Lucene search
K

5411 matches found

SUSE Linux
SUSE Linux
•added 2025/09/22 8:52 a.m.•6 views

Security update for git

This update for git fixes the following issues: Update to 2.51.0 UI, Workflows & Features Userdiff patterns for the R language have been added. Documentation for "git send-email" has been updated with a bit more credential helper and OAuth information. "git cat-file --batch" learns to understand...

8.6CVSS8.4AI score0.02775EPSS
Exploits9References42
SUSE Linux
SUSE Linux
•added 2025/09/22 8:42 a.m.•4 views

Security update for krb5

This update for krb5 fixes the following issues: CVE-2025-3576: Fixed Kerberos RC4-HMAC-MD5 Checksum Vulnerability bsc1241219 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the comma...

8.2CVSS7AI score0.00276EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/22 8:22 a.m.•3 views

Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issues: CVE-2025-47806: Fixed stack buffer overflow in SubRip subtitle parser bsc1244407. CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser bsc1244403. CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer...

5.5CVSS7.6AI score0.00428EPSS
Exploits3References12
SUSE Linux
SUSE Linux
•added 2025/09/22 8:10 a.m.•1 views

Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 140.3.0 ESR bsc1249391. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

7AI score
Exploits0References2
SUSE Linux
SUSE Linux
•added 2025/09/21 9:18 a.m.•7 views

Security update for mybatis, ognl

This update for mybatis, ognl fixes the following issues: Version update to 3.5.7: Bug fixes: Improved performance under JDK 8. 2223 Version update to 3.5.8: List of changes: Avoid NullPointerException when mapping an empty string to java.lang.Character. 2368 Fixed an incorrect argument when...

8.6CVSS7.8AI score0.0052EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/19 5:49 p.m.•3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-49980: USB: gadget: fix use-after-free read in usbudcuevent bsc1245110. CVE-2022-50116: tty: ngsm: fix deadlock and link starvation in outgoing data path...

8.5CVSS7.9AI score0.01345EPSS
Exploits10References96
SUSE Linux
SUSE Linux
•added 2025/09/19 5:44 p.m.•3 views

Security update for cmake

This update for cmake fixes the following issues: CVE-2025-9301: Fixed assertion failure due to improper validation bsc1248461 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

4.6CVSS4.3AI score0.00135EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/19 5:43 p.m.•2 views

Security update for cairo

This update for cairo fixes the following issues: CVE-2025-50422: NULL pointer access in activeedgestotraps can lead to crash in Poppler bsc1247589. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternativel...

3.3CVSS6.6AI score0.00205EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/19 1:42 p.m.•6 views

Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-t

This update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container fixes the following issues: This...

8.2CVSS7.6AI score0.03092EPSS
Exploits2References12
SUSE Linux
SUSE Linux
•added 2025/09/19 12:18 p.m.•2 views

Security update for bluez

This update for bluez fixes the following issues: CVE-2023-45866: keystroke injection and arbitrary command execution via HID device connections bsc1217877. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS7.4AI score0.07879EPSS
Exploits8References4
SUSE Linux
SUSE Linux
•added 2025/09/19 12:17 p.m.•3 views

Security update for mariadb

This update for mariadb fixes the following issues: Update to version 10.6.23. Security issues fixed: CVE-2025-21490: InnoDB issue allows high privileged attacker with network access to cause a hang or frequently repeatable crash of MySQL Server bsc1243356. CVE-2025-30693: InnoDB issue allows hig...

6.9CVSS6AI score0.01236EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2025/09/19 12:16 p.m.•4 views

Security update for mariadb

This update for mariadb fixes the following issues: Update to version 10.11.14. Security issues fixed: CVE-2025-30693: InnoDB issue allows high privileged attacker with network access to gain unauthorized update, insert or delete access to data and cause repeatable crash in MySQL server bsc124921...

5.5CVSS5.7AI score0.00819EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2025/09/19 12:13 p.m.•2 views

Security update for frr

This update for frr fixes the following issues: CVE-2024-55553: excessive resource consumption may lead to denial of service due to repeated RIB revalidation when processing several RPKI updates bsc1235237. Patch Instructions: To install this SUSE update use the SUSE recommended installation...

6.9CVSS7.1AI score0.00823EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/19 12:12 p.m.•3 views

Security update for python-h2

This update for python-h2 fixes the following issues: CVE-2025-57804: Fixed HTTP Request Smuggling due to illegal characters in headers bsc1248737 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

6.9CVSS6.7AI score0.0161EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/19 7:54 a.m.•3 views

Security update for iperf

This update for iperf fixes the following issues: updated to 3.19.1: CVE-2025-54349: Fixed off-by-one error heap based buffer overflow in iperfauth.c bsc1247519 CVE-2025-54350: Fixed Base64Decode assertion failure in iperfauth.c bsc1247520 CVE-2025-54351: Fixed buffer overflow when --skip-rx-copy...

7.5CVSS7.4AI score0.00385EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/09/19 7:43 a.m.•3 views

Security update for udisks2

This update for udisks2 fixes the following issues: CVE-2025-8067: Fixed missing bounds check leading to out-of-bounds read bsc1248502 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run...

8.5CVSS6.9AI score0.0065EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/09/18 6:51 p.m.•5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points bsc1232089...

9.2CVSS7.9AI score0.02838EPSS
Exploits3References424
SUSE Linux
SUSE Linux
•added 2025/09/18 1:34 p.m.•4 views

Security update for busybox, busybox-links

This update for busybox, busybox-links fixes the following issues: Updated to version 1.37.0 jscPED-13039: CVE-2023-42363: Fixed use-after-free vulnerability in xasprintf function in xfuncsprintf.c bsc1217580 CVE-2023-42364: Fixed use-after-free in the awk.c evaluate function bsc1217584...

5.5CVSS7.2AI score0.00433EPSS
Exploits3References32
SUSE Linux
SUSE Linux
•added 2025/09/18 1:20 p.m.•4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50211: md-raid10: fix KASAN warning bsc1245140. CVE-2023-53117: fs: prevent out-of-bounds array speculation when closing a file descriptor bsc1242780...

8.5CVSS7.7AI score0.00292EPSS
Exploits0References32
SUSE Linux
SUSE Linux
•added 2025/09/18 11:18 a.m.•3 views

Security update for krb5

This update for krb5 fixes the following issues: CVE-2025-3576: weakness in the MD5 checksum design allows for spoofing of GSSAPI-protected messages that are using RC4-HMAC-MD5 bsc1241219. Krb5, as a very old protocol, supported quite a number of ciphers that are not longer up to current...

8.2CVSS7AI score0.00276EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/18 11:9 a.m.•3 views

Security update for bluez

This update for bluez fixes the following issues: CVE-2023-45866: keystroke injection and arbitrary command execution via HID device connections bsc1217877. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.3CVSS7.3AI score0.07879EPSS
Exploits8References4
SUSE Linux
SUSE Linux
•added 2025/09/18 11:9 a.m.•4 views

Security update for curl

This update for curl fixes the following issues: Security issues fixed: CVE-2025-9086: bug in patch comparison logic when processing cookies can lead to out-of-bounds read in heap buffer bsc1249191. CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server...

7.5CVSS6.8AI score0.01301EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2025/09/18 11:6 a.m.•4 views

Security update for curl

This update for curl fixes the following issues: Security issues fixed: CVE-2025-9086: bug in patch comparison logic when processing cookies can lead to out-of-bounds read in heap buffer bsc1249191. CVE-2025-10148: predictable websocket mask can lead to proxy cache poisoning by malicious server...

7.5CVSS6.8AI score0.01301EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2025/09/18 10:35 a.m.•2 views

Security update for avahi

This update for avahi fixes the following issues: CVE-2024-52615: wide-area DNS uses constant source port for queries and can expose the Avahi-daemon to DNS spoofing attacks bsc1233421. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.3CVSS5.5AI score0.00574EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/18 6:42 a.m.•7 views

Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 50. Security issues fixed: Oracle July 15 2025 CPU bsc1247754. CVE-2025-30749: heap corruption allows unauthenticated attacker with network access to compromise and takeover Java applications th...

8.6CVSS8AI score0.01058EPSS
Exploits1References22
SUSE Linux
SUSE Linux
•added 2025/09/18 4:36 a.m.•2 views

Security update for cups

This update for cups fixes the following issues: CVE-2024-47175: no validation of IPP attributes in ppdCreatePPDFromIPP2 when writing to a temporary PPD file allows for the injection of attacker-controlled data to the resulting PPD bsc1230932. CVE-2025-58060: no password check when AuthType is se...

9.3CVSS8.3AI score0.73062EPSS
Exploits7References14
SUSE Linux
SUSE Linux
•added 2025/09/18 12:10 a.m.•2 views

Security update for net-tools

This update for net-tools fixes the following issues: Security issues fixed: CVE-2025-46836: missing bounds check in getname may lead to a stack buffer overflow bsc1243581. Avoid unsafe use of memcpy in ifconfig bsc1248687. Prevent overflow in ax25 and netrom bsc1248687. Fix stack buffer overflow...

6.6CVSS7.3AI score0.00158EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/09/17 7:1 p.m.•2 views

Security update for raptor

This update for raptor fixes the following issues: CVE-2024-57823: Fixed integer underflow when normalizing a URI with the turtle parser bsc1235673. CVE-2024-57822: Fixed heap buffer overread when parsing triples with the nquads parser bsc1235674. Patch Instructions: To install this SUSE update u...

6.9CVSS7.3AI score0.00315EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/09/17 11:34 a.m.•5 views

Security update for sevctl

This update for sevctl fixes the following issues: CVE-2025-3416: openssl: Fixed Use-After-Free in Md::fetch and Cipher::fetch bsc1242618 CVE-2024-12224: idna: Fixed Punycode improper validation bsc1243860 Patch Instructions: To install this SUSE update use the SUSE recommended installation metho...

6.3CVSS7.1AI score0.00452EPSS
Exploits1References8
SUSE Linux
SUSE Linux
•added 2025/09/17 11:30 a.m.•4 views

Security update for pam

This update for pam fixes the following issues: CVE-2024-10041: Fixed hashed password leak bsc1232234 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your...

5.7CVSS7.2AI score0.00265EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/17 11:11 a.m.•2 views

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Updated CUDA variant to 580.82.07: CVE-2025-23277: Fixed access to memory outside bounds permitted under normal use cases in NVIDIA Display Driver bsc1247528. CVE-2025-23278: Fixed improper index validation by issuing a cal...

7.8CVSS7.3AI score0.00203EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2025/09/17 11:11 a.m.•3 views

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues: Updated CUDA variant to 580.82.07: CVE-2025-23277: Fixed access to memory outside bounds permitted under normal use cases in NVIDIA Display Driver bsc1247528. CVE-2025-23278: Fixed improper index validation by issuing a cal...

7.8CVSS7.3AI score0.00203EPSS
Exploits0References30
SUSE Linux
SUSE Linux
•added 2025/09/17 10:55 a.m.•3 views

Security update for net-tools

This update for net-tools fixes the following issues: Security issues fixed: Avoid unsafe use of memcpy in ifconfig bsc1248687. Prevent overflow in ax25 and netrom bsc1248687. Fix stack buffer overflow in parsehex bsc1248687. Fix stack buffer overflow in procgenfmt bsc1248687. Other issues fixed:...

6.6CVSS9.9AI score0.00158EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/09/17 10:52 a.m.•5 views

Security update for raptor

This update for raptor fixes the following issues: CVE-2024-57823: Fixed integer underflow when normalizing a URI with the turtle parser bsc1235673 CVE-2024-57822: Fixed heap buffer overread when parsing triples with the nquads parser bsc1235674 Patch Instructions: To install this SUSE update use...

6.9CVSS7.3AI score0.00315EPSS
Exploits2References8
SUSE Linux
SUSE Linux
•added 2025/09/17 10:24 a.m.•1 views

Security update for nginx

This update for nginx fixes the following issues: CVE-2025-53859: the server side may leak arbitrary bytes during the NGINX SMTP authentication process bsc1248070. CVE-2025-23419: session resumption can bypass client certificate authentication requirements using TLSv1.3 bsc1236851. Patch...

6.3CVSS7.3AI score0.02557EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/09/16 7:57 p.m.•1 views

Security update for vim

This update for vim fixes the following issues: Update to version 9.1.1629. CVE-2025-53905: Fixed a path traversal issue in tar.vim plugin that may allow for file overwriting when opening specially crafted tar files bsc1246604. CVE-2025-53906: Fixed a path traversal issue in zip.vim plugin that m...

6.7CVSS7AI score0.00731EPSS
Exploits2References16
SUSE Linux
SUSE Linux
•added 2025/09/16 5:4 p.m.•2 views

Security update for expat

This update for expat fixes the following issues: expat was updated to version 2.7.1: Bug fixes: Restore event pointer behavior from Expat 2.6.4 that the fix to CVE-2024-8176 changed in 2.7.0; affected API functions are: - XMLGetCurrentByteCount - XMLGetCurrentByteIndex - XMLGetCurrentColumnNumbe...

8.7CVSS8.1AI score0.01569EPSS
Exploits0References6
SUSE Linux
SUSE Linux
•added 2025/09/16 10:5 a.m.•1 views

Security update for libavif

This update for libavif fixes the following issues: Update to 1.3.0: CVE-2025-48175: Fixed an integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes. bsc1243270 CVE-2025-48174: Fixed an integer overflow and resultant buffer overflow in stream-offset+size...

7CVSS10AI score0.01118EPSS
Exploits1References18
SUSE Linux
SUSE Linux
•added 2025/09/16 9:11 a.m.•5 views

Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 50. Security issues fixed: Oracle July 15 2025 CPU bsc1247754. CVE-2025-30749: heap corruption allows unauthenticated attacker with network access to compromise and takeover Java applications th...

8.6CVSS7.3AI score0.01058EPSS
Exploits1References22
SUSE Linux
SUSE Linux
•added 2025/09/16 7:49 a.m.•7 views

Security update for rust-keylime

This update for rust-keylime fixes the following issues: Update vendored crate slab to version 0.4.11 CVE-2025-55159: Fixed incorrect bounds check in getdisjointmut function leading to undefined behavior or potential crash due to out-of-bounds access bsc1248006 Update to version 0.2.8+12:...

6.3CVSS7.6AI score0.0078EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/09/16 6:53 a.m.•4 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-8194: Fixed tar archives with negative offsets leading to infinite loop and deadlock bsc1247249 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

7.1CVSS7AI score0.00611EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/16 6:28 a.m.•2 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: CVE-2025-6199: Fixed uninitialized memory leading to arbitrary memory leak bsc1245227 CVE-2025-7345: Fixed heap buffer overflow within the gdkpixbufjpegimageloadincrement function bsc1246114 Patch Instructions: To install this SUSE update use...

8.5CVSS7.6AI score0.01051EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/09/16 6:28 a.m.•4 views

Security update for net-tools

This update for net-tools fixes the following issues: Fixed stack buffer overflow in parsehex, procgenfmt, ax25 and netrom bsc1248687 CVE-2025-46836: Fixed stack buffer overflow caused by the absence of bound checks bsc1243581 Patch Instructions: To install this SUSE update use the SUSE recommend...

6.6CVSS7.5AI score0.00158EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/09/15 2:6 p.m.•4 views

Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002342 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS9AI score0.00369EPSS
Exploits3References34
SUSE Linux
SUSE Linux
•added 2025/09/15 1:23 p.m.•3 views

Security update for rabbitmq-server313

This update for rabbitmq-server313 fixes the following issues: CVE-2025-50200: Fixed logging of Basic Auth header from an HTTP request bsc1245105 Fixed bad logrotate configuration allowing potential escalation from rabbitmq to root bsc1246091 Patch Instructions: To install this SUSE update use th...

6.7CVSS7.2AI score0.00194EPSS
Exploits1References6
SUSE Linux
SUSE Linux
•added 2025/09/15 1:16 p.m.•3 views

Security update for pcp

This update for pcp fixes the following issues: CVE-2024-3019: exposure of the redis server backend allows remote command execution via pmproxy bsc1222121. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.8CVSS7.2AI score0.01002EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/15 12:33 p.m.•2 views

Security update for krb5

This update for krb5 fixes the following issues: CVE-2025-3576: weakness in the MD5 checksum design allows for spoofing of GSSAPI-protected messages that are using RC4-HMAC-MD5 bsc1241219. Krb5, as a very old protocol, supported quite a number of ciphers that are not longer up to current...

8.2CVSS7AI score0.00276EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/09/15 12:6 p.m.•6 views

Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002325 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS8.9AI score0.00369EPSS
Exploits3References46
SUSE Linux
SUSE Linux
•added 2025/09/15 11:39 a.m.•3 views

Security update for cups-filters

This update for cups-filters fixes the following issues: CVE-2024-47175: no validation of IPP attributes in ppdCreatePPDFromIPP2 when writing to a temporary PPD file allows for the injection of attacker-controlled data to the resulting PPD bsc1230932. Patch Instructions: To install this SUSE upda...

9.3CVSS7.2AI score0.73062EPSS
Exploits5References6
SUSE Linux
SUSE Linux
•added 2025/09/15 11:38 a.m.•4 views

Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u462 icedtea-3.36.0. Security issues fixed: CVE-2025-30749: heap corruption allows unauthenticated attacker with network access to compromise and takeover Java applications that load and run untrusted code...

8.3CVSS7.2AI score0.01058EPSS
Exploits1References18
Total number of security vulnerabilities5411