5671 matches found
Security update for libslirp
This update for libslirp fixes the following issues: CVE-2026-9539: crafted TCP segment with manipulated URG flags and urgent pointers can cause an integer underflow and host-heap memory leak bsc1268903. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods...
Security update for alsa
This update for alsa fixes the following issue CVE-2026-56109: crafted ALSA configuration text with nested blocks can cause a double-free and memory corruption bsc1268853. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...
Security update for nghttp2
This update for nghttp2 fixes the following issue CVE-2026-58055: HTTP/1.1 Upgrade request can lead to HTTP request smuggling and cross-client response-queue poisoning bsc1269489. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate ...
Security update for php8
This update for php8 fixes the following issue CVE-2026-14355: The AES-WRAP-PAD algorithm implementation in OpenSSL extension contains a buffer allocation flaw bsc1270351. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypp...
Security update for libpng15
This update for libpng15 fixes the following issue CVE-2026-25646: heap buffer overflow vulnerability in pngsetdither/pngsetquantize bsc1258020. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively yo...
Security update for ImageMagick
This update for ImageMagick fixes the following issues: CVE-2026-53466: integer overflow in the XCF decoder can result in an out-of-bounds read when a crafted image is read bsc1270073. CVE-2026-53467: allocated memory left unchanged in the MNG decoder can lead to a heap information disclosure...
Security update for python-Pillow
This update for python-Pillow fixes the following issues CVE-2026-54059: crafted PCF font data can cause excessive memory allocation bsc1270409. CVE-2026-54060: a font can trigger excessive allocation during conversion or saving bsc1270410. CVE-2026-55379: bypass of decompression bomb protection,...
Security update for sccache
This update for sccache fixes the following issue CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270206. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for the Linux Kernel (Live Patch 32 for SUSE Linux Enterprise 15 SP5)
This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.127 fixes various security issues The following security issues were fixed: CVE-2025-71089: iommu: disable SVA when CONFIGX86 is set bsc1256615. CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524...
Security update for the Linux Kernel (Live Patch 41 for SUSE Linux Enterprise 15 SP4)
This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.167 fixes various security issues The following security issues were fixed: CVE-2025-71089: iommu: disable SVA when CONFIGX86 is set bsc1256615. CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524...
Security update for the Linux Kernel (Live Patch 22 for SUSE Linux Enterprise 15 SP6)
This update for the SUSE Linux Enterprise Kernel 6.4.0-150600.23.95 fixes various security issues The following security issues were fixed: CVE-2026-23393: bridge: cfm: Fix race condition in peermep deletion bsc1260524. CVE-2026-31505: iavf: fix out-of-bounds writes in iavfgetethtoolstats...
Security update for dracut
This update for dracut fixes the following issue CVE-2026-6893: Root code execution via DHCP options command injection bsc1268322. Changes for dracut: Update to version 059+suse.570.g2b84048d7: fixnetwork-legacy: sanitize DHCP values in dhclient-script.sh bsc1268322, CVE-2026-6893...
Security update for terraform-provider-aws, terraform-provider-azurerm, terraform-provider-external, terraform-provider-google, terraform-provider-helm, terraform-provider-kubernetes, terraform-provid
This update for terraform-provider-aws, terraform-provider-azurerm, terraform-provider-external, terraform-provider-google, terraform-provider-helm, terraform-provider-kubernetes, terraform-provider-random, terraform-provider-susepubliccloud, terraform-provider-tls fixes the following issue...
Security update for krb5
This update for krb5 fixes the following issue CVE-2026-11850: integer underflow in berval2tldata leads to heap out-of-bounds read bsc1268131. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you...
Security update for krb5, krb5-mini
This update for krb5, krb5-mini fixes the following issues CVE-2026-11850: integer underflow in berval2tldata leads to heap out-of-bounds read bsc1268131. CVE-2026-40355: Denial of Service via NULL pointer dereference in NegoEx mechanism bsc1263366. CVE-2026-40356: Denial of Service via integer...
Security update for krb5
This update for krb5 fixes the following issue CVE-2026-11850: integer underflow in berval2tldata leads to heap out-of-bounds read bsc1268131. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you...
Security update for perl-List-SomeUtils-XS
This update for perl-List-SomeUtils-XS fixes the following issue CVE-2026-12844: heap buffer overflow in the pairwise function bsc1269210. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Security update for gstreamer-plugins-good
This update for gstreamer-plugins-good fixes the following issue CVE-2026-53705: Heap buffer overflow in WavPack decoder via integer overflow bsc1268449. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
Security update for gstreamer-plugins-good
This update for gstreamer-plugins-good fixes the following issue CVE-2026-53705: Heap buffer overflow in WavPack decoder via integer overflow bsc1268449. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
Security update for gstreamer-plugins-good
This update for gstreamer-plugins-good fixes the following issue CVE-2026-53705: Heap buffer overflow in WavPack decoder via integer overflow bsc1268449. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31771: Bluetooth: Ignore HCIERRORCANCELLEDBYHOST on adv set terminated event bsc1264145. CVE-2026-43038: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unreach...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to fix various security issues The following security issues were fixed: CVE-2026-31771: Bluetooth: hcievent: move wake reason storage into validated event handlers bsc1264145. CVE-2026-43038: ipv6: icmp: clear skb2-cb in ip6errgenicmpv6unrea...
Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished delayed work bsc1255416. CVE-2026-43198: tcp: fix potential race in tcpv6synrecvsock bsc1264610...
Security update for libexif
This update for libexif fixes the following issues CVE-2026-40385: Fixed information disclosure and crashes via integer overflow in Nikon MakerNote handling bsc1262000 CVE-2026-40386: Fixed denial of service and information disclosure via integer underflow in MakerNote decoding bsc1262001...
Security update for libexif
This update for libexif fixes the following issues CVE-2026-40385: Fixed information disclosure and crashes via integer overflow in Nikon MakerNote handling bsc1262000 CVE-2026-40386: Fixed denial of service and information disclosure via integer underflow in MakerNote decoding bsc1262001...
Security update for clamav
This update for clamav fixes the following issues CVE-2026-20213: PE file format parser could allow an unauthenticated, remote attacker to cause a denial of service bsc1270107. CVE-2026-20214: FSG file format parser could allow an unauthenticated, remote attacker to cause a denial of service...
Security update for clamav
This update for clamav fixes the following issues CVE-2026-20213: PE file format parser could allow an unauthenticated, remote attacker to cause a denial of service bsc1270107. CVE-2026-20214: FSG file format parser could allow an unauthenticated, remote attacker to cause a denial of service...
Security update for clamav
This update for clamav fixes the following issues CVE-2026-20213: PE file format parser could allow an unauthenticated, remote attacker to cause a denial of service bsc1270107. CVE-2026-20214: FSG file format parser could allow an unauthenticated, remote attacker to cause a denial of service...
Security update for rustup
This update for rustup fixes the following issues Security issues: CVE-2024-12224: idna: idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243862. CVE-2025-58160: tracing-subscriber: Tracing log pollution bsc1249008. CVE-2026-41676: openssl: Deriver:derive and...
Security update for rustup
This update for rustup fixes the following issues Security issues: CVE-2024-12224: idna: idna accepts Punycode labels that do not produce any non-ASCII when decoded bsc1243862. CVE-2025-58160: tracing-subscriber: Tracing log pollution bsc1249008. CVE-2026-25727: time: parsing of user-provided inp...
Security update for warewulf4
This update for warewulf4 fixes the following issues: Update to v4.7.0. Security issues fixed: CVE-2025-69725: incorrect input validation in the RedirectSlashes function can lead to an open redirect bsc1258511. CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given b...
Security update for libaom
This update for libaom fixes the following issues: CVE-2026-56208: untrusted encoder configuration inputs can lead to a heap-based buffer overflow and a process crash bsc1268650. CVE-2026-56209: crafted video frames with specific Y-plane pixel values can lead to an arbitrary memory write...
Security update for python-idna
This update for python-idna fixes the following issue CVE-2026-45409: specially crafted inputs to idna.encode can bypass earlier security fix bsc1265413. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...
Security update for cosign
This update for cosign fixes the following issues CVE-2026-25680,CVE-2026-25681,CVE-2026-27136,CVE-2026-42502,CVE-2026-42506: multiple issues when parsing HTML files bsc1267044. CVE-2026-33815: memory-safety vulnerability bsc1261811...
Security update for rust-keylime
This update for rust-keylime fixes the following issues Update to version 0.2.9+49. Update openssl to 0.10.81. CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270174. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback...
Security update for rust-keylime
This update for rust-keylime fixes the following issues Update to version 0.2.9+49. Update openssl to 0.10.81. CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270174. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback...
Security update for alloy
This update for alloy fixes the following issues CVE-2026-10722: github.com/cilium/ebpf: BTF string offset boundary check can lead to crash when parsing malformed ELF/BTF input bsc1267811. CVE-2026-25680,CVE-2026-25681,CVE-2026-27136,CVE-2026-42502,CVE-2026-42506: golang.org/x/net/html: multiple...
Security update for helm
This update for helm fixes the following issues Update to version 3.21.2. CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation bypass and privilege escalation bsc1266598. CVE-2026-48978: oras.land/oras-go/v2/registry/remote/auth:...
Security update for gnutls
This update for gnutls fixes the following issues CVE-2025-14831: excessive resource consumption when verifying specially crafted malicious certificates containing a large number of name constraints and SANs bsc1257960. CVE-2026-3833: incorrectly accepted domain names due to comparison during nam...
Security update for python-sqlparse
This update for python-sqlparse fixes the following issue Fixed an issue where formatting list of tuples leads to denial of service bsc1268597. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you...
Security update for GraphicsMagick
This update for GraphicsMagick fixes the following issue CVE-2026-13606: crafted Photo CD PCD file can cause memory corruption bsc1269891. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Security update for python-Django
This update for python-Django fixes the following issues: CVE-2026-48588: potential exposure of private data via cached Set-Cookie response bsc1271029. CVE-2026-53877: information disclosure via 32-byte heap buffer overread in GDALRaster bsc1271030. Patch Instructions: To install this SUSE update...
Security update for go1.26
This update for go1.26 fixes the following issues Update to version go1.26.5 bsc1255111 CVE-2026-39822: os: Root escape via symlink plus trailing slash bsc1271014. CVE-2026-42505: crypto/tls: omit PSK in ECH outer client hello bsc1271015. Patch Instructions: To install this SUSE update use the SU...
Security update for go1.25
This update for go1.25 fixes the following issues Update to version go1.25.12 bsc1244485. CVE-2026-25679: net/url: reject IPv6 literal not at start of host bsc1259264. CVE-2026-27139: os: FileInfo can escape from a Root bsc1259268. CVE-2026-27142: html/template: URLs in meta content attribute...
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: NOTE: This update was retracted as it contained incorrect provides/obsolets on mozilla-nss-certs. Update to Firefox 140.12.0 ESR MFSA 2026-58, bsc1268071: CVE-2026-12289: Privilege escalation in the Graphics: WebRender component...
Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: Removed obsolete mozilla-nss-certs and recommends p11-kit-nss-trust bsc1269226 Update to Firefox 140.12.0 ESR MFSA 2026-58, bsc1268071: CVE-2026-12289: Privilege escalation in the Graphics: WebRender component. CVE-2026-12290: Memory safe...
Security update for python-maturin
This update for python-maturin fixes the following issues CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270208. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback when returning an oversized length bsc1270620...
Security update for glib-networking
This update for glib-networking fixes the following issue CVE-2026-10028: two certificates which are each signed by the other can lead to an infinite loop bsc1267979. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for systemd
This update for systemd fixes the following issue Security issues fixed: CVE-2026-40226: nspawn: escape-to-host via malformed optional config file bsc1261400. Other updates and bugfixes: Import commit 37508f8ec1 bsc1267647. Import commit c7530fbea3 bsc1261982 bsc1261983. Import commit 5c4ed461a7...
Security update for rust-keylime
This update for rust-keylime fixes the following issues Update to version 0.2.9+49 Update openssl to 0.10.81 CVE-2026-41676: openssl: Deriver:derive and PkeyCtxRef:derive can overflow short buffers on OpenSSL 1.1.1 bsc1270174. CVE-2026-41677: openssl: out-of-bounds read in PEM password callback...