This update for uriparser fixes the following issues:
* CVE-2025-67899: large input containing many commas can cause unbounded
recursion and stack consumption (bsc#1255000).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Package Hub 15 15-SP7
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-444=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2026-444=1
* SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64)
* uriparser-0.8.5-150000.3.11.1
* uriparser-debuginfo-0.8.5-150000.3.11.1
* uriparser-devel-0.8.5-150000.3.11.1
* liburiparser1-debuginfo-0.8.5-150000.3.11.1
* uriparser-debugsource-0.8.5-150000.3.11.1
* liburiparser1-0.8.5-150000.3.11.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* uriparser-0.8.5-150000.3.11.1
* uriparser-debuginfo-0.8.5-150000.3.11.1
* uriparser-devel-0.8.5-150000.3.11.1
* liburiparser1-debuginfo-0.8.5-150000.3.11.1
* uriparser-debugsource-0.8.5-150000.3.11.1
* liburiparser1-0.8.5-150000.3.11.1
* openSUSE Leap 15.6 (x86_64)
* liburiparser1-32bit-debuginfo-0.8.5-150000.3.11.1
* liburiparser1-32bit-0.8.5-150000.3.11.1
* bsc#1255000
## References:
* https://www.suse.com/security/cve/CVE-2025-67899.html
* https://bugzilla.suse.com/show_bug.cgi?id=1255000
Get the latest Linux and open source security news straight to your inbox.