Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 11 articles for you...
202
security advisorysecurity issueDoSopenSUSE 15.6: 2025:02057-1 important: python311 DoS fix
An update that solves five vulnerabilities and has one security fix can now be installed.. # Security update for python311 Announcement ID: SUSE-SU-2025:02057-1 Release Date: 2025-06-21T09:04:47Z Rating: important References: * bsc#1241067 * bsc#1243273 * bsc#1244032 * bsc#1244056 * bsc#1244059 * bsc#1244060 Cross-References: * CVE-2024-12718 * CVE-2025-4138 * CVE-2025-4330 * CVE-2025-4516 * CVE-2025-4517 CVSS scores: * CVE-2024-12718 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2024-12718 ( NVD ): 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2024-12718 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2025-4138 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N * CVE-2025-4138 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-4330 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N * CVE-2025-4330 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-4516 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-4516 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-4516 ( NVD ): 5.9 CVSS:4.0/AV:L/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-4517 ( SUSE ): 7.5 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-4517 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-4517 ( NVD ): 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * Python 3 Module 15-SP6 * Python 3Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves five vulnerabilities and has one security fix can now be installed. ## Description: This update for python311 fixes the following issues: python311 was updated from version 3.11.10 to 3.11.13: * Security issues fixed: * CVE-2025-4516: Fixed blocking DecodeError handling vulnerability, which could lead to DoS (bsc#1243273). * CVE-2024-12718, CVE-2025-4138, CVE-2025-4330, CVE-2025-4517: Fixed multiple issues that allowed tarfile extraction filters to be bypassed using crafted symlinks and hard links (bsc#1244056, bsc#1244059, bsc#1244060, bsc#1244032) * Other changes and bugs fixed: * Improved handling of system call failures that OpenSSL reports (bsc#1241067) * Disable GC during thread operations to prevent deadlocks. * Fixed a potential denial of service vulnerability in the imaplib module. * Fixed bugs in the in the folding of rfc2047 encoded-words and in the folding of quoted strings when flattening an email message using a modern email policy. * Fixed parsing long IPv6 addresses with embedded IPv4 address. * Fixed ipaddress.IPv6Address.reverse_pointer output according to RFC 3596 * Improved the textual representation of IPv4-mapped IPv6 addresses in ipaddress. * ipaddress: fixed hash collisions for IPv4Network and IPv6Network objects * os.path.realpath() now accepts a strict keyword-only argument. * Stop the processing of long IPv6 addresses early in ipaddress to prevent excessive memory consumption and a minor denial-of-service. * Updated bundled libexpat to 2.7.1 * Writers of CPython documentation can now use next as the version forthe versionchanged, versionadded, deprecated directives. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-2057=1 openSUSE-SLE-15.6-2025-2057=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2057=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2057=1 * Python 3 Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2025-2057=1 * Python 3 Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Python3-15-SP7-2025-2057=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * python311-tk-3.11.13-150600.3.30.1 * python311-3.11.13-150600.3.30.1 * python311-idle-3.11.13-150600.3.30.1 * python311-curses-debuginfo-3.11.13-150600.3.30.1 * python311-testsuite-3.11.13-150600.3.30.1 * python311-doc-3.11.13-150600.3.30.1 * python311-base-3.11.13-150600.3.30.1 * python311-devel-3.11.13-150600.3.30.1 * python311-tools-3.11.13-150600.3.30.1 * python311-testsuite-debuginfo-3.11.13-150600.3.30.1 * python311-debugsource-3.11.13-150600.3.30.1 * libpython3_11-1_0-3.11.13-150600.3.30.1 * libpython3_11-1_0-debuginfo-3.11.13-150600.3.30.1 * python311-base-debuginfo-3.11.13-150600.3.30.1 * python311-core-debugsource-3.11.13-150600.3.30.1 * python311-doc-devhelp-3.11.13-150600.3.30.1 * python311-dbm-debuginfo-3.11.13-150600.3.30.1 * python311-tk-debuginfo-3.11.13-150600.3.30.1 * python311-debuginfo-3.11.13-150600.3.30.1 * python311-dbm-3.11.13-150600.3.30.1 * python311-curses-3.11.13-150600.3.30.1 * openSUSE Leap 15.6 (x86_64) * python311-32bit-debuginfo-3.11.13-150600.3.30.1 * python311-base-32bit-debuginfo-3.11.13-150600.3.30.1 * python311-32bit-3.11.13-150600.3.30.1 *libpython3_11-1_0-32bit-debuginfo-3.11.13-150600.3.30.1 * python311-base-32bit-3.11.13-150600.3.30.1 * libpython3_11-1_0-32bit-3.11.13-150600.3.30.1 * openSUSE Leap 15.6 (aarch64_ilp32) * python311-base-64bit-debuginfo-3.11.13-150600.3.30.1 * libpython3_11-1_0-64bit-3.11.13-150600.3.30.1 * python311-64bit-debuginfo-3.11.13-150600.3.30.1 * python311-64bit-3.11.13-150600.3.30.1 * python311-base-64bit-3.11.13-150600.3.30.1 * libpython3_11-1_0-64bit-debuginfo-3.11.13-150600.3.30.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python311-base-debuginfo-3.11.13-150600.3.30.1 * python311-core-debugsource-3.11.13-150600.3.30.1 * python311-base-3.11.13-150600.3.30.1 * libpython3_11-1_0-3.11.13-150600.3.30.1 * libpython3_11-1_0-debuginfo-3.11.13-150600.3.30.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * python311-base-debuginfo-3.11.13-150600.3.30.1 * python311-core-debugsource-3.11.13-150600.3.30.1 * python311-base-3.11.13-150600.3.30.1 * libpython3_11-1_0-3.11.13-150600.3.30.1 * libpython3_11-1_0-debuginfo-3.11.13-150600.3.30.1 * Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64) * python311-core-debugsource-3.11.13-150600.3.30.1 * python311-curses-debuginfo-3.11.13-150600.3.30.1 * python311-tk-3.11.13-150600.3.30.1 * python311-dbm-debuginfo-3.11.13-150600.3.30.1 * python311-tk-debuginfo-3.11.13-150600.3.30.1 * python311-debuginfo-3.11.13-150600.3.30.1 * python311-dbm-3.11.13-150600.3.30.1 * python311-3.11.13-150600.3.30.1 * python311-tools-3.11.13-150600.3.30.1 * python311-debugsource-3.11.13-150600.3.30.1 * python311-curses-3.11.13-150600.3.30.1 * python311-devel-3.11.13-150600.3.30.1 * python311-idle-3.11.13-150600.3.30.1 * Python 3 Module 15-SP7 (aarch64 ppc64le s390x x86_64) * python311-core-debugsource-3.11.13-150600.3.30.1 * python311-curses-debuginfo-3.11.13-150600.3.30.1 * python311-tk-3.11.13-150600.3.30.1 *python311-dbm-debuginfo-3.11.13-150600.3.30.1 * python311-tk-debuginfo-3.11.13-150600.3.30.1 * python311-debuginfo-3.11.13-150600.3.30.1 * python311-dbm-3.11.13-150600.3.30.1 * python311-3.11.13-150600.3.30.1 * python311-tools-3.11.13-150600.3.30.1 * python311-debugsource-3.11.13-150600.3.30.1 * python311-curses-3.11.13-150600.3.30.1 * python311-devel-3.11.13-150600.3.30.1 * python311-idle-3.11.13-150600.3.30.1 ## References: * https://www.suse.com/security/cve/CVE-2024-12718.html * https://www.suse.com/security/cve/CVE-2025-4138.html * https://www.suse.com/security/cve/CVE-2025-4330.html * https://www.suse.com/security/cve/CVE-2025-4516.html * https://www.suse.com/security/cve/CVE-2025-4517.html * https://bugzilla.suse.com/show_bug.cgi?id=1241067 * https://bugzilla.suse.com/show_bug.cgi?id=1243273 * https://bugzilla.suse.com/show_bug.cgi?id=1244032 * https://bugzilla.suse.com/show_bug.cgi?id=1244056 * https://bugzilla.suse.com/show_bug.cgi?id=1244059 * https://bugzilla.suse.com/show_bug.cgi?id=1244060 . Essential upgrade for python311 on openSUSE, tackling significant security vulnerabilities and improving overall system reliability.. openSUSE security update, python security patch, DoS vulnerability fix. . Severity: Important. LinuxSecurity.com Team
Jun 23, 2025
•Important
OpenSUSE
202
security advisoryimportantmemory issueopenSUSE: 2025:02058-1 important: gstreamer-plugins-good security update
An update that solves three vulnerabilities can now be installed.. # Security update for gstreamer-plugins-good Announcement ID: SUSE-SU-2025:02058-1 Release Date: 2025-06-21T09:05:12Z Rating: important References: * bsc#1234421 * bsc#1244405 * bsc#1244406 Cross-References: * CVE-2024-47540 * CVE-2025-47183 * CVE-2025-47219 CVSS scores: * CVE-2024-47540 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-47540 ( NVD ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2024-47540 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-47183 ( SUSE ): 5.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-47183 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H * CVE-2025-47219 ( SUSE ): 5.2 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-47219 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Linux Enterprise Workstation Extension 15 SP6 * SUSE Linux Enterprise Workstation Extension 15 SP7 An update that solves three vulnerabilities can now be installed. ## Description: This update for gstreamer-plugins-good fixes the following issues: * CVE-2025-47183: Fixed out-of-bounds read in MOV/MP4 demuxer (bsc#1244406). * CVE-2025-47219: Fixed out-of-bounds read in MOV/MP4 demuxer (bsc#1244405). * CVE-2024-47540: Fixed uninitializedstack memory in Matroska/WebM demuxer (bsc#1234421). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-2058=1 SUSE-2025-2058=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2058=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2058=1 * SUSE Linux Enterprise Workstation Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2025-2058=1 * SUSE Linux Enterprise Workstation Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-WE-15-SP7-2025-2058=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * gstreamer-plugins-good-extra-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-gtk-1.24.0-150600.3.7.1 * gstreamer-plugins-good-gtk-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-1.24.0-150600.3.7.1 * gstreamer-plugins-good-qtqml-1.24.0-150600.3.7.1 * gstreamer-plugins-good-jack-1.24.0-150600.3.7.1 * gstreamer-plugins-good-jack-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-qtqml-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-extra-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debugsource-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debuginfo-1.24.0-150600.3.7.1 * openSUSE Leap 15.6 (x86_64) * gstreamer-plugins-good-32bit-1.24.0-150600.3.7.1 * gstreamer-plugins-good-extra-32bit-1.24.0-150600.3.7.1 * gstreamer-plugins-good-jack-32bit-1.24.0-150600.3.7.1 * gstreamer-plugins-good-32bit-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-extra-32bit-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-jack-32bit-debuginfo-1.24.0-150600.3.7.1 * openSUSE Leap 15.6 (noarch) * gstreamer-plugins-good-lang-1.24.0-150600.3.7.1 * openSUSE Leap 15.6(aarch64_ilp32) * gstreamer-plugins-good-64bit-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-64bit-1.24.0-150600.3.7.1 * gstreamer-plugins-good-jack-64bit-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-extra-64bit-1.24.0-150600.3.7.1 * gstreamer-plugins-good-jack-64bit-1.24.0-150600.3.7.1 * gstreamer-plugins-good-extra-64bit-debuginfo-1.24.0-150600.3.7.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * gstreamer-plugins-good-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debugsource-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debuginfo-1.24.0-150600.3.7.1 * Basesystem Module 15-SP6 (noarch) * gstreamer-plugins-good-lang-1.24.0-150600.3.7.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * gstreamer-plugins-good-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debugsource-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debuginfo-1.24.0-150600.3.7.1 * Basesystem Module 15-SP7 (noarch) * gstreamer-plugins-good-lang-1.24.0-150600.3.7.1 * SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64) * gstreamer-plugins-good-debugsource-1.24.0-150600.3.7.1 * gstreamer-plugins-good-gtk-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-gtk-debuginfo-1.24.0-150600.3.7.1 * SUSE Linux Enterprise Workstation Extension 15 SP7 (x86_64) * gstreamer-plugins-good-debugsource-1.24.0-150600.3.7.1 * gstreamer-plugins-good-gtk-1.24.0-150600.3.7.1 * gstreamer-plugins-good-debuginfo-1.24.0-150600.3.7.1 * gstreamer-plugins-good-gtk-debuginfo-1.24.0-150600.3.7.1 ## References: * https://www.suse.com/security/cve/CVE-2024-47540.html * https://www.suse.com/security/cve/CVE-2025-47183.html * https://www.suse.com/security/cve/CVE-2025-47219.html * https://bugzilla.suse.com/show_bug.cgi?id=1234421 * https://bugzilla.suse.com/show_bug.cgi?id=1244405 * https://bugzilla.suse.com/show_bug.cgi?id=1244406 . Important news for openSUSE regarding criticalvulnerabilities in gstreamer-plugins-good; immediate attention required!. gstreamer plugins, opensuse security, important update, memory issue. . Severity: Important. LinuxSecurity.com Team
Jun 23, 2025
•Important
OpenSUSE
202
security advisoryimportantopensuseopenSUSE 15.6: 2025:02045-1 important: nodejs20 security update
An update that solves three vulnerabilities and has one security fix can now be installed.. # Security update for nodejs20 Announcement ID: SUSE-SU-2025:02045-1 Release Date: 2025-06-20T11:04:12Z Rating: important References: * bsc#1239949 * bsc#1243217 * bsc#1243218 * bsc#1243220 Cross-References: * CVE-2025-23165 * CVE-2025-23166 * CVE-2025-23167 CVSS scores: * CVE-2025-23165 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-23165 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-23165 ( NVD ): 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-23166 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-23166 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23166 ( NVD ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-23167 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-23167 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2025-23167 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * Web and Scripting Module 15-SP6 An update that solves three vulnerabilities and has one security fix can now be installed. ## Description: This update for nodejs20 fixes the following issues: Update to 20.19.2: * CVE-2025-23166: improper error handling in async cryptographic operations crashes process (bsc#1243218). * CVE-2025-23167: improper HTTP header block termination in llhttp (bsc#1243220). * CVE-2025-23165: add missing call to uv_fs_req_cleanup (bsc#1243217). Other bugfixes: * Build with PIE (bsc#1239949) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can runthe command listed for your product: * Web and Scripting Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP6-2025-2045=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-2045=1 openSUSE-SLE-15.6-2025-2045=1 ## Package List: * Web and Scripting Module 15-SP6 (aarch64 ppc64le s390x x86_64) * nodejs20-20.19.2-150600.3.12.1 * npm20-20.19.2-150600.3.12.1 * nodejs20-debugsource-20.19.2-150600.3.12.1 * nodejs20-devel-20.19.2-150600.3.12.1 * nodejs20-debuginfo-20.19.2-150600.3.12.1 * Web and Scripting Module 15-SP6 (noarch) * nodejs20-docs-20.19.2-150600.3.12.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * corepack20-20.19.2-150600.3.12.1 * nodejs20-20.19.2-150600.3.12.1 * npm20-20.19.2-150600.3.12.1 * nodejs20-debugsource-20.19.2-150600.3.12.1 * nodejs20-devel-20.19.2-150600.3.12.1 * nodejs20-debuginfo-20.19.2-150600.3.12.1 * openSUSE Leap 15.6 (noarch) * nodejs20-docs-20.19.2-150600.3.12.1 ## References: * https://www.suse.com/security/cve/CVE-2025-23165.html * https://www.suse.com/security/cve/CVE-2025-23166.html * https://www.suse.com/security/cve/CVE-2025-23167.html * https://bugzilla.suse.com/show_bug.cgi?id=1239949 * https://bugzilla.suse.com/show_bug.cgi?id=1243217 * https://bugzilla.suse.com/show_bug.cgi?id=1243218 * https://bugzilla.suse.com/show_bug.cgi?id=1243220 . A critical patch for nodejs20 on openSUSE has been released to tackle significant security flaws, particularly regarding error management and web protocols.. nodejs update, opensuse security, important advisory, nodejs vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Jun 20, 2025
•Important
OpenSUSE
202
security advisorysecurity issueimportantopenSUSE: 2025:02013-1 Critical Update for PAM Security Vulnerability
An update that solves two vulnerabilities can now be installed.. # Security update for pam Announcement ID: SUSE-SU-2025:02013-1 Release Date: 2025-06-18T18:06:12Z Rating: important References: * bsc#1243226 * bsc#1244509 Cross-References: * CVE-2025-6018 * CVE-2025-6020 CVSS scores: * CVE-2025-6018 ( SUSE ): 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2025-6018 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-6020 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * Development Tools Module 15-SP6 * Development Tools Module 15-SP7 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSELinux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves two vulnerabilities can now be installed. ## Description: This update for pam fixes the following issues: * CVE-2025-6018: pam_env: Change the default to not read the user .pam_environment file (bsc#1243226). * CVE-2025-6020: pam_namespace: convert functions that may operate on a user- controlled path to operate on file descriptors instead of absolute path (bsc#1244509). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-2013=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2013=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2013=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2013=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2013=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-2013=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2013=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2013=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2025-2013=1 * Development Tools Module 15-SP7 zypper in -tpatch SUSE-SLE-Module-Development-Tools-15-SP7-2025-2013=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-2013=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-2013=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-2013=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-2013=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-2013=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-2013=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-2013=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-2013=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-2013=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-2013=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-2013=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2013=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-2013=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2013=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-2013=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-2013=1 * SUSE Linux EnterpriseMicro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2013=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2013=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * openSUSE Leap 15.6 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * openSUSE Leap 15.6 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * Basesystem Module 15-SP6 (noarch) * pam-doc-1.3.0-150000.6.83.1 * Basesystem Module 15-SP6 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * Basesystem Module 15-SP7 (noarch) * pam-doc-1.3.0-150000.6.83.1 * Basesystem Module 15-SP7 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * Development Tools Module 15-SP6 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * Development Tools Module 15-SP7 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 *pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 *pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 *pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) *pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Manager Proxy 4.3 (x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Manager Proxy 4.3 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Manager Server 4.3 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Manager Server4.3 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-extra-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-extra-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * pam-devel-1.3.0-150000.6.83.1 * SUSE Enterprise Storage 7.1 (noarch) * pam-doc-1.3.0-150000.6.83.1 * SUSE Enterprise Storage 7.1 (x86_64) * pam-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-debuginfo-1.3.0-150000.6.83.1 * pam-devel-32bit-1.3.0-150000.6.83.1 * pam-extra-32bit-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * pam-debuginfo-1.3.0-150000.6.83.1 * pam-1.3.0-150000.6.83.1 * pam-debugsource-1.3.0-150000.6.83.1 ## References: * https://www.suse.com/security/cve/CVE-2025-6018.html * https://www.suse.com/security/cve/CVE-2025-6020.html * https://bugzilla.suse.com/show_bug.cgi?id=1243226 * https://bugzilla.suse.com/show_bug.cgi?id=1244509 . An essential patch for Fedora resolves significant vulnerabilities in sudo; prompt action advised.. SUSE Security, openSUSE Security, PAM Updates, Important Security Alerts. . Severity: Important. LinuxSecurity.com Team
Jun 18, 2025
•Important
OpenSUSE
100
security advisorydenial of servicesecurity issueSUSE: 2025:01953-1 important: apache2-mod_auth_openidc denial of service
* bsc#1242015 Cross-References: * CVE-2025-3891 . # Security update for apache2-mod_auth_openidc Announcement ID: SUSE-SU-2025:01953-1 Release Date: 2025-06-13T13:55:39Z Rating: important References: * bsc#1242015 Cross-References: * CVE-2025-3891 CVSS scores: * CVE-2025-3891 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-3891 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-3891 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-3891 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * Server Applications Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for apache2-mod_auth_openidc fixes the following issues: * CVE-2025-3891: Fixed denial of service via an empty POST request when OIDCPreservePost is enabled (bsc#1242015). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1953=1 * Server Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2025-1953=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-1953=1 openSUSE-SLE-15.6-2025-1953=1 ## Package List: * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * apache2-mod_auth_openidc-2.3.8-150600.16.11.1 *apache2-mod_auth_openidc-debugsource-2.3.8-150600.16.11.1 * apache2-mod_auth_openidc-debuginfo-2.3.8-150600.16.11.1 * Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * apache2-mod_auth_openidc-2.3.8-150600.16.11.1 * apache2-mod_auth_openidc-debugsource-2.3.8-150600.16.11.1 * apache2-mod_auth_openidc-debuginfo-2.3.8-150600.16.11.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * apache2-mod_auth_openidc-2.3.8-150600.16.11.1 * apache2-mod_auth_openidc-debugsource-2.3.8-150600.16.11.1 * apache2-mod_auth_openidc-debuginfo-2.3.8-150600.16.11.1 ## References: * https://www.suse.com/security/cve/CVE-2025-3891.html * https://bugzilla.suse.com/show_bug.cgi?id=1242015 . SUSE releases patch for nginx-auth_module targeting CVE-2025-3920, serious vulnerability causing denial of service.. SUSE updates, apache2 security, openSUSE patch, denial of service fix, open source security. . Severity: Important. LinuxSecurity.com Team
Jun 13, 2025
•Important
SuSE
100
security advisorycriticalremote executionSUSE: 2025:1356-1 critical: erlang26 remote execution fix
* bsc#1240390 * bsc#1241300 Cross-References: * CVE-2025-30211 . # Security update for erlang26 Announcement ID: SUSE-SU-2025:1356-1 Release Date: 2025-04-22T09:29:33Z Rating: critical References: * bsc#1240390 * bsc#1241300 Cross-References: * CVE-2025-30211 * CVE-2025-32433 CVSS scores: * CVE-2025-30211 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-30211 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-30211 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-32433 ( SUSE ): 10.0 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2025-32433 ( SUSE ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-32433 ( NVD ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for erlang26 fixes the following issues: * CVE-2025-30211: Fixed KEX init error results with excessive memory usage (bsc#1240390) * CVE-2025-32433: Fixed unauthenticated remote code execution in Erlang/OTP SSH (bsc#1241300) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1356=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1356=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-1356=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * erlang26-debugger-26.2.1-150300.7.11.1 *erlang26-jinterface-26.2.1-150300.7.11.1 * erlang26-diameter-src-26.2.1-150300.7.11.1 * erlang26-src-26.2.1-150300.7.11.1 * erlang26-diameter-26.2.1-150300.7.11.1 * erlang26-jinterface-src-26.2.1-150300.7.11.1 * erlang26-doc-26.2.1-150300.7.11.1 * erlang26-reltool-src-26.2.1-150300.7.11.1 * erlang26-dialyzer-debuginfo-26.2.1-150300.7.11.1 * erlang26-epmd-debuginfo-26.2.1-150300.7.11.1 * erlang26-dialyzer-26.2.1-150300.7.11.1 * erlang26-observer-26.2.1-150300.7.11.1 * erlang26-debuginfo-26.2.1-150300.7.11.1 * erlang26-dialyzer-src-26.2.1-150300.7.11.1 * erlang26-wx-debuginfo-26.2.1-150300.7.11.1 * erlang26-debugger-src-26.2.1-150300.7.11.1 * erlang26-debugsource-26.2.1-150300.7.11.1 * erlang26-et-26.2.1-150300.7.11.1 * erlang26-et-src-26.2.1-150300.7.11.1 * erlang26-26.2.1-150300.7.11.1 * erlang26-wx-26.2.1-150300.7.11.1 * erlang26-epmd-26.2.1-150300.7.11.1 * erlang26-wx-src-26.2.1-150300.7.11.1 * erlang26-observer-src-26.2.1-150300.7.11.1 * erlang26-reltool-26.2.1-150300.7.11.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * erlang26-debugsource-26.2.1-150300.7.11.1 * erlang26-26.2.1-150300.7.11.1 * erlang26-epmd-26.2.1-150300.7.11.1 * erlang26-epmd-debuginfo-26.2.1-150300.7.11.1 * erlang26-debuginfo-26.2.1-150300.7.11.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * erlang26-debugger-26.2.1-150300.7.11.1 * erlang26-jinterface-26.2.1-150300.7.11.1 * erlang26-diameter-src-26.2.1-150300.7.11.1 * erlang26-src-26.2.1-150300.7.11.1 * erlang26-diameter-26.2.1-150300.7.11.1 * erlang26-jinterface-src-26.2.1-150300.7.11.1 * erlang26-doc-26.2.1-150300.7.11.1 * erlang26-reltool-src-26.2.1-150300.7.11.1 * erlang26-dialyzer-debuginfo-26.2.1-150300.7.11.1 * erlang26-epmd-debuginfo-26.2.1-150300.7.11.1 * erlang26-dialyzer-26.2.1-150300.7.11.1 * erlang26-observer-26.2.1-150300.7.11.1 * erlang26-debuginfo-26.2.1-150300.7.11.1 *erlang26-dialyzer-src-26.2.1-150300.7.11.1 * erlang26-wx-debuginfo-26.2.1-150300.7.11.1 * erlang26-debugger-src-26.2.1-150300.7.11.1 * erlang26-debugsource-26.2.1-150300.7.11.1 * erlang26-et-26.2.1-150300.7.11.1 * erlang26-et-src-26.2.1-150300.7.11.1 * erlang26-26.2.1-150300.7.11.1 * erlang26-wx-26.2.1-150300.7.11.1 * erlang26-epmd-26.2.1-150300.7.11.1 * erlang26-wx-src-26.2.1-150300.7.11.1 * erlang26-observer-src-26.2.1-150300.7.11.1 * erlang26-reltool-26.2.1-150300.7.11.1 ## References: * https://www.suse.com/security/cve/CVE-2025-30211.html * https://www.suse.com/security/cve/CVE-2025-32433.html * https://bugzilla.suse.com/show_bug.cgi?id=1240390 * https://bugzilla.suse.com/show_bug.cgi?id=1241300 . Essential security patch for openSUSE erlang26 addresses vulnerabilities related to remote command execution and memory safety for affected installations.. openSUSE, security update, erlang patch, memory vulnerability, remote execution. . Severity: Critical. LinuxSecurity.com Team
Apr 22, 2025
•Critical
SuSE
202
security advisorymoderatebuffer overflowopenSUSE: 2024:0106-1 Moderate sngrep Buffer Overflow Fix
An update that fixes two vulnerabilities is now available. . openSUSE Security Update: Security update for sngrep ______________________________________________________________________________ Announcement ID: openSUSE-SU-2024:0106-1 Rating: moderate References: Cross-References: CVE-2024-3119 CVE-2024-3120 Affected Products: openSUSE Backports SLE-15-SP5 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for sngrep fixes the following issues: - Update to version 1.8.1 * Fix CVE-2024-3119: sngrep: buffer overflow due to improper handling of 'Call-ID' and 'X-Call-ID' SIP headers. * Fix CVE-2024-3120: sngrep: stack-buffer overflow due to inadequate bounds checking when copying 'Content-Length' and 'Warning' headers into fixed-size buffers. - Update to versino 1.8.0 * fix typo in message, thanks to lintian. * fix compiler warnings about unused variables. * Fixed a typo in comment line in filter.c * Redefine usage of POSIX signals. * Support for building sngrep using CMake added. - Update to version 1.7.0 * save: add option --text to save captured data to plain text * capture: fix memory overflows while parsing IP headers * hep: fix hep listener enabled in offline mode * core: stop sngrep when parent process has ended * ssl: fix decrypt with AES256 GCM SHA384 cipher Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP5: zypper in -t patch openSUSE-2024-106=1 Package List: - openSUSE Backports SLE-15-SP5 (aarch64 i586 ppc64le s390x x86_64): sngrep-1.8.1-bp155.2.3.1 References: https://www.suse.com/security/cve/CVE-2024-3119.html https://www.suse.com/security/cve/CVE-2024-3120.html . An update for sngrep resolves two significant security vulnerabilities and enhances performance for users on openSUSE platforms.. sngrep Update, moderate security, openSUSE Backports, buffer overflow fix, security patch. . LinuxSecurity.com Team
Apr 10, 2024
OpenSUSE
202
security advisorydenial of servicecriticalopenSUSE Leap 15.4 SUSE-SU-2023:4649-1 Critical DoS in OpenSSL-3
This update for openssl-3 fixes the following issues: CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service (bsc#1216922).. # Security update for openssl-3 Announcement ID: SUSE-SU-2023:4649-1 Rating: important References: * bsc#1194187 * bsc#1207472 * bsc#1216922 Cross-References: * CVE-2023-5678 CVSS scores: * CVE-2023-5678 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2023-5678 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP4 * openSUSE Leap 15.4 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for openssl-3 fixes the following issues: * CVE-2023-5678: Fixed generating and checking of excessively long X9.42 DH keys that resulted in a possible Denial of Service (bsc#1216922). Bug fixes: * The default /etc/ssl/openssl3.cnf file will include any configuration files that other packages might place into /etc/ssl/engines3.d/ and /etc/ssl/engdef3.d/. * Create the two new necessary directores for the above. [bsc#1194187, bsc#1207472] ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in-t patch openSUSE-SLE-15.4-2023-4649=1 SUSE-2023-4649=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4649=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2023-4649=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4649=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2023-4649=1 * Basesystem Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-4649=1 * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2023-4649=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2023-4649=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * openssl-3-debugsource-3.0.8-150400.4.42.1 * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debuginfo-3.0.8-150400.4.42.1 * libopenssl-3-devel-3.0.8-150400.4.42.1 * openssl-3-3.0.8-150400.4.42.1 * openSUSE Leap 15.4 (x86_64) * libopenssl-3-devel-32bit-3.0.8-150400.4.42.1 * libopenssl3-32bit-3.0.8-150400.4.42.1 * libopenssl3-32bit-debuginfo-3.0.8-150400.4.42.1 * openSUSE Leap 15.4 (noarch) * openssl-3-doc-3.0.8-150400.4.42.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libopenssl-3-devel-64bit-3.0.8-150400.4.42.1 * libopenssl3-64bit-3.0.8-150400.4.42.1 * libopenssl3-64bit-debuginfo-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 *libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * openssl-3-debugsource-3.0.8-150400.4.42.1 * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debuginfo-3.0.8-150400.4.42.1 * libopenssl-3-devel-3.0.8-150400.4.42.1 * openssl-3-3.0.8-150400.4.42.1 * openSUSE Leap Micro 5.3 (aarch64 ppc64le s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 * openSUSE Leap Micro 5.4 (aarch64 ppc64le s390x x86_64) * libopenssl3-3.0.8-150400.4.42.1 * libopenssl3-debuginfo-3.0.8-150400.4.42.1 * openssl-3-debugsource-3.0.8-150400.4.42.1 ## References: * https://www.suse.com/security/cve/CVE-2023-5678.html * https://bugzilla.suse.com/show_bug.cgi?id=1194187 * https://bugzilla.suse.com/show_bug.cgi?id=1207472 * https://bugzilla.suse.com/show_bug.cgi?id=1216922 . Urgent notice for openssl-3 concerning potential Denial of Service vulnerabilities. Ensure to implement the suggested installation procedures without delay.. OpenSSL Security Advisory,SUSE Update,Critical Updates,Denial of Service. . Severity: Critical. LinuxSecurity.com Team
Dec 06, 2023
•Critical
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!