Lucene search
K

5412 matches found

SUSE Linux
SUSE Linux
added 2025/07/15 2:48 p.m.4 views

Security update for sudo

This update for sudo fixes the following issues: CVE-2025-32462: Fix a possible local privilege escalation via the --host option bsc1245274 CVE-2025-32463: Fix a possible local privilege Escalation via chroot option bsc1245275 Patch Instructions: To install this SUSE update use the SUSE recommend...

7.8CVSS7.4AI score0.47467EPSS
Exploits77References8
SUSE Linux
SUSE Linux
added 2025/07/15 2:31 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47557: net/sched: schets: do not peek at classes beyond 'nbands' bsc1207361 bsc1225468. CVE-2021-47595: net/sched: schets: do not remove idle classes from...

8.7CVSS7.6AI score0.12746EPSS
Exploits16References962
SUSE Linux
SUSE Linux
added 2025/07/15 2:31 p.m.3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47557: net/sched: schets: do not peek at classes beyond 'nbands' bsc1207361 bsc1225468. CVE-2021-47595: net/sched: schets: do not remove idle classes from...

8.7CVSS8AI score0.12746EPSS
Exploits16References1122
SUSE Linux
SUSE Linux
added 2025/07/15 2:20 p.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50085: dm raid: fix address sanitizer warning in raidresume bsc1245147. CVE-2022-50087: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fai...

8.5CVSS7.6AI score0.12746EPSS
Exploits13References546
SUSE Linux
SUSE Linux
added 2025/07/15 2:20 p.m.2 views

Security update for xen

This update for xen fixes the following issues: CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470 Patch Instructions: To install this SUSE update use the SUSE recommend...

7.1CVSS8AI score0.00554EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/07/15 1:0 p.m.3 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. bsc1245625 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

7.3CVSS6.8AI score0.00371EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/15 12:59 p.m.2 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-52886: Fixed an integer overflow that can lead to a use-after-free. bsc1245625 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can...

7.3CVSS7.5AI score0.00371EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/15 12:59 p.m.2 views

Security update for xen

This update for xen fixes the following issues: CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470 Special Instructions and Notes: Please reboot the system after...

7.1CVSS8.1AI score0.00554EPSS
Exploits0References12
SUSE Linux
SUSE Linux
added 2025/07/15 12:59 p.m.3 views

Security update for xen

This update for xen fixes the following issues: Update to Xen 4.20.1 CVE-2024-36350, CVE-2024-36357: More AMD transient execution attacks bsc1246112, XSA-471 CVE-2025-27465: Incorrect stubs exception handling for flags recovery bsc1244644, XSA-470 Special Instructions and Notes: Please reboot the...

7.1CVSS7.5AI score0.00554EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/07/15 12:34 p.m.3 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-49795: Fixed a null pointer dereference which could lea...

8.8CVSS7.2AI score0.01437EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2025/07/15 10:3 a.m.2 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50200: selinux: Add boundary check in putentry bsc1245149. Special Instructions and Notes: Please reboot the system after installing this update. Patch...

8.5CVSS7.5AI score0.0046EPSS
Exploits0References24
SUSE Linux
SUSE Linux
added 2025/07/15 9:16 a.m.1 views

Security update for protobuf

This update for protobuf fixes the following issues: CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS7.8AI score0.00281EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/15 9:15 a.m.2 views

Security update for protobuf

This update for protobuf fixes the following issues: CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS7.8AI score0.00281EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/15 9:15 a.m.3 views

Security update for protobuf

This update for protobuf fixes the following issues: CVE-2025-4565: Fix parsing of untrusted Protocol Buffers data containing an arbitrary number of recursive groups or messages that can lead to crash due to RecursionError bsc1244663. Patch Instructions: To install this SUSE update use the SUSE...

8.2CVSS7.7AI score0.00281EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/14 3:56 p.m.4 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.5CVSS7.4AI score0.12746EPSS
Exploits13References546
SUSE Linux
SUSE Linux
added 2025/07/14 12:31 p.m.6 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.5CVSS7.4AI score0.00618EPSS
Exploits6References1122
SUSE Linux
SUSE Linux
added 2025/07/14 10:51 a.m.2 views

Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issues: CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser bsc1244404. CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser bsc1244403. CVE-2025-47806: Fixed stack buffer overflow in SubRip...

5.5CVSS7.9AI score0.00428EPSS
Exploits3References12
SUSE Linux
SUSE Linux
added 2025/07/14 10:50 a.m.4 views

Security update for gstreamer-plugins-good

This update for gstreamer-plugins-good fixes the following issues: CVE-2025-47183: Fixed out-of-bounds read when parsing mvhd box bsc1244406. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you c...

6.6CVSS7.3AI score0.00187EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/14 10:50 a.m.2 views

Security update for gstreamer-plugins-base

This update for gstreamer-plugins-base fixes the following issues: CVE-2025-47808: Fixed NULL-pointer dereference in TMPlayer subtitle parser bsc1244404. CVE-2025-47807: Fixed NULL-pointer dereference in SubRip subtitle parser bsc1244403. CVE-2025-47806: Fixed stack buffer overflow in SubRip...

5.5CVSS7.2AI score0.00428EPSS
Exploits3References12
SUSE Linux
SUSE Linux
added 2025/07/11 4:3 p.m.6 views

Security update for python36

This update for python36 fixes the following issues: CVE-2024-12718: Fixed extraction filter bypass that allowed file metadata modification outside extraction directory bsc1244056 CVE-2025-4138: Fixed issue that might allow symlink targets to point outside the destination directory, and the...

8.4CVSS7.7AI score0.01184EPSS
Exploits14References32
SUSE Linux
SUSE Linux
added 2025/07/11 3:20 p.m.5 views

Security update for go1.23

This update for go1.23 fixes the following issues: Update to version go1.23.11 CVE-2025-4674: Fixed potential command execution in untrusted VCS repositories. bsc1246118 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

9.3CVSS7.5AI score0.00273EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/07/11 3:19 p.m.2 views

Security update for go1.24

This update for go1.24 fixes the following issues: Update to version go1.24.5 CVE-2025-4674: Fixed potential command execution in untrusted VCS repositories. bsc1246118 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

9.3CVSS7.5AI score0.00273EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/07/11 3:14 p.m.7 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References336
SUSE Linux
SUSE Linux
added 2025/07/11 2:47 p.m.3 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-6170: Fixed a stack buffer overflow which could lead to...

8.8CVSS7.8AI score0.01437EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added 2025/07/11 1:53 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References336
SUSE Linux
SUSE Linux
added 2025/07/11 11:13 a.m.5 views

Security update for xen

This update for xen fixes the following issues: CVE-2024-28956: Fixed Intel CPU: Indirect Target Selection ITS XSA-469 bsc1243117 CVE-2025-1713: Fixed deadlock potential with VT-d and legacy PCI device pass-through XSA-467 bsc1238043 Special Instructions and Notes: Please reboot the system after...

6.8CVSS7.3AI score0.00723EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/07/11 11:13 a.m.2 views

Security update for docker

This update for docker fixes the following issues: Update to Docker 28.2.2-ce bsc1243833, bsc1242114: CVE-2025-0495: Fixed credential leakage to telemetry endpoints when credentials allowed to be set as attribute values in cache-to/cache-from configuration.bsc1239765 CVE-2025-22872:...

6.5CVSS6.4AI score0.0045EPSS
Exploits0References20
SUSE Linux
SUSE Linux
added 2025/07/11 10:21 a.m.5 views

Security update for python311

This update for python311 fixes the following issues: CVE-2025-6069: Avoid worst case quadratic complexity when processing certain crafted malformed inputs with HTMLParser bsc1244705. Update to 3.11.13: Security gh-135034: Fixes multiple issues that allowed tarfile extraction filters filter="data...

8.4CVSS9.7AI score0.06304EPSS
Exploits15References44
SUSE Linux
SUSE Linux
added 2025/07/11 9:49 a.m.6 views

Security update for rust-keylime

This update for rust-keylime fixes the following issues: CVE-2024-12224: idna: Fixed improper validation in punycode bsc1243861 Update to version 0.2.7+70: builddeps: bump wiremock from 0.6.2 to 0.6.3 builddeps: bump uuid from 1.16.0 to 1.17.0 lib: Introduce AgentIdentity structure gitignore: Add...

4.2CVSS7.2AI score0.00194EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/11 9:21 a.m.4 views

Security update for libgcrypt

This update for libgcrypt fixes the following issues: CVE-2024-2236: Fixed timing based side-channel in RSA implementation bsc1221107 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

5.9CVSS7.3AI score0.01114EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/11 8:35 a.m.2 views

Security update for audiofile

This update for audiofile fixes the following issues: CVE-2019-13147: Do not allow too many channel to prevent NULL pointer dereference bsc1140031. CVE-2022-24599: Clear buffer when allocating bsc1196487. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

4.4CVSS7.5AI score0.01913EPSS
Exploits2References8
SUSE Linux
SUSE Linux
added 2025/07/11 8:35 a.m.4 views

Security update for umoci

This update for umoci fixes the following issues: Update to umoci v0.5.0. Upstream changelog is available from bsc1243388 A security flaw was found in the OCI image-spec, where it is possible to cause a blob with one media-type to be interpreted as a different media-type. As umoci is not a regist...

5CVSS6.8AI score0.02085EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/10 4:5 p.m.4 views

Security update for libssh

This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...

7.6CVSS7.4AI score0.02394EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/07/10 4:5 p.m.7 views

Security update for tomcat

This update for tomcat fixes the following issues: CVE-2025-46701: Fixed refactor CGI servlet to access resources via WebResources bsc1243815. CVE-2025-48988: Fixed limits the total number of parts in a multi-part request and limits the size of the headers provided with each part bsc1244656...

9.1CVSS7.8AI score0.53228EPSS
Exploits2References14
SUSE Linux
SUSE Linux
added 2025/07/10 4:3 p.m.2 views

Security update for libssh

This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...

7.6CVSS7.4AI score0.02394EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/07/10 4:2 p.m.4 views

Security update for libssh

This update for libssh fixes the following issues: CVE-2025-4877: Fixed write beyond bounds in binary to base64 conversion functions bsc1245309. CVE-2025-4878: Fixed use of uninitialized variable in privatekeyfromfile bsc1245310. CVE-2025-5318: Fixed likely read beyond bounds in sftp server handl...

7.6CVSS6.7AI score0.02394EPSS
Exploits0References16
SUSE Linux
SUSE Linux
added 2025/07/10 2:35 p.m.2 views

Security update for libsoup2

This update for libsoup2 fixes the following issues: CVE-2025-4945: Add value checks for date/time parsing bsc1243314. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command list...

3.7CVSS6AI score0.00538EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/10 2:35 p.m.3 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-4945: Add value checks for date/time parsing bsc1243314. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command liste...

3.7CVSS6AI score0.00538EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/10 2:34 p.m.2 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-6170: Fixed a stack buffer overflow which could lead to...

8.8CVSS7.2AI score0.01437EPSS
Exploits1References16
SUSE Linux
SUSE Linux
added 2025/07/10 2:27 p.m.3 views

Security update for afterburn

This update for afterburn fixes the following issues: Update to version 5.8.2: cargo: Afterburn release 5.8.2 docs/release-notes: update for release 5.8.2 cargo: update dependencies packit: add initial support Update to version 5.7.0: builddeps: bump crossbeam-channel from 0.5.13 to 0.5.15...

6.3CVSS7.2AI score0.00452EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/07/10 12:53 p.m.4 views

Security update for sudo

This update for sudo fixes the following issues: CVE-2025-32462: Fix a possible local privilege escalation via the --host option bsc1245274 CVE-2025-32463: Fix a possible local privilege Escalation via chroot option bsc1245275 Patch Instructions: To install this SUSE update use the SUSE recommend...

7.8CVSS7.4AI score0.47467EPSS
Exploits77References8
SUSE Linux
SUSE Linux
added 2025/07/10 11:50 a.m.3 views

Security update for perl-YAML-LibYAML

This update for perl-YAML-LibYAML fixes the following issues: CVE-2025-40908: YAML-LibYAML prior to 0.903.0 for Perl uses 2-args open, allowing existing files to be modified bsc1243902 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

8.3CVSS7.2AI score0.00368EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/10 10:9 a.m.3 views

Security update for wireshark

This update for wireshark fixes the following issues: CVE-2025-5601: Dissection engine crash bsc1244081. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your...

6.1CVSS7.4AI score0.00299EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/10 10:8 a.m.3 views

Security update for wireshark

This update for wireshark fixes the following issues: CVE-2025-5601: Dissection engine crash bsc1244081. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your...

6.1CVSS7.3AI score0.00299EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/10 8:25 a.m.3 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.7CVSS7.5AI score0.12746EPSS
Exploits16References1094
SUSE Linux
SUSE Linux
added 2025/07/09 10:24 p.m.5 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.7CVSS7.6AI score0.0129EPSS
Exploits2References682
SUSE Linux
SUSE Linux
added 2025/07/09 5:40 p.m.8 views

Security update for tomcat10

This update for tomcat10 fixes the following issues: Fixed refactor CGI servlet to access resources via WebResources bsc1243815. Fixed limits the total number of parts in a multi-part request and limits the size of the headers provided with each part bsc1244656. Fixed expand checks for webAppMoun...

9.1CVSS8.2AI score0.53228EPSS
Exploits2References14
SUSE Linux
SUSE Linux
added 2025/07/09 5:4 p.m.2 views

Security update for libxml2

This update for libxml2 fixes the following issues: CVE-2025-49794: Fixed a heap use after free which could lead to denial of service. bsc1244554 CVE-2025-49796: Fixed type confusion which could lead to denial of service. bsc1244557 CVE-2025-49795: Fixed a null pointer dereference which could lea...

8.7CVSS7.9AI score0.01437EPSS
Exploits1References20
SUSE Linux
SUSE Linux
added 2025/07/09 3:18 p.m.5 views

Recommended update for gpg2

This update for gpg2 fixes the following issues: CVE-2025-30258: Fixed DoS due to a malicious subkey in the keyring bsc1239119. Other bugfixes: Do not install expired sks certificate bsc1243069. gpg hangs when importing a key bsc1236931. Patch Instructions: To install this SUSE update use the SUS...

2.7CVSS4.1AI score0.00179EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2025/07/08 4:15 p.m.2 views

Security update for gpg2

This update for gpg2 fixes the following issues: CVE-2025-30258: Fix a verification DoS due to a malicious subkey in the keyring: bsc1239119, bsc1236931 gpg: Fix regression for the recent malicious subkey DoS fix. gpg: Fix another regression due to the T7547 fix. gpg: Allow the use of an ADSK...

2.7CVSS7.3AI score0.00179EPSS
Exploits1References8
Total number of security vulnerabilities5412