Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 518
Alerts This Week
Warning Icon 1 518

SUSE 2026 Himmelblau Important Update RCE Issues SUSE-SU-2026-1361-1

suse
Calendar Grey April 15, 2026
Scroller Suse
SUSE update addresses seven issues, including security fixes for himmelblau and important updates.
An update that solves seven vulnerabilities, contains one feature and has one security fix can now be installed.

Summary

## This update for himmelblau fixes the following issues: Update to version 2.3.9+git0.a9fd29b; (jsc#PED-14511): * CVE-2026-34397: Fix LPE due to name collision during NSS fake-primary group lookup (bsc#1261324). * CVE-2026-31979: Fix race condition when accessiung /tmp/krb5cc_uid (bsc#1259548). * CVE-2026-25727: deps(rust): Bump the `all-cargo-updates` group with 8 updates (bsc#1257904). * CVE-2025-58160: deps(rust): Bump `tracing-subscriber` in the cargo group (bsc#1249013). * CVE-2025-54882: Fix Kerberos credential cache permissions (bsc#1247735). * CVE-2025-53013: Fix permitted authentication with invalid Hello PIN (bsc#1245437). * CVE-2024-11738: Fix `rustls` network-reachable panic in `Acceptor::accept` (bsc#1233949). Other bug fixes:

References

* bsc#1233949

* bsc#1245437

* bsc#1247735

* bsc#1249013

* bsc#1257904

* bsc#1258236

* bsc#1259548

* bsc#1261324

* jsc#PED-14511

Cross-

* CVE-2024-11738

* CVE-2025-53013

* CVE-2025-54882

* CVE-2025-58160

* CVE-2026-25727

* CVE-2026-31979

* CVE-2026-34397

CVSS scores:

* CVE-2024-11738 ( SUSE ): 8.2

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2024-11738 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2024-11738 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

* CVE-2024-11738 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-53013 ( SUSE ): 4.3

CVSS:4.0/AV:P/AC:L/AT:P/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

* CVE-2025-53013 ( SUSE ): 5.2 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:1361-1
Release Date: 2026-04-15T14:14:01Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.