5124 matches found
Security update for webkit2gtk3
This update for webkit2gtk3 fixes the following issues: CVE-2025-43343: Fixed an issue where processing maliciously crafted web content may lead to an unexpected process crash bsc1251975 CVE-2025-43272: Fixed an issue where processing maliciously crafted web content may lead to an unexpected Safa...
Security update for strongswan
This update for strongswan fixes the following issues: CVE-2025-62291: fixed buffer overflow when handling EAP-MSCHAPv2 failure requests bsc1251941 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...
Security update for bind
This update for bind fixes the following issues: Upgrade to release 9.20.15: CVE-2025-8677: DNSSEC validation fails if matching but invalid DNSKEY is found bsc1252378. CVE-2025-40778: Address various spoofing attacks bsc1252379. CVE-2025-40780: Cache-poisoning due to weak pseudo-random number...
Security update for squid
This update for squid fixes the following issues: CVE-2025-62168: Fixed proxy auth data visible to scripts bsc1252281. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command list...
Security update for colord
This update for colord fixes the following issues: CVE-2021-42523: Fixed information disclosure in cd-device-db.c and cd-profile-db.c bsc1250750. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...
Security update for poppler
This update for poppler fixes the following issues: CVE-2025-43718: Fixed uncontrolled recursion in the regex-based metadata parser when processing specially crafted PDF files allows for stack exhaustion and denial of service bsc1250908. CVE-2025-52885: Fixed raw pointers can lead to dangling...
Security update for colord
This update for colord fixes the following issues: CVE-2021-42523: The original fix was wrong and did not properly free the error, resulting in a crash that has now been addressed bsc1250750. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
Security update for poppler
This update for poppler fixes the following issues: CVE-2025-43718: fixed uncontrolled recursion in the regex-based metadata parser when processing specially crafted PDF files bsc1250908 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
Security update for libssh
This update for libssh fixes the following issues: CVE-2025-8277: memory exhaustion leading to client-side DoS due to improper memory management when KEX process is repeated with incorrect guesses bsc1249375. Patch Instructions: To install this SUSE update use the SUSE recommended installation...
Security update for iputils
This update for iputils fixes the following issues: Security fixes: CVE-2025-47268: Fixed integer overflow in RTT calculation can lead to undefined behavior bsc1242300. Other bug fixes: Fixed incorrect IPV4 TTL value when using SOCKDGRAM on big endian systems bsc1243284. Patch Instructions: To...
Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631. CVE-2025-38617: net/packet: fix a race in packetsetring and packetnotifier bsc1249208...
Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP7)
This update for the Linux Kernel 6.4.0-150700713 fixes several issues. The following security issues were fixed: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631. CVE-2025-38618: vsock: Do not allow binding to VMADDRPORTANY bsc1249207. Patch Instructions: To...
Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP7)
This update for the Linux Kernel 6.4.0-15070078 fixes several issues. The following security issues were fixed: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631. CVE-2025-38511: drm/xe/pf: Clear all LMTT pages on alloc bsc1248176. CVE-2025-38617: net/packet: fix...
Security update for the Linux Kernel RT (Live Patch 4 for SLE 15 SP7)
This update for the Linux Kernel 6.4.0-150700716 fixes one issue. The following security issue was fixed: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...
Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506001044 fixes several issues. The following security issues were fixed: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631. CVE-2025-38617: net/packet: fix a race in packetsetring and packetnotifier bsc1249208...
Security update for the Linux Kernel RT (Live Patch 7 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506001023 fixes several issues. The following security issues were fixed: CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631. CVE-2025-38617: net/packet: fix a race in packetsetring and packetnotifier bsc1249208...
Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, cont
This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.62.0: Release notes:...
Security update for libxslt
This update for libxslt fixes the following issues: CVE-2025-11731: fixed a type confusion in exsltFuncResultComp function leading to denial of service bsc1251979 CVE-2025-10911: last fix caused a regression, patch was temporary disabled bsc1250553 Patch Instructions: To install this SUSE update...
Security update for xwayland
This update for xwayland fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed Use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed Value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231, bsc125196...
Security update for strongswan
This update for strongswan fixes the following issues: CVE-2025-62291: fixed a buffer overflow when handling EAP-MSCHAPv2 failure requests bsc1251941 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...
Security update for xorg-x11-server
This update for xorg-x11-server fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231,...
Security update for himmelblau
This update for himmelblau fixes the following issues: Update to version 0.7.18+git.0.8485a75. CVE-2025-58160: tracing-subscriber: untrusted user input containing ANSI escape sequences could be injected into terminal output when logged bsc1249013. Patch Instructions: To install this SUSE update u...
Security update for chrony
This update for chrony fixes the following issues: Security issues fixed: - Race condition during socket creation by chronyc allows privilege escalation from user chrony to root bsc1246544. Other issues fixed: - Improve connection retry intervals when facing NTS-KE related issues bsc1213551. nts:...
Security update for ImageMagick
This update for ImageMagick fixes the following issues: CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...
Security update for xorg-x11-server
This update for xorg-x11-server fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231,...
Security update for xorg-x11-server
This update for xorg-x11-server fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231,...
Security update for xorg-x11-server
This update for xorg-x11-server fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231,...
Security update for xwayland
This update for xwayland fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231, bsc125196...
Security update for libsoup
This update for libsoup fixes the following issues: CVE-2025-11021: Ignore invalid date when processing cookies to prevent out-of-bounds read bsc1250562. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
Security update for colord
This update for colord fixes the following issues: CVE-2021-42523: Fixed information disclosure in cd-device-db.c and cd-profile-db.c bsc1250750. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively y...
Security update for java-21-openjdk
This update for java-21-openjdk fixes the following issues: Update to upstream tag jdk-21.0.9+10 October 2025 CPU: CVE-2025-53057: Fixed unauthenticated attacker can achieve unauthorized creation, deletion or modification access to critical data bsc1252414. CVE-2025-53066: Fixed unauthenticated...
Security update for xorg-x11-server
This update for xorg-x11-server fixes the following issues: Fixed use-after-free in XPresentNotify structures creation CVE-2025-62229, bsc1251958 Fixed use-after-free in Xkb client resource removal CVE-2025-62230, bsc1251959 Fixed value overflow in Xkb extension XkbSetCompatMap CVE-2025-62231,...
Security update for strongswan
This update for strongswan fixes the following issues: CVE-2025-62291: fixed buffer overflow when handling EAP-MSCHAPv2 failure requests bsc1251941 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...
Security update for strongswan
This update for strongswan fixes the following issues: CVE-2025-62291: fixed a buffer overflow when handling EAP-MSCHAPv2 failure requests bsc1251941 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternative...
Security update for strongswan
This update for strongswan fixes the following issues: CVE-2025-62291: fixed buffer overflow when handling EAP-MSCHAPv2 failure requests bsc1251941 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...
Security update for fetchmail
This update for fetchmail fixes the following issues: CVE-2025-61962: fixed a denial of service condition bsc1251194 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...
Security update for ImageMagick
This update for ImageMagick fixes the following issues: CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...
Security update for xen
This update for xen fixes the following issues: CVE-2025-58147, CVE-2025-58148: Fixed incorrect input sanitisation in Viridian hypercalls bsc1251271, XSA-475 CVE-2025-27466, CVE-2025-58142, CVE-2025-58143: Fixed mutiple vulnerabilities in the Viridian interface bsc1248807, XSA-472 Patch...
Security update for python-Authlib
This update for python-Authlib fixes the following issues: CVE-2025-62706: fixed a denial of service condition bsc1252504, ghauthlib/authlib@e0863d512931 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
Maintenance update for Multi-Linux Manager 5.1.1
Description: This update fixes the following issues: Multi-Linux-Manager-Proxy-SLE-release: Update for the release packages for fixing the EOL Fixed migration issue bsc1243486 proxy-helm was updated fromv version 5.1.7 to 5.1.9: Version 5.1.9 Chart rebuilt to the newest version with updated...
Security update for java-11-openjdk
This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.29+7 October 2025 CPU: CVE-2025-53057: Fixed unauthenticated attacker can achieve unauthorized creation, deletion or modification access to critical data bsc1252414. CVE-2025-53066: Fixed unauthenticated...
Security update for strongswan
This update for strongswan fixes the following issues: CVE-2025-62291: fixed buffer overflow when handling EAP-MSCHAPv2 failure requests bsc1251941 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...
Maintenance update for Multi-Linux Manager 4.3 LTS Release Notes Release Notes
Description: This update fixes the following issues: release-notes-susemanager-proxy: Update to SUSE Manager 4.3.16.1 CVEs Fixed: CVE-2025-53883 Bugs mentioned: bsc1246277, bsc1227577 Security update 4.3.16.1 for SUSE Manager Server Release Notes Description: This update fixes the following issue...
Security update 4.3.16.1 SUSE Manager Server and Proxy 4.3 LTS
Description: This update fixes the following issues: susemanager-build-keys: Update SUSE GPG key and make it available for Salt bsc1250911 susemanager-tftpsync-recv: Version 4.3.11-0 with security fix: CVE-2025-53880: Sanitize path in sync-proxy script bsc1246277 rhnlib: Version 4.3.7-0: Use more...
Security update 5.0.5.1 for for Multi-Linux Manager
Description: This update fixes the following issues: proxy-helm, proxy-httpd-image, proxy-salt-broker-image, proxy-squid-image, proxy-ssh-image, proxy-tftpd-image: Images rebuilt to the newest version and updated build dependencies Security update 5.0.5.1 for Multi-Linux Manager Proxy Description...
Security update 5.1.1 for Multi-Linux Manager Client Tools
This update fixes the following issues: dracut-saltboot was updated from version 0.1 to version 1.0.0: Version 1.0.0 bugs fixed: Reboot on salt key timeout bsc1237495 Fixed parsing files with space in the name bsc1252100 golang-github-prometheus-alertmanager was updated from version 0.26.0 to...
Security update 5.1.1 for Multi-Linux Manager Client Tools
This update fixes the following issues: golang-github-prometheus-alertmanager: Update to version 0.28.1 jscPED-13285: Improved performance of inhibition rules when using Equal labels. Improve the documentation on escaping in UTF-8 matchers. Update alertmanagerconfighash metric help to document th...
Security update for cmake
This update for cmake fixes the following issues: CVE-2025-9301: Fixed assertion failure due to improper validation bsc1248461 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...
Security update for wireshark
This update for wireshark fixes the following issues: CVE-2025-11626: fixed MONGO dissector infinite loop bsc1251933. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command liste...
Security update for ffmpeg-4
This update for ffmpeg-4 fixes the following issues: CVE-2025-59728: allocated space for the appended "/" bsc1251137 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...