5124 matches found
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52888: media: mediatek: vcodec: Only free buffer VA that is not NULL bsc1228557. CVE-2024-49568: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving...
Security update for the Linux Kernel
This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP7 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52888: media: mediatek: vcodec: Only free buffer VA that is not NULL bsc1228557. CVE-2024-49568: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving...
Security update for erlang
This update for erlang fixes the following issues: CVE-2025-4748: Fixed improper limitation of a pathname to a restricted directory vulnerability in Erlang OTP stdlib modules that allowed absolute path traversal bsc1244642 Patch Instructions: To install this SUSE update use the SUSE recommended...
Security update for erlang26
This update for erlang26 fixes the following issues: CVE-2025-4748: Fixed improper limitation of a pathname to a restricted directory vulnerability in Erlang OTP stdlib modules that allowed absolute path traversal bsc1244642 Patch Instructions: To install this SUSE update use the SUSE recommended...
Security update for rmt-server
This update for rmt-server fixes the following issues: Update to version 2.23 CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. bsc1242893 CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. bsc1242898 Patch Instructions: To install th...
Security update for rmt-server
This update for rmt-server fixes the following issues: Update to version 2.23 CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. bsc1242893 CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. bsc1242898 Patch Instructions: To install th...
Security update for runc
This update for runc fixes the following issues: CVE-2024-45310: Fixed unintentional creation of empty files/directories on host bsc1230092 Other fixes: Update to runc v1.2.6. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...
Security update for pam_pkcs11
This update for pampkcs11 fixes the following issues: Removes pamenv from auth stack for security reason bsc1243226 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...
Security update for xen
This update for xen fixes the following issues: Security fixes: CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection ITS XSA-469 bsc1243117 CVE-2024-53241: Fixed Xen hypercall page unsafe against speculative attacks XSA-466 bsc1234282 CVE-2025-1713: Fixed deadlock potential with VT-d and...
Security update for xen
This update for xen fixes the following issues: CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470 Special Instructions and Notes: Please reboot the system after...
Security update for poppler
This update for poppler fixes the following issues: CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. bsc1245625 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Security update for sudo
This update for sudo fixes the following issues: CVE-2025-32462: Fix a possible local privilege escalation via the --host option bsc1245274 CVE-2025-32463: Fix a possible local privilege Escalation via chroot option bsc1245275 Patch Instructions: To install this SUSE update use the SUSE recommend...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47557: net/sched: schets: do not peek at classes beyond 'nbands' bsc1207361 bsc1225468. CVE-2021-47595: net/sched: schets: do not remove idle classes from...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47557: net/sched: schets: do not peek at classes beyond 'nbands' bsc1207361 bsc1225468. CVE-2021-47595: net/sched: schets: do not remove idle classes from...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50085: dm raid: fix address sanitizer warning in raidresume bsc1245147. CVE-2022-50087: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fai...
Security update for xen
This update for xen fixes the following issues: CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470 Patch Instructions: To install this SUSE update use the SUSE recommend...
Security update for poppler
This update for poppler fixes the following issues: CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. bsc1245625 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Security update for poppler
This update for poppler fixes the following issues: CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. bsc1245625 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...
Security update for xen
This update for xen fixes the following issues: CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470 Special Instructions and Notes: Please reboot the system after...
Security update for xen
This update for xen fixes the following issues: Update to Xen 4.20.1 CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470 Special Instructions and Notes: Please reboot the...
Security update for libxml2
This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-49795: Fixed a null pointer dereference which could lea...
Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50200: selinux: Add boundary check in putentry bsc1245149. Special Instructions and Notes: Please reboot the system after installing this update. Patch...
Security update for protobuf
This update for protobuf fixes the following issues: CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663. Patch Instructions: To install this SUSE update use the SUSE...
Security update for protobuf
This update for protobuf fixes the following issues: CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663. Patch Instructions: To install this SUSE update use the SUSE...
Security update for protobuf
This update for protobuf fixes the following issues: CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663. Patch Instructions: To install this SUSE update use the SUSE...
Security update for the Linux Kernel
This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...
Security update for the Linux Kernel
This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...
Security update for gstreamer-plugins-base
This update for gstreamer-plugins-base fixes the following issues: CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser bsc1244404. CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser bsc1244403. CVE-2025-47806: Fixed stack buffer overflow in SubRip...
Security update for gstreamer-plugins-good
This update for gstreamer-plugins-good fixes the following issues: CVE-2025-47183: Fixed out-of-bounds read when parsing mvhd box bsc1244406. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...
Security update for gstreamer-plugins-base
This update for gstreamer-plugins-base fixes the following issues: CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser bsc1244404. CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser bsc1244403. CVE-2025-47806: Fixed stack buffer overflow in SubRip...
Security update for python36
This update for python36 fixes the following issues: CVE-2024-12718: Fixed extraction filter bypass that allowed file metadata modification outside extraction directory bsc1244056 CVE-2025-4138: Fixed issue that might allow symlink targets to point outside the destination directory, and the...
Security update for go1.23
This update for go1.23 fixes the following issues: Update to version go1.23.11 CVE-2025-4674: Fixed potential command execution in untrusted VCS repositories. bsc1246118 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for go1.24
This update for go1.24 fixes the following issues: Update to version go1.24.5 CVE-2025-4674: Fixed potential command execution in untrusted VCS repositories. bsc1246118 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...
Security update for the Linux Kernel
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...
Security update for libxml2
This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-6170: Fixed a stack buffer overflow which could lead to...
Security update for the Linux Kernel
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...
Security update for xen
This update for xen fixes the following issues: CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection ITS XSA-469 bsc1243117 CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through XSA-467 bsc1238043 Special Instructions and Notes: Please reboot the system after...
Security update for docker
This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: CVE-2025-0495: Fixed credential leakage to telemetry endpoints when credentials allowed to be set as attribute values in cache-to/cache-from configuration.bsc1239765 CVE-2025-22872:...
Security update for python311
This update for python311 fixes the following issues: CVE-2025-6069: Avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser bsc1244705. Update to 3.11.13: Security gh-135034: Fixes multiple issues that allowed tarfile extraction filters filter="data...
Security update for rust-keylime
This update for rust-keylime fixes the following issues: CVE-2024-12224: idna: Fixed improper validation in punycode bsc1243861 Update to version 0.2.7+70: builddeps: bump wiremock from 0.6.2 to 0.6.3 builddeps: bump uuid from 1.16.0 to 1.17.0 lib: Introduce AgentIdentity structure gitignore: Add...
Security update for libgcrypt
This update for libgcrypt fixes the following issues: CVE-2024-2236: Fixed timing based side-channel in RSA implementation bsc1221107 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...
Security update for audiofile
This update for audiofile fixes the following issues: CVE-2019-13147: Do not allow too many channel to prevent NULL pointer dereference bsc1140031. CVE-2022-24599: Clear buffer when allocating bsc1196487. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...
Security update for umoci
This update for umoci fixes the following issues: Update to umoci v0.5.0. Upstream changelog is available from bsc1243388 A security flaw was found in the OCI image-spec, where it is possible to cause a blob with one media-type to be interpreted as a different media-type. As umoci is not a regist...
Security update for libssh
This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...
Security update for tomcat
This update for tomcat fixes the following issues: CVE-2025-46701: Fixed refactor CGI servlet to access resources via WebResources bsc1243815. CVE-2025-48988: Fixed limits the total number of parts in a multi-part request and limits the size of the headers provided with each part bsc1244656...
Security update for libssh
This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...
Security update for libssh
This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...
Security update for libsoup2
This update for libsoup2 fixes the following issues: CVE-2025-4945: Add value checks for date/time parsing bsc1243314. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command list...
Security update for libsoup
This update for libsoup fixes the following issues: CVE-2025-4945: Add value checks for date/time parsing bsc1243314. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command liste...