266459. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...
Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: CVE-2026-44988: Fixed missing validation of rectangle width in tight gradient decoding can lead to server-triggered out-of-bounds write bsc1266459. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...
Security update for xwayland
This update for xwayland fixes the following issues: CreateSaverWindow Use-After-Free Information Disclosure. bsc1266301 Font Alias Stack-based Buffer Overflow. bsc1266294 GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. bsc1266300 XKB Key Types Stack-based Buffer Overflow. bsc1266296 XKB...
Security update for libcaca
This update for libcaca fixes the following issue CVE-2026-42046: an integer overflow vulnerability in libcaca's canvas import functionality may allow an attacker to cause a controlled heap out-of-bounds write bsc1264984. Patch Instructions: To install this SUSE update use the SUSE recommended...
Security update for libcaca
This update for libcaca fixes the following issue CVE-2026-42046: an integer overflow vulnerability in libcaca's canvas import functionality may allow an attacker to cause a controlled heap out-of-bounds write bsc1264984. Patch Instructions: To install this SUSE update use the SUSE recommended...
Security update for shim
This update for shim fixes the following issues: shim is updated to version 16.1: shimstartimage: fix guid/handle pairing when uninstalling protocols Fix uncompressed ipv6 netboot fix test segfaults caused by uninitialized memory SbatLevelVariable.txt: minor typo fix. Realloc needs to allocate on...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31629: nfc: llcp: add missing return after LLCPCLOSED checks bsc1263790. CVE-2026-43037: ip6tunnel: clear skb2-cb in ip4ip6err bsc1263995. CVE-2026-43206:...
Security update for container-suseconnect
This update for container-suseconnect rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product:...
Security update for 389-ds
This update for 389-ds fixes the following issue Update to 2.7.0git193.9ab79d496: CVE-2026-9064: unbounded LDAP controls count in getldapmessagecontrolsext can lead to amplified CPU time and heap allocation and a denial of service bsc1265898. Changelog: Issue 7503 - CVE-2026-9064 - Add a limit to...