Lucene search
K

5415 matches found

SUSE Linux
SUSE Linux
•added 2025/07/19 6:3 p.m.•5 views

Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005594 fixes one issue. The following security issue was fixed: CVE-2025-21772: partitions: mac: fix handling of bogus partition table bsc1238912. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.5CVSS7.7AI score0.00209EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/19 1:33 p.m.•2 views

Security update for the Linux Kernel (Live Patch 59 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122225 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2022-49465: blk-throttle: Set BIOTHROTTLED when bio has been throttled bsc1238920. CVE-2024-53214: vfio/pci:...

8.5CVSS7.9AI score0.00262EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2025/07/19 10:33 a.m.•2 views

Security update for the Linux Kernel (Live Patch 58 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122222 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2022-49465: blk-throttle: Set BIOTHROTTLED when bio has been throttled bsc1238920. CVE-2024-53214: vfio/pci:...

8.5CVSS7.9AI score0.00262EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2025/07/19 6:3 a.m.•3 views

Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506008 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. CVE-2024-53173: NFSv4.0:...

8.5CVSS7.8AI score0.00262EPSS
Exploits0References50
SUSE Linux
SUSE Linux
•added 2025/07/19 5:33 a.m.•6 views

Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001011 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. CVE-2024-53173:...

8.5CVSS7.8AI score0.00262EPSS
Exploits0References46
SUSE Linux
SUSE Linux
•added 2025/07/18 6:33 p.m.•7 views

Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-150600105 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. CVE-2024-53173: NFSv4....

8.5CVSS7.8AI score0.00262EPSS
Exploits0References46
SUSE Linux
SUSE Linux
•added 2025/07/18 6:3 p.m.•7 views

Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001020 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. CVE-2024-53173:...

8.5CVSS7.9AI score0.00262EPSS
Exploits0References38
SUSE Linux
SUSE Linux
•added 2025/07/18 5:33 p.m.•4 views

Security update for the Linux Kernel RT (Live Patch 8 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001026 fixes several issues. The following security issues were fixed: CVE-2025-22115: btrfs: fix block group refcount race in btrfscreatependingblockgroups bsc1241579. CVE-2025-21772: partitions: mac: fix handling of bogus partition table bsc1238912...

8.5CVSS7.6AI score0.00209EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/07/18 4:46 p.m.•3 views

Security update for jq

This update for jq fixes the following issues: CVE-2024-23337: Fixed signed integer overflow in jv.c:jvparraywrite bsc1243450. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

6.7CVSS5.3AI score0.00351EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/07/18 4:44 p.m.•2 views

Security update for kubernetes1.26

This update for kubernetes1.26 fixes the following issues: CVE-2025-22872: Properly handle trailing solidus in unquoted attribute value in foreign content bsc1241865. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS7.2AI score0.0045EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/07/18 2:58 p.m.•3 views

Security update for ffmpeg-4

This update for ffmpeg-4 fixes the following issues: CVE-2024-36618: Fixed integer overflow iff ULONGMAX INT64MAX bsc1234020. New CVE references, fixed in previous release: CVE-2024-36617: avformat/cafdec: dont seek beyond 64bit bsc1234019. CVE-2024-36616: avformat/westwoodvqa: Fix 2g packets...

6.9CVSS6.8AI score0.0056EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/07/18 1:16 p.m.•2 views

Security update for glib2

This update for glib2 fixes the following issues: CVE-2025-4373: integer overflow in the gstringinsertunichar function can lead to buffer underwrite and memory corruption bsc1242844. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupda...

6.3CVSS7.6AI score0.00426EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/18 12:47 p.m.•2 views

Security update for FastCGI

This update for FastCGI fixes the following issues: CVE-2025-23016: Fixed integer overflow in FastCGI fcgi2 library bsc1243325 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.5CVSS8.1AI score0.00566EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/18 12:42 p.m.•3 views

Security update for python-requests

This update for python-requests fixes the following issues: CVE-2024-47081: fixed netrc credential leak bsc1244039. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

8.2CVSS7.3AI score0.00846EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/07/18 12:41 p.m.•6 views

Security update for FastCGI

This update for FastCGI fixes the following issues: CVE-2025-23016: Fixed integer overflow in FastCGI fcgi2 library bsc1243325 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.5CVSS7.6AI score0.00566EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/18 12:38 p.m.•3 views

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.12 MFSA 2025-55, bsc1244670: CVE-2025-6424: Use-after-free in FontFaceSet bmo1966423 CVE-2025-6425: The WebCompat WebExtension shipped exposed a persistent UUID bmo1717672 CVE-2025-6426: No warning wh...

8.8CVSS6.7AI score0.03057EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/07/18 12:37 p.m.•2 views

Security update for gimp

This update for gimp fixes the following issues: CVE-2025-6035: Fixed Integer Overflow or Wraparound in GIMP Despeckle Filter bsc1244536. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can r...

7.8CVSS6.8AI score0.0041EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/18 12:21 p.m.•10 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References336
SUSE Linux
SUSE Linux
•added 2025/07/18 12:8 p.m.•2 views

Security update for docker

This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: CVE-2025-22872: golang.org/x/net/html: incorrectly interpreted tags can cause content to be placed wrong scope during DOM construction bsc1241830. Other bugfixes: Always clear SUSEConnect suse...

6.5CVSS7.2AI score0.0045EPSS
Exploits0References12
SUSE Linux
SUSE Linux
•added 2025/07/18 10:58 a.m.•2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_10

This update for kernel-livepatch-MICRO-6-0-RTUpdate10 fixes the following issues: Initial livepatch for 10th RT kernel update. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.2AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2025/07/18 10:58 a.m.•2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_10

This update for kernel-livepatch-MICRO-6-0-RTUpdate10 fixes the following issues: Initial livepatch for 10th RT kernel update. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

7.2AI score
Exploits0
SUSE Linux
SUSE Linux
•added 2025/07/18 10:53 a.m.•6 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References336
SUSE Linux
SUSE Linux
•added 2025/07/18 9:8 a.m.•3 views

Security update for coreutils

This update for coreutils fixes the following issues: CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data bsc1243767 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

4.4CVSS5.1AI score0.00215EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/18 7:15 a.m.•1 views

Security update for python312

This update for python312 fixes the following issues: CVE-2025-6069: Avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser bsc1244705. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.9CVSS6.7AI score0.00462EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/17 2:16 p.m.•3 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-6069: Avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser bsc1244705. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.9CVSS6.7AI score0.00462EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/17 2:15 p.m.•2 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. bsc1245625 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

7.3CVSS6.8AI score0.00371EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/07/17 2:14 p.m.•6 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. bsc1245625 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

7.3CVSS7.4AI score0.00371EPSS
Exploits1References4
SUSE Linux
SUSE Linux
•added 2025/07/17 1:2 p.m.•5 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-6170: Fixed a stack buffer overflow which could lead to...

8.8CVSS7.2AI score0.01437EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2025/07/17 12:36 p.m.•2 views

Security update for coreutils

This update for coreutils fixes the following issues: Security fixes: CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data bsc1243767 Other fixes: ls: avoid triggering automounts bsc1221632 tail: fix tailing sysfs files where PAGESIZE BUFSIZ bsc1219321 Patch...

4.4CVSS5.2AI score0.00215EPSS
Exploits0References8
SUSE Linux
SUSE Linux
•added 2025/07/17 12:35 p.m.•3 views

Security update for coreutils

This update for coreutils fixes the following issues: CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data bsc1243767 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

4.4CVSS7.3AI score0.00215EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/17 12:33 p.m.•3 views

Security update for ffmpeg

This update for ffmpeg fixes the following issues: CVE-2022-1475: Fixed integer overflow in g729parse in llibavcodec/g729parser.c bsc1198898. CVE-2024-36616: Fixed integer overflow in the component libavformat/westwoodvqa.c bsc1234018. CVE-2024-36617: Fixed integer overflow vulnerability in the...

6.9CVSS6.9AI score0.0089EPSS
Exploits1References16
SUSE Linux
SUSE Linux
•added 2025/07/17 12:32 p.m.•4 views

Security update for kubernetes1.25

This update for kubernetes1.25 fixes the following issues: CVE-2025-22872: Properly handle trailing solidus in unquoted attribute value in foreign content bsc1241865. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS7.2AI score0.0045EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/17 12:32 p.m.•3 views

Security update for kubernetes1.28

This update for kubernetes1.28 fixes the following issues: CVE-2025-22872: Properly handle trailing solidus in unquoted attribute value in foreign content bsc1241865. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS7.2AI score0.0045EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/17 11:47 a.m.•2 views

Security update for bind

This update for bind fixes the following issues: Upgrade to release 9.20.11 CVE-2025-40777: Fixed a possible assertion failure when stale-answer-client-timeout is set to 0. bsc1246548 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.2CVSS7.2AI score0.00877EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/17 11:37 a.m.•5 views

Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: CVE-2025-47183: Fixed out-of-bounds read in MOV/MP4 demuxer bsc1244406. CVE-2025-47219: Fixed out-of-bounds read in MOV/MP4 demuxer bsc1244405. CVE-2024-47540: Fixed uninitialized stack memory in Matroska/WebM demuxer bsc1234421...

7.8CVSS9.6AI score0.00997EPSS
Exploits2References12
SUSE Linux
SUSE Linux
•added 2025/07/17 9:4 a.m.•5 views

Security update for gnutls

This update for gnutls fixes the following issues: CVE-2025-6395: Fix NULL pointer dereference when 2nd Client Hello omits PSK bsc1246299 CVE-2025-32988: Fix double-free due to incorrect ownership handling in the export logic of SAN entries containing an otherName bsc1246232 CVE-2025-32989: Fix...

9.2CVSS7.9AI score0.01185EPSS
Exploits0References16
SUSE Linux
SUSE Linux
•added 2025/07/17 8:52 a.m.•1 views

Security update for MozillaFirefox, MozillaFirefox-branding-SLE

This update for MozillaFirefox, MozillaFirefox-branding-SLE fixes the following issues: This is the Firefox Extended Support Release 140.0esr ESR Major changes: General: Reader View now has an enhanced Text and Layout menu with new options for character spacing, word spacing, and text alignment...

8.8CVSS7.2AI score0.03057EPSS
Exploits1References28
SUSE Linux
SUSE Linux
•added 2025/07/16 3:48 p.m.•2 views

Security update for docker

This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: CVE-2025-0495: Fixed credential leakage to telemetry endpoints when credentials allowed to be set as attribute values in cache-to/cache-from configuration.bsc1239765 CVE-2025-22872:...

6.5CVSS7.3AI score0.0045EPSS
Exploits0References20
SUSE Linux
SUSE Linux
•added 2025/07/16 2:52 p.m.•2 views

Security update for transfig

This update for transfig fixes the following issues: Update to fig2dev version 3.2.9a CVE-2025-31162: Fixed a floating point exception in fig2dev in getslope function bsc1240380. CVE-2025-31163: Fixed a segmentation fault in fig2dev in putpatternarc function bsc1240381. CVE-2025-31164: Fixed a he...

6.6CVSS7.8AI score0.00251EPSS
Exploits7References32
SUSE Linux
SUSE Linux
•added 2025/07/16 2:50 p.m.•3 views

Security update for kubernetes1.27

This update for kubernetes1.27 fixes the following issues: CVE-2025-22872: Properly handle trailing solidus in unquoted attribute value in foreign content bsc1241865. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.5CVSS7.2AI score0.0045EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/16 2:49 p.m.•3 views

Security update for gnuplot

This update for gnuplot fixes the following issues: CVE-2025-31176: invalid read leads to segmentation fault on plot3dpoints bsc1240325. CVE-2025-31177: improper bounds check leads to heap-buffer overflow on utf8copyone bsc1240326. CVE-2025-31178: unvalidated user input leads to segmentation faul...

6.9CVSS7.4AI score0.00184EPSS
Exploits0References28
SUSE Linux
SUSE Linux
•added 2025/07/16 2:44 p.m.•13 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52888: media: mediatek: vcodec: Only free buffer VA that is not NULL bsc1228557. CVE-2024-49568: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving...

8.5CVSS8.3AI score0.00369EPSS
Exploits3References444
SUSE Linux
SUSE Linux
•added 2025/07/16 1:46 p.m.•14 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.5CVSS7.2AI score0.12746EPSS
Exploits12References538
SUSE Linux
SUSE Linux
•added 2025/07/16 12:53 p.m.•9 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-52888: media: mediatek: vcodec: Only free buffer VA that is not NULL bsc1228557. CVE-2024-49568: net/smc: check v2extoffset/eidcnt/ismgidcnt when receiving...

8.5CVSS8.2AI score0.00618EPSS
Exploits6References1114
SUSE Linux
SUSE Linux
•added 2025/07/16 12:35 p.m.•2 views

Security update for erlang

This update for erlang fixes the following issues: CVE-2025-4748: Fixed improper limitation of a pathname to a restricted directory vulnerability in Erlang OTP stdlib modules that allowed absolute path traversal bsc1244642 Patch Instructions: To install this SUSE update use the SUSE recommended...

4.8CVSS6.7AI score0.00226EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/16 12:34 p.m.•3 views

Security update for erlang26

This update for erlang26 fixes the following issues: CVE-2025-4748: Fixed improper limitation of a pathname to a restricted directory vulnerability in Erlang OTP stdlib modules that allowed absolute path traversal bsc1244642 Patch Instructions: To install this SUSE update use the SUSE recommended...

4.8CVSS6.7AI score0.00226EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/16 11:10 a.m.•5 views

Security update for rmt-server

This update for rmt-server fixes the following issues: Update to version 2.23 CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. bsc1242893 CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. bsc1242898 Patch Instructions: To install th...

8.7CVSS7.3AI score0.00911EPSS
Exploits0References10
SUSE Linux
SUSE Linux
•added 2025/07/16 9:37 a.m.•4 views

Security update for rmt-server

This update for rmt-server fixes the following issues: Update to version 2.23 CVE-2025-46727: Fixed Unbounded-Parameter DoS in Rack:QueryParser. bsc1242893 CVE-2025-32441: Fixed a bug where simultaneous rack requests can restore a deleted rack session. bsc1242898 Patch Instructions: To install th...

8.7CVSS6.4AI score0.00911EPSS
Exploits0References18
SUSE Linux
SUSE Linux
•added 2025/07/16 9:9 a.m.•3 views

Security update for runc

This update for runc fixes the following issues: CVE-2024-45310: Fixed unintentional creation of empty files/directories on host bsc1230092 Other fixes: Update to runc v1.2.6. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

3.6CVSS7.4AI score0.00317EPSS
Exploits0References4
SUSE Linux
SUSE Linux
•added 2025/07/16 8:23 a.m.•5 views

Security update for pam_pkcs11

This update for pampkcs11 fixes the following issues: Removes pamenv from auth stack for security reason bsc1243226 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed...

8.6CVSS7.4AI score0.00957EPSS
Exploits13References4
Total number of security vulnerabilities5415