Lucene search
K

5412 matches found

SUSE Linux
SUSE Linux
added 2025/09/10 11:33 a.m.6 views

Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059174 fixes several issues. The following security issues were fixed: CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237930. CVE-2025-38001: netsched: hfsc: Address reentrant...

8.5CVSS6.9AI score0.00369EPSS
Exploits3References36
SUSE Linux
SUSE Linux
added 2025/09/10 10:4 a.m.6 views

Security update for the Linux Kernel (Live Patch 54 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059195 fixes several issues. The following security issues were fixed: CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237930. CVE-2025-38001: netsched: hfsc: Address reentrant...

8.5CVSS7AI score0.00369EPSS
Exploits3References24
SUSE Linux
SUSE Linux
added 2025/09/10 8:49 a.m.5 views

Security update for python-deepdiff

This update for python-deepdiff fixes the following issues: CVE-2025-58367: class pollution via the Delta class constructor can lead to denial-of-service and remote code execution bsc1249347. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

10CVSS8.1AI score0.01056EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/09 10:43 p.m.4 views

Security update for the Linux Kernel (Live Patch 52 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059188 fixes several issues. The following security issues were fixed: CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237930. CVE-2025-38001: netsched: hfsc: Address reentrant...

8.5CVSS7.5AI score0.00369EPSS
Exploits3References24
SUSE Linux
SUSE Linux
added 2025/09/09 7:33 p.m.6 views

Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059179 fixes several issues. The following security issues were fixed: CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237930. CVE-2025-38001: netsched: hfsc: Address reentrant...

8.5CVSS7.7AI score0.00369EPSS
Exploits3References36
SUSE Linux
SUSE Linux
added 2025/09/09 5:4 p.m.6 views

Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References34
SUSE Linux
SUSE Linux
added 2025/09/09 3:10 p.m.4 views

Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u462 icedtea-3.36.0. Security issues fixed: CVE-2025-30749: heap corruption allows unauthenticated attacker with network access to compromise and takeover Java applications that load and run untrusted code...

8.3CVSS8.3AI score0.01058EPSS
Exploits1References18
SUSE Linux
SUSE Linux
added 2025/09/09 12:59 p.m.3 views

Security update for regionServiceClientConfigGCE

This update for regionServiceClientConfigGCE contains the following fixes: Update to version 5.0.0 bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update conditional to handle name change of metadata package in...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/09 12:59 p.m.1 views

Security update for regionServiceClientConfigEC2

This update for regionServiceClientConfigEC2 contains the following fixes: Update to version 5.0.0. bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update dependency to accomodate metadata binary package name...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/09 12:58 p.m.5 views

Security update for regionServiceClientConfigAzure

This update for regionServiceClientConfigAzure contains the following fixes: Update to version 3.0.0.bsc1246995 SLE 16 python-requests requires SSL v3 certificates. Update 2 region server certs to support SLE 16 when it gets released. Update dependency name for metadata package, name change in SL...

7AI score
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/09 10:57 a.m.3 views

Security update for microcode_ctl

This update for microcodectl fixes the following issues: Intel CPU Microcode was updated to the 20250812 release bsc1248438 CVE-2025-20109: Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel Processors may allow an authenticated user to potentially enable...

7.9CVSS7.2AI score0.00169EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/09/09 10:37 a.m.7 views

Security update for go1.25-openssl

This update for go1.25-openssl fixes the following issues: Update to version 1.25.0 cut from the go1.25-fips-release branch at the revision tagged go1.25.0-1-openssl-fips. jscSLE-18320 Rebase to 1.25.0 Fix HKDF-Extract The latest OpenSSL in c9s/c10s requires nil salt to be passed as a hash length...

9.3CVSS6.6AI score0.00489EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2025/09/09 10:36 a.m.6 views

Security update for netty, netty-tcnative

This update for netty, netty-tcnative fixes the following issues: Upgrade to upstream version 4.1.126. Security issues fixed: CVE-2025-58057: decompression codecs allocating a large number of buffers after processing specially crafted input can cause a denial of service bsc1249134. CVE-2025-58056...

8.7CVSS7.1AI score0.00979EPSS
Exploits3References12
SUSE Linux
SUSE Linux
added 2025/09/09 10:25 a.m.2 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-55004: Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels bsc1248076. CVE-2025-55005: Fixed heap buffer overflow when transforming from Log to sRGB colorspaces bsc1248077...

9CVSS7.5AI score0.04065EPSS
Exploits7References28
SUSE Linux
SUSE Linux
added 2025/09/09 10:22 a.m.2 views

Security update for curl

This update for curl fixes the following issues: CVE-2025-5399: libcurl can possibly get trapped in an endless busy-loop when processing specially crafted packets bsc1243933. CVE-2025-5025: No QUIC certificate pinning with wolfSSL bsc1243706. CVE-2025-4947: QUIC certificate check skip with wolfSS...

8.3CVSS7.1AI score0.01226EPSS
Exploits4References18
SUSE Linux
SUSE Linux
added 2025/09/09 10:20 a.m.2 views

Security update for sqlite3

This update for sqlite3 fixes the following issues: CVE-2025-6965: Fixed integer truncation bsc1246597. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your...

7.7CVSS7.4AI score0.73495EPSS
Exploits3References4
SUSE Linux
SUSE Linux
added 2025/09/09 10:18 a.m.3 views

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250812 release bsc1248438 CVE-2025-20109: Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel Processors may allow an authenticated user to potentially enable...

7.9CVSS7AI score0.00169EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/09/09 8:4 a.m.4 views

Security update for the Linux Kernel RT (Live Patch 7 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001023 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.5AI score0.00369EPSS
Exploits3References34
SUSE Linux
SUSE Linux
added 2025/09/09 7:34 a.m.3 views

Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-15070078 fixes several issues. The following security issue was fixed: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...

8.5CVSS7.4AI score0.00153EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/09/09 7:33 a.m.4 views

Security update for the Linux Kernel RT (Live Patch 10 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001034 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.5AI score0.00369EPSS
Exploits3References26
SUSE Linux
SUSE Linux
added 2025/09/09 7:33 a.m.5 views

Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506008 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504 . CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address reentran...

8.5CVSS7.5AI score0.00369EPSS
Exploits3References46
SUSE Linux
SUSE Linux
added 2025/09/08 9:13 p.m.3 views

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-15070073 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-38001: netsched: hfsc: Address reentrant enqueue adding class to eltree twice bsc1244235...

8.5CVSS7.5AI score0.00369EPSS
Exploits3References18
SUSE Linux
SUSE Linux
added 2025/09/08 9:13 p.m.4 views

Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP7)

This update for the Linux Kernel 6.4.0-1507005 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-38001: netsched: hfsc: Address reentrant enqueue adding class to eltree twice bsc1244235...

8.5CVSS7.4AI score0.00369EPSS
Exploits3References22
SUSE Linux
SUSE Linux
added 2025/09/08 9:13 p.m.2 views

Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001044 fixes several issues. The following security issue was fixed: CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU bsc1246030. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...

8.5CVSS8.4AI score0.00153EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/09/08 9:13 p.m.5 views

Security update for the Linux Kernel RT (Live Patch 9 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001029 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.4AI score0.00369EPSS
Exploits3References34
SUSE Linux
SUSE Linux
added 2025/09/08 9:12 p.m.5 views

Security update for the Linux Kernel RT (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001014 fixes several issues. The following security issues were fixed: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245504. CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. CVE-2025-38001: netsched: hfsc: Address...

8.5CVSS7.4AI score0.00369EPSS
Exploits3References46
SUSE Linux
SUSE Linux
added 2025/09/08 4:9 p.m.3 views

Security update for ovmf

This update for ovmf fixes the following issues: CVE-2023-45229: Fixed integer underflow when processing IANA/IATA options in a DHCPv6 Advertise message bsc1218879 CVE-2023-45230: Fixed buffer overflow in the DHCPv6 client via a long Server ID option bsc1218880 Patch Instructions: To install this...

8.3CVSS7.4AI score0.01213EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2025/09/08 1:48 p.m.4 views

Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: CVE-2025-7345: Uninitialized memory could lead to leak arbitrary memory contents bsc1246114. CVE-2025-6199: Heap buffer overflow within the gdkpixbufjpegimageloadincrement function bsc1245227. Patch Instructions: To install this SUSE update u...

8.5CVSS7.1AI score0.01051EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/09/08 1:48 p.m.2 views

Security update for gstreamer

This update for gstreamer fixes the following issues: CVE-2024-47606: Avoid integer overflow when allocating sysmem bsc1234449. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.8CVSS8.2AI score0.01344EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/08 1:38 p.m.2 views

Security update for firebird

This update for firebird fixes the following issues: CVE-2017-11509: authenticated remote code execution via the definition external functions that don't match the original definition of the entry point bsc1087421. Patch Instructions: To install this SUSE update use the SUSE recommended...

9.9CVSS8.1AI score0.06224EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/09/08 1:37 p.m.3 views

Security update for podman

This update for podman fixes the following issues: CVE-2025-6032: Machine init command fails to verify TLS certificate when downloading VM images from an OCI registry bsc1245320. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate o...

9CVSS6.6AI score0.00397EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/05 5:20 p.m.4 views

Security update for rav1e

This update for rav1e fixes the following issues: Update crate shlex to 1.3.0: CVE-2024-58266: Fixed command injection bsc1247207 RUSTSEC-2024-0006: Fixed multiple issues involving quote API bsc1230028 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods...

3.6CVSS7.5AI score0.0078EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/09/05 1:29 p.m.2 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2025-4945: Fixed Integer Overflow in Cookie Expiration Date Handling in libsoup bsc1243314. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternativel...

3.7CVSS6.2AI score0.00538EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/05 12:57 p.m.4 views

Security update for iperf

This update for iperf fixes the following issues: Update to 3.19.1: CVE-2025-54349: Fixed off-by-one error and resultant heap-based buffer overflow bsc1247519. CVE-2025-54350: Fixed Base64Decode assertion failure and application exit upon a malformed authentication attempt bsc1247520...

7.5CVSS7.4AI score0.00385EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/09/05 12:55 p.m.2 views

Security update for aide

This update for aide fixes the following issues: CVE-2025-54389: Escape control characters in report and log output bsc1247884. CVE-2025-54409: Fix null pointer dereference after reading incorrectly encoded xattr attributes from database bsc1247885. Patch Instructions: To install this SUSE update...

6.9CVSS7AI score0.00216EPSS
Exploits2References8
SUSE Linux
SUSE Linux
added 2025/09/05 12:55 p.m.3 views

Security update for grub2

This update for grub2 fixes the following issues: CVE-2024-56738: Side-channel attack due to not constant-timealgorithm in grubcryptomemcmp bsc1234959. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.7CVSS6.9AI score0.0038EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/05 12:55 p.m.4 views

Security update for cloud-init

This update for cloud-init fixes the following issues: Update to version 25.1.3: CVE-2024-6174: Unpriveleged user could trigger hotplug-hook commands bsc1245403. None security fixes: Rebase cloud-init to 24.4 or higher bsc1239715, jscPED-8680. Fixed cloud-init --debug status bsc1228414. Using...

8.8CVSS7AI score0.00263EPSS
Exploits0References26
SUSE Linux
SUSE Linux
added 2025/09/05 12:55 p.m.3 views

Security update for jq

This update for jq fixes the following issues: CVE-2025-48060: Fixed stack-buffer-overflow in jqfuzzexecute jvstringvfmt bsc1244116. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run th...

6.9CVSS7AI score0.00443EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/09/05 12:22 p.m.4 views

Security update for glib2

This update for glib2 fixes the following issues: CVE-2025-6052: Fix overflow check when expanding a GString bsc1244596. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command...

7.8CVSS6.9AI score0.00419EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/05 12:17 p.m.3 views

Security update for protobuf

This update for protobuf fixes the following issues: CVE-2024-2410: Use after free when parsing JSON from a stream bsc1223947. CVE-2024-7254: StackOverflow vulnerability in Protocol Buffers bsc1230778. CVE-2025-4565: Parsing of untrusted Protocol Buffers data containing an arbitrary number of...

8.2CVSS7.8AI score0.02772EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/09/05 12:16 p.m.2 views

Security update for opensc

This update for opensc fixes the following issues: CVE-2023-5992: Side-channel leaks while stripping encryption PKCS1 padding bsc1219386. CVE-2024-8443: Heap buffer overflow in OpenPGP driver when generating key bsc1230364. CVE-2024-45620: Incorrect handling of the length of buffers or files in...

4.4CVSS6.3AI score0.01156EPSS
Exploits1References32
SUSE Linux
SUSE Linux
added 2025/09/05 12:14 p.m.4 views

Security update for dpkg

This update for dpkg fixes the following issues: CVE-2025-6297: Fixed cleanup for control member with restricted directories bsc1245573. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can ru...

6.7CVSS6.7AI score0.00347EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/05 12:2 p.m.3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. CVE-2025-38006: net: mctp: Do not access ifaindex when missing bsc1244930...

9.2CVSS7.9AI score0.02838EPSS
Exploits3References412
SUSE Linux
SUSE Linux
added 2025/09/05 10:39 a.m.4 views

Security update for nginx

This update for nginx fixes the following issues: CVE-2025-53859: the server side may leak arbitrary bytes during the NGINX SMTP authentication process bsc1248070. CVE-2025-23419: session resumption can bypass client certificate authentication requirements using TLSv1.3 bsc1236851. Patch...

6.3CVSS7.3AI score0.02557EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/09/05 10:36 a.m.3 views

Security update for perl-Authen-SASL, perl-Crypt-URandom

This update for perl-Authen-SASL, perl-Crypt-URandom fixes the following issues: Changes in perl-Authen-SASL: CVE-2025-40918: insecurely generated client nonce bsc1246623 Changes in perl-Crypt-URandom: Shipped in version 0.540.0 0.54. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS7.1AI score0.00394EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/05 10:34 a.m.4 views

Security update for perl-Authen-SASL, perl-Crypt-URandom

This update for perl-Authen-SASL, perl-Crypt-URandom fixes the following issues: Changes in perl-Authen-SASL: CVE-2025-40918: Fixed insecurely generated client nonce bsc1246623 Changes in perl-Crypt-URandom: Included 0.540.0 for use by perl-Authen-SASL in SLE-15 jscPED-13306 / bsc1246623. Patch...

8.2CVSS7AI score0.00394EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/09/05 10:12 a.m.3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. CVE-2025-38006: net: mctp: Do not access ifaindex when missing bsc1244930...

9.2CVSS7.2AI score0.02838EPSS
Exploits3References412
SUSE Linux
SUSE Linux
added 2025/09/05 8:27 a.m.3 views

Security update for python-maturin

This update for python-maturin fixes the following issues: CVE-2025-58160: terminal escape injection via ANSI sequences from untrusted input bsc1249011. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

3.1CVSS7.4AI score0.00303EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/09/04 1:26 p.m.5 views

Security update for postgresql15

This update for postgresql15 fixes the following issues: Upgrade to 15.12: CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.8CVSS7AI score0.89472EPSS
Exploits10References4
SUSE Linux
SUSE Linux
added 2025/09/04 10:55 a.m.2 views

Security update for rav1e

This update for rav1e fixes the following issues: CVE-2024-58266: shlex: Fixed certain bytes allowed to appear unquoted and unescaped in command arguments bsc1247207 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

3.6CVSS6.6AI score0.0078EPSS
Exploits0References6
Total number of security vulnerabilities5412