Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

openSUSE: libetebase Moderate Use-After-Free CVE-2025-3416 Fix 2025:0221-1

opensuse
Calendar Grey July 26, 2025
Dist Opensuse Esm H88
Significant patch issued for openSUSE tackling a moderate vulnerability in libetebase, rectifying Use-After-Free defect.
An update that fixes one vulnerability is now available

Description

This update for libetebase fixes the following issues:

Update to version 0.5.8:

* CVE-2025-3416: Fixed rust openssl: Use-After-Free in Md::fetch and

Cipher::fetch in rust-openssl crate (bsc#1242638)

* Deps: run cargo update.

Topics%20covered

Topics Covered

security advisory moderate software update OpenSUSE libetebase cwe-use-after-free

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP6:

zypper in -t patch openSUSE-2025-221=1

Package List

- openSUSE Backports SLE-15-SP6 (aarch64 i586 ppc64le s390x x86_64):

libetebase-devel-0.5.8-bp156.2.3.1

libetebase0-0.5.8-bp156.2.3.1

References

https://www.suse.com/security/cve/CVE-2025-3416.html

https://bugzilla.suse.com/1242638

Announcement ID: openSUSE-SU-2025:0221-1
Rating: moderate
Affected Products: openSUSE Backports SLE-15-SP6 .

Topics%20covered

Topics Covered

security advisory moderate software update OpenSUSE libetebase cwe-use-after-free

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here