Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 673 articles for you...
202
security advisorydenial of servicecriticalopenSUSE kanidm Critical Privilege Escalation Vulnerability 2026-0192-1
An update that contains security fixes can now be installed.. openSUSE Security Update: Security update for kanidm ______________________________________________________________________________ Announcement ID: openSUSE-SU-2026:0192-1 Rating: critical References: Affected Products: openSUSE Backports SLE-15-SP7 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for kanidm fixes the following issues: - Update to version 1.10.2~git0.f3dc9ef1f: * Release 1.10.2 * Security - CRITICAL - authenticated user privilege escalation * Refactor modification access paths to remove duplication * Revert ClientID header (#4334) * Disable prompt=login (#4340) * Add missing `/sbin/kanidm-mail-sender` (#4323) * Remove debug symbols in release builds. (#4319) - Update to version 1.10.1~git0.d02660a98: * Release 1.10.1 * Fix copy in TOTP removal prompt and align TOTP case (#4314) * Resolve base64 encoding of webauthn fields (#4312) - Update to version 1.10.0-pre~git1.32e2f8ec6: * Release 1.10.0 * Release 1.10.0-pre * Release notes (#4304) * Update ldap3/webauthn-rs (#4302) * Merge commit from fork * Merge commit from fork * Merge commit from fork * Merge commit from fork * Add notes on server migration (#4301) * 20260517 sparkle (#4280) * Bump mozilla-actions/sccache-action in the all group (#4298) * Bump the all group with 6 updates (#4299) * Bump the all group across 1 directory with 3 updates (#4283) * 20260331 send account recovery emails (#4259) * Update oauth2 well known urls (#4296) * Clippy for Rust 1.95 (#4291) * Invert incorrect thread count logic (#4294) * Allow modification of OAuth2 Refresh Expiry (#4276) * 20260327 Introspection token auth metadata (#4230) * fix: add missingkanidm-mail-sender binary (#4279) * Correctly handle deleted accounts during page visits (#4275) * don't fail auth when passed ui_locales (#4288) * Bump actions/upload-pages-artifact from 4 to 5 in the all group (#4284) * Fix link formatting in oauth2.rs documentation (#4278) * Feat: Add OIDC Prompt Support (#4224) * Handle multivalue URLs in SCIM (#4271) * Correctly encode ssh tag values (#4272) * Bump the all group with 2 updates (#4263) * Bump the all group in /rlm_python with 4 updates (#4262) * Bump the all group with 8 updates (#4264) * Update deployment.md with configuration notes (#4258) * Add .well-known/passkey-endpoints (#4255) * show repl cert metadata and also handle socket timeouts (#4252) * Update docs regarding replication cert lifetime (#4251) * Log cleanup (#4248) * adding timeouts and tests and port docs for mail_sender (#4246) * Bump the all group with 5 updates (#4247) * add dependency data to released containers (#4239) * Fix to end code block and render remaining md correctly (#4241) * Update readme.md for replication (#4236) * Added note on primary email address and email aliases (#4237) * Bump the all group with 6 updates (#4235) * Bump the all group with 2 updates (#4234) * Bump the uv group across 1 directory with 2 updates (#4231) * cli: allow clearing person's legalname attribute (#4228) * Add shell diagnostics (#4220) * OpenSSL shall be vanquished (#4219) * Bump the all group across 1 directory with 16 updates (#4225) * Bump rustls-webpki from 0.103.9 to 0.103.10 (#4223) * Bump flatted (#4222) * Tabular data is tabular (#4221) * Example sshd-config fragment, deployment de-activated on Debian (#4214) * Update RELEASE_NOTES.md (#4215) * fix(debian): Use correct bin path for kanidmd reload (#4212) * Allow urlencoded client_id in basic auth (#4141) * add nsswitch config check to unixd (#4210) * 20260311zxcvbn check (#4206) * Enhance Traefik documentation (#4194) * Re-add incorrectly removed utopia feature flag (#4207) * Update ldap3 to 0.7.0 to resolve config filter issue (#4205) * Added PasswordChangedTime attribute and database field (#3999) * Defer on some routes (#4202) * Remove thread local storage (#4204) * Improve FreeBSD building, fully drop ring as a dependency. * 20260218 credential reset emails (authenticated only) (#4151) * android support for cli (#4197) * Bump the all group with 4 updates (#4198) * Bump the all group with 7 updates (#4199) * feat: bind mount home strategy (#3997) * Bump the all group with 2 updates (#4183) * Bump the all group with 8 updates (#4184) * Bump minimatch (#4180) * Disable multithreading on RADIUS when DEBUG is False. (#4177) * Don't revert admin changes in some groups during migrcation (#4176) * Fix bug where DEBUG is always true in RADIUS entrypoint. (#4169) * 20260220 prevent migration accidents (#4156) * Bump the all group across 1 directory with 20 updates (#4163) * Move the grafana group creation step (#4160) * Alert on unsaved changes (#4155) * pykanidm v1.3.0 - major rewrite to use openapi-generated codebase based on 1.9.0 spec (#4149) * Warn about systemd-userdb (#4147) * Dont require basic auth on token introspection (#4142) * Dont be as upset when migration dir doesnt exist (#4146) * Add AGENTS.md instructions (#4148) * Feature OIDC updated at (#4007) * pykanidm: clarify token use with service accounts (#4043) * Fixed small typo in how_does_oauth2_work.md (#4138) * Bye bye lazy static (#4134) * Allow LDAP CA verification to be disabled in sync (#4133) * Add oauth2 example, fix inter-migration reference handling (#4136) * Add missing future migration in domain check (#4132) * Corrected recycle_bin.md typo (#4135) * 20260211 dev version (#4131) - Update to version1.9.3~git0.7d4108698: * Release 1.9.3 * Security - High: SCIM Filters did not contain a bound on their parsing depth allowing stack exhaustion to occur leading to Denial of Service by an unauthenticated user * Security - Moderate: PNG Image validation did not correctly handle short images allowing a panic to occur in a worker thread. This may lead to system instability over time * Security - Low: HTML injection via user DisplayName in Passkey enrolment dialogs. This allows an admin to execute JS in the context of a users browser. Since the admin already can reset the users credentials, the impact of this is minimal. * Security - Low: non-constant time comparison of OAuth2 client secret may allow a remote attacker to remotely recovery the bytes of the secret. Due to the length of the secret (48 chars) this is infeasible practically. * Security - Low: incorrect handling of origin validation in Webauthn-RS allowed a malicious domain to collide with a valid one (badexample.com would match with example.com). This is mitigated by browsers detecting the forgery and preventing the authentication from proceeding. * Security - High: LDAP Filters did not contain a bound on their parsing depth allowing stack exhaustion to occur leading to Denial of Service by an unauthenticated user. * Update two vulnerable dependencies * Release 1.9.2 * Allow urlencoded client_id in basic auth (#4141) * Update ldap3 to 0.7.0 to resolve config filter issue (#4205) * Remove thread local storage (#4204) - Update to version 1.9.2~git6.896acba35: * Release 1.9.3 * Merge commit from fork * Merge commit from fork * Merge commit from fork * Merge commit from fork * Update two vulnerable dependencies - Update to version 1.9.2~git0.6a2bb66bd: * Release 1.9.2 * Allow urlencoded client_id in basic auth (#4141) * Update ldap3 to 0.7.0 toresolve config filter issue (#4205) * Remove thread local storage (#4204) * Disable multithreading on RADIUS when DEBUG is False. (#4177) * Fix bug where DEBUG is always true in RADIUS entrypoint. (#4169) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP7: zypper in -t patch openSUSE-2026-192=1 Package List: - openSUSE Backports SLE-15-SP7 (aarch64 x86_64): kanidm-1.10.2~git0.f3dc9ef1f-bp157.2.32.1 kanidm-clients-1.10.2~git0.f3dc9ef1f-bp157.2.32.1 kanidm-docs-1.10.2~git0.f3dc9ef1f-bp157.2.32.1 kanidm-server-1.10.2~git0.f3dc9ef1f-bp157.2.32.1 kanidm-unixd-clients-1.10.2~git0.f3dc9ef1f-bp157.2.32.1 References: . Security update for kanidm on openSUSE addresses critical privilege escalation issues and other vulnerabilities.. openSUSE kanidm security update critical vulnerabilities. . Severity: Critical. LinuxSecurity.com Team
Jun 05, 2026
•Critical
OpenSUSE
100
security advisoryimportantinfinite loopSUSE Important Ignition Infinite Loop Fix Advisory 2026-2280-1
An update that solves one vulnerability can now be installed.. # Security update for ignition Announcement ID: SUSE-SU-2026:2280-1 Release Date: 2026-06-05T12:11:42Z Rating: important References: * bsc#1265751 Cross-References: * CVE-2026-33814 CVSS scores: * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * HPC Module 15-SP7 * openSUSE Leap 15.4 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for ignition fixes the following issue * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265751). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2280=1 * HPC Module 15-SP7 zypper in -t patch SUSE-SLE-Module-HPC-15-SP7-2026-2280=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2280=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * ignition-debuginfo-2.14.0-150400.9.18.1 * ignition-2.14.0-150400.9.18.1 * ignition-dracut-grub2-2.14.0-150400.9.18.1 * HPC Module 15-SP7 (aarch64 x86_64) * ignition-debuginfo-2.14.0-150400.9.18.1 * ignition-2.14.0-150400.9.18.1 * ignition-dracut-grub2-2.14.0-150400.9.18.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 x86_64) * ignition-debuginfo-2.14.0-150400.9.18.1 * ignition-2.14.0-150400.9.18.1 * ignition-dracut-grub2-2.14.0-150400.9.18.1 ##References: * https://www.suse.com/security/cve/CVE-2026-33814.html * https://bugzilla.suse.com/show_bug.cgi?id=1265751 . SUSE Security Advisory 2026:2280-1 addresses an important update for Ignition mitigating an infinite loop issue.. security advisory, SUSE Linux, ignition update, openSUSE patch. . Severity: Important. LinuxSecurity.com Team
Jun 05, 2026
•Important
SuSE
202
security advisoryimportantOpenSUSEopenSUSE Ignition Important HTTP2 Transport Issue Fix CVE-2026-33814
An update that solves one vulnerability can now be installed.. # Security update for ignition Announcement ID: SUSE-SU-2026:2280-1 Release Date: 2026-06-05T12:11:42Z Rating: important References: * bsc#1265751 Cross-References: * CVE-2026-33814 CVSS scores: * CVE-2026-33814 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-33814 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * HPC Module 15-SP7 * openSUSE Leap 15.4 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for ignition fixes the following issue * CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE (bsc#1265751). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2280=1 * HPC Module 15-SP7 zypper in -t patch SUSE-SLE-Module-HPC-15-SP7-2026-2280=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2280=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * ignition-debuginfo-2.14.0-150400.9.18.1 * ignition-2.14.0-150400.9.18.1 * ignition-dracut-grub2-2.14.0-150400.9.18.1 * HPC Module 15-SP7 (aarch64 x86_64) * ignition-debuginfo-2.14.0-150400.9.18.1 * ignition-2.14.0-150400.9.18.1 * ignition-dracut-grub2-2.14.0-150400.9.18.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 x86_64) * ignition-debuginfo-2.14.0-150400.9.18.1 * ignition-2.14.0-150400.9.18.1 * ignition-dracut-grub2-2.14.0-150400.9.18.1 ##References: * https://www.suse.com/security/cve/CVE-2026-33814.html * https://bugzilla.suse.com/show_bug.cgi?id=1265751 . Update available for Ignition to fix infinite loop issue in HTTP/2 transport on openSUSE, impacting several versions.. SUSE Ignition Update, HTTP2 Transport Issue, Important Security Fix. . Severity: Important. LinuxSecurity.com Team
Jun 05, 2026
•Important
OpenSUSE
202
security advisoryremote executionimportantopenSUSE Unbound Important Remote Exec Issues Vuln 2026-2281-1
An update that solves 11 vulnerabilities can now be installed.. # Security update for unbound Announcement ID: SUSE-SU-2026:2281-1 Release Date: 2026-06-05T12:12:48Z Rating: important References: * bsc#1265578 * bsc#1265580 * bsc#1265581 * bsc#1265582 * bsc#1265583 * bsc#1265584 * bsc#1265585 * bsc#1265586 * bsc#1265587 * bsc#1265588 * bsc#1265589 Cross-References: * CVE-2026-32792 * CVE-2026-33278 * CVE-2026-40622 * CVE-2026-41292 * CVE-2026-42534 * CVE-2026-42923 * CVE-2026-42944 * CVE-2026-42959 * CVE-2026-42960 * CVE-2026-44390 * CVE-2026-44608 CVSS scores: * CVE-2026-32792 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32792 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Green * CVE-2026-32792 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33278 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-33278 ( NVD ): 9.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-33278 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40622 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-40622 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-40622 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-41292 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41292 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red *CVE-2026-41292 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42534 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42923 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42923 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42923 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42944 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-42944 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42944 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42959 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42960 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-42960 ( NVD ): 5.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:H/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42960 ( NVD ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H * CVE-2026-44390 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44390 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44390 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-44608 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44608 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44608 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for unbound fixes the following issues * CVE-2026-32792: Packet of death with DNSCrypt (bsc#1265583). * CVE-2026-33278: Possible remote code execution during DNSSEC validation (bsc#1265587). * CVE-2026-40622: "Ghost domain name" variant (bsc#1265581). * CVE-2026-41292: Parsing a long list of incoming EDNS options degrades performance (bsc#1265580). * CVE-2026-42534: Jostle logic bypass degrades resolution performance (bsc#1265585). * CVE-2026-42923: Degradation of service with unbounded NSEC3 hash calculations (bsc#1265589). * CVE-2026-42944: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (bsc#1265578). * CVE-2026-42959: Crash during DNSSEC validation of malicious content (bsc#1265586). * CVE-2026-42960: Possible cache poisoning attack while following delegation (bsc#1265588). *CVE-2026-44390: Unbounded name compression in certain cases causes degradation of service (bsc#1265584). * CVE-2026-44608: Use after free and crash in RPZ code (bsc#1265582). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2281=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2281=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2281=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2281=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2281=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * unbound-python-debuginfo-1.20.0-150600.23.16.1 * libunbound-devel-mini-debugsource-1.20.0-150600.23.16.1 * libunbound-devel-mini-1.20.0-150600.23.16.1 * unbound-python-1.20.0-150600.23.16.1 * libunbound-devel-mini-debuginfo-1.20.0-150600.23.16.1 * unbound-debugsource-1.20.0-150600.23.16.1 * unbound-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 * openSUSE Leap 15.6 (noarch) * unbound-munin-1.20.0-150600.23.16.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * unbound-python-debuginfo-1.20.0-150600.23.16.1 * unbound-python-1.20.0-150600.23.16.1 * unbound-debugsource-1.20.0-150600.23.16.1 * unbound-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64les390x x86_64) * unbound-debugsource-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * unbound-debugsource-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * unbound-debugsource-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32792.html * https://www.suse.com/security/cve/CVE-2026-33278.html * https://www.suse.com/security/cve/CVE-2026-40622.html * https://www.suse.com/security/cve/CVE-2026-41292.html * https://www.suse.com/security/cve/CVE-2026-42534.html * https://www.suse.com/security/cve/CVE-2026-42923.html * https://www.suse.com/security/cve/CVE-2026-42944.html * https://www.suse.com/security/cve/CVE-2026-42959.html * https://www.suse.com/security/cve/CVE-2026-42960.html * https://www.suse.com/security/cve/CVE-2026-44390.html * https://www.suse.com/security/cve/CVE-2026-44608.html * https://bugzilla.suse.com/show_bug.cgi?id=1265578 * https://bugzilla.suse.com/show_bug.cgi?id=1265580 * https://bugzilla.suse.com/show_bug.cgi?id=1265581 * https://bugzilla.suse.com/show_bug.cgi?id=1265582 * https://bugzilla.suse.com/show_bug.cgi?id=1265583 *https://bugzilla.suse.com/show_bug.cgi?id=1265584 * https://bugzilla.suse.com/show_bug.cgi?id=1265585 * https://bugzilla.suse.com/show_bug.cgi?id=1265586 * https://bugzilla.suse.com/show_bug.cgi?id=1265587 * https://bugzilla.suse.com/show_bug.cgi?id=1265588 * https://bugzilla.suse.com/show_bug.cgi?id=1265589 . # Security update for unbound Announcement ID: SUSE-SU-2026:2281-1 Release Date: 2026-06-05T12:12:48. update, solves, vulnerabilities, installed, security, unbound, announc. . Severity: Important. LinuxSecurity.com Team
Jun 05, 2026
•Important
OpenSUSE
100
security advisoryremote code executionimportantSUSE Unbound Critical Buffer Overflow Security Flaw 2026-2281-1
An update that solves 11 vulnerabilities can now be installed.. # Security update for unbound Announcement ID: SUSE-SU-2026:2281-1 Release Date: 2026-06-05T12:12:48Z Rating: important References: * bsc#1265578 * bsc#1265580 * bsc#1265581 * bsc#1265582 * bsc#1265583 * bsc#1265584 * bsc#1265585 * bsc#1265586 * bsc#1265587 * bsc#1265588 * bsc#1265589 Cross-References: * CVE-2026-32792 * CVE-2026-33278 * CVE-2026-40622 * CVE-2026-41292 * CVE-2026-42534 * CVE-2026-42923 * CVE-2026-42944 * CVE-2026-42959 * CVE-2026-42960 * CVE-2026-44390 * CVE-2026-44608 CVSS scores: * CVE-2026-32792 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-32792 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Green * CVE-2026-32792 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33278 ( SUSE ): 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H * CVE-2026-33278 ( NVD ): 9.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-33278 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-40622 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2026-40622 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-40622 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-41292 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-41292 ( NVD ): 6.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red *CVE-2026-41292 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42534 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42534 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42923 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42923 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42923 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-42944 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-42944 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42944 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42959 ( NVD ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red * CVE-2026-42959 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-42960 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2026-42960 ( NVD ): 5.7 CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:H/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-42960 ( NVD ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H * CVE-2026-44390 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44390 ( NVD ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44390 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-44608 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-44608 ( NVD ): 4.6 CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Amber * CVE-2026-44608 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP7 An update that solves 11 vulnerabilities can now be installed. ## Description: This update for unbound fixes the following issues * CVE-2026-32792: Packet of death with DNSCrypt (bsc#1265583). * CVE-2026-33278: Possible remote code execution during DNSSEC validation (bsc#1265587). * CVE-2026-40622: "Ghost domain name" variant (bsc#1265581). * CVE-2026-41292: Parsing a long list of incoming EDNS options degrades performance (bsc#1265580). * CVE-2026-42534: Jostle logic bypass degrades resolution performance (bsc#1265585). * CVE-2026-42923: Degradation of service with unbounded NSEC3 hash calculations (bsc#1265589). * CVE-2026-42944: Heap overflow and crash with multiple nsid, cookie, padding EDNS options (bsc#1265578). * CVE-2026-42959: Crash during DNSSEC validation of malicious content (bsc#1265586). * CVE-2026-42960: Possible cache poisoning attack while following delegation (bsc#1265588). *CVE-2026-44390: Unbounded name compression in certain cases causes degradation of service (bsc#1265584). * CVE-2026-44608: Use after free and crash in RPZ code (bsc#1265582). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2281=1 * SUSE Package Hub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2281=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2281=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2281=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2281=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * unbound-python-debuginfo-1.20.0-150600.23.16.1 * libunbound-devel-mini-debugsource-1.20.0-150600.23.16.1 * libunbound-devel-mini-1.20.0-150600.23.16.1 * unbound-python-1.20.0-150600.23.16.1 * libunbound-devel-mini-debuginfo-1.20.0-150600.23.16.1 * unbound-debugsource-1.20.0-150600.23.16.1 * unbound-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 * openSUSE Leap 15.6 (noarch) * unbound-munin-1.20.0-150600.23.16.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * unbound-python-debuginfo-1.20.0-150600.23.16.1 * unbound-python-1.20.0-150600.23.16.1 * unbound-debugsource-1.20.0-150600.23.16.1 * unbound-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64les390x x86_64) * unbound-debugsource-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * unbound-debugsource-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * unbound-debugsource-1.20.0-150600.23.16.1 * libunbound8-1.20.0-150600.23.16.1 * unbound-debuginfo-1.20.0-150600.23.16.1 * unbound-anchor-debuginfo-1.20.0-150600.23.16.1 * libunbound8-debuginfo-1.20.0-150600.23.16.1 * unbound-devel-1.20.0-150600.23.16.1 * unbound-anchor-1.20.0-150600.23.16.1 ## References: * https://www.suse.com/security/cve/CVE-2026-32792.html * https://www.suse.com/security/cve/CVE-2026-33278.html * https://www.suse.com/security/cve/CVE-2026-40622.html * https://www.suse.com/security/cve/CVE-2026-41292.html * https://www.suse.com/security/cve/CVE-2026-42534.html * https://www.suse.com/security/cve/CVE-2026-42923.html * https://www.suse.com/security/cve/CVE-2026-42944.html * https://www.suse.com/security/cve/CVE-2026-42959.html * https://www.suse.com/security/cve/CVE-2026-42960.html * https://www.suse.com/security/cve/CVE-2026-44390.html * https://www.suse.com/security/cve/CVE-2026-44608.html * https://bugzilla.suse.com/show_bug.cgi?id=1265578 * https://bugzilla.suse.com/show_bug.cgi?id=1265580 * https://bugzilla.suse.com/show_bug.cgi?id=1265581 * https://bugzilla.suse.com/show_bug.cgi?id=1265582 * https://bugzilla.suse.com/show_bug.cgi?id=1265583 *https://bugzilla.suse.com/show_bug.cgi?id=1265584 * https://bugzilla.suse.com/show_bug.cgi?id=1265585 * https://bugzilla.suse.com/show_bug.cgi?id=1265586 * https://bugzilla.suse.com/show_bug.cgi?id=1265587 * https://bugzilla.suse.com/show_bug.cgi?id=1265588 * https://bugzilla.suse.com/show_bug.cgi?id=1265589 . SUSE updates unbound addresses 11 issues including remote code execution. Installation methods included for users.. unbound security patch,SUSE Linux update,important vulnerabilities,openSUSE advisory. . Severity: Important. LinuxSecurity.com Team
Jun 05, 2026
•Important
SuSE
202
security advisorycriticalOpenSUSEImportant openSUSE MariaDB update 2026-2282-1 released with fixes
An update that solves nine vulnerabilities can now be installed.. # Security update for mariadb Announcement ID: SUSE-SU-2026:2282-1 Release Date: 2026-06-05T12:14:38Z Rating: critical References: * bsc#1259176 * bsc#1266437 * bsc#1266438 * bsc#1266439 * bsc#1266440 * bsc#1266442 * bsc#1266814 * bsc#1266815 * bsc#1267542 Cross-References: * CVE-2026-3494 * CVE-2026-44168 * CVE-2026-44170 * CVE-2026-44171 * CVE-2026-44172 * CVE-2026-44173 * CVE-2026-48163 * CVE-2026-48165 * CVE-2026-49261 CVSS scores: * CVE-2026-3494 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-3494 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2026-3494 ( NVD ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-3494 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2026-44168 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-44168 ( SUSE ): 8.0 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-44170 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-44171 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-44171 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H * CVE-2026-44172 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-44173 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L * CVE-2026-44173 ( SUSE ): 5.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L * CVE-2026-48163 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-48163 ( SUSE ): 8.0 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-48165 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-48165 ( SUSE ): 8.0CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-49261 ( SUSE ): 9.4 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-49261 ( SUSE ): 9.0 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * Galera for Ericsson 15 SP4 * Galera for Ericsson 15 SP5 * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves nine vulnerabilities can now be installed. ## Description: This update for mariadb fixes the following issues: Security fixes: * CVE-2026-3494: audit plugin comment handling bypass (bsc#1259176). * CVE-2026-44168: wsrep SST unsafe parameter handling on the donor side (bsc#1266442). * CVE-2026-44170: argument injection in CONNECT REST Xcurl on Windows via unsanitized URL (bsc#1266440). * CVE-2026-44171: path traversal in mbstream (bsc#1266439). * CVE-2026-44172: mysql_real_escape_string() incorrectly handled big5 (bsc#1266438). * CVE-2026-44173: FILE privilege was not checked for subqueries in the FROM clause (bsc#1266437). * CVE-2026-48163: wsrep SST unsafe parameter handling on the donor side (bsc#1266815). * CVE-2026-48165: unsafe usage of `wsrep_sst_receive_address` values on the joiner side (bsc#1266814). * CVE-2026-49261: unsafe parameter handling in `wsrep_notify_cmd` (bsc#1267542). Other fixes: * Update to 10.6.27:https://mariadb.com/docs/release-notes/community- server/10.6/10.6.27 https://mariadb.com/docs/release-notes/community- server/changelogs/10.6/10.6.27 * Update to 10.6.26: https://mariadb.com/docs/release-notes/community- server/10.6/10.6.26 https://mariadb.com/docs/release-notes/community- server/changelogs/10.6/10.6.26 https://mariadb.com/docs/release- notes/community-server/10.6/10.6.25 https://mariadb.com/docs/release- notes/community-server/changelogs/10.6/10.6.25 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2282=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2282=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2282=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2282=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2282=1 * Galera for Ericsson 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-ERICSSON-2026-2282=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2282=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2282=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2282=1 * Galera for Ericsson 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-ERICSSON-2026-2282=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2282=1 ## PackageList: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * mariadb-bench-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-test-debuginfo-10.6.27-150400.3.46.1 * mariadb-bench-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-galera-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * mariadb-rpm-macros-10.6.27-150400.3.46.1 * mariadb-test-10.6.27-150400.3.46.1 * openSUSE Leap 15.4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 *mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * Galera for Ericsson 15 SP4 (x86_64) * mariadb-galera-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * Galera for Ericsson 15 SP5 (x86_64) * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-galera-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 *mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 ## References: * https://www.suse.com/security/cve/CVE-2026-3494.html * https://www.suse.com/security/cve/CVE-2026-44168.html * https://www.suse.com/security/cve/CVE-2026-44170.html * https://www.suse.com/security/cve/CVE-2026-44171.html * https://www.suse.com/security/cve/CVE-2026-44172.html * https://www.suse.com/security/cve/CVE-2026-44173.html * https://www.suse.com/security/cve/CVE-2026-48163.html * https://www.suse.com/security/cve/CVE-2026-48165.html * https://www.suse.com/security/cve/CVE-2026-49261.html * https://bugzilla.suse.com/show_bug.cgi?id=1259176 * https://bugzilla.suse.com/show_bug.cgi?id=1266437 * https://bugzilla.suse.com/show_bug.cgi?id=1266438 * https://bugzilla.suse.com/show_bug.cgi?id=1266439 * https://bugzilla.suse.com/show_bug.cgi?id=1266440 * https://bugzilla.suse.com/show_bug.cgi?id=1266442 * https://bugzilla.suse.com/show_bug.cgi?id=1266814 * https://bugzilla.suse.com/show_bug.cgi?id=1266815 * https://bugzilla.suse.com/show_bug.cgi?id=1267542 . Install the critical update for openSUSE to fix multiple vulnerabilities in MariaDB, enhancing system security.. mariadb security update, openSUSE vulnerabilities, critical patch mariadb. . Severity: Critical. LinuxSecurity.com Team
Jun 05, 2026
•Critical
OpenSUSE
100
security advisorycriticalinjectionopenSUSE MariaDB Critical Issues Addressed Advisory 2026-2282-1
An update that solves nine vulnerabilities can now be installed.. # Security update for mariadb Announcement ID: SUSE-SU-2026:2282-1 Release Date: 2026-06-05T12:14:38Z Rating: critical References: * bsc#1259176 * bsc#1266437 * bsc#1266438 * bsc#1266439 * bsc#1266440 * bsc#1266442 * bsc#1266814 * bsc#1266815 * bsc#1267542 Cross-References: * CVE-2026-3494 * CVE-2026-44168 * CVE-2026-44170 * CVE-2026-44171 * CVE-2026-44172 * CVE-2026-44173 * CVE-2026-48163 * CVE-2026-48165 * CVE-2026-49261 CVSS scores: * CVE-2026-3494 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2026-3494 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2026-3494 ( NVD ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-3494 ( NVD ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2026-44168 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-44168 ( SUSE ): 8.0 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-44170 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-44171 ( SUSE ): 5.4 CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-44171 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H * CVE-2026-44172 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-44173 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L * CVE-2026-44173 ( SUSE ): 5.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L * CVE-2026-48163 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-48163 ( SUSE ): 8.0 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-48165 ( SUSE ): 8.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-48165 ( SUSE ): 8.0CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H * CVE-2026-49261 ( SUSE ): 9.4 CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H * CVE-2026-49261 ( SUSE ): 9.0 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * Galera for Ericsson 15 SP4 * Galera for Ericsson 15 SP5 * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves nine vulnerabilities can now be installed. ## Description: This update for mariadb fixes the following issues: Security fixes: * CVE-2026-3494: audit plugin comment handling bypass (bsc#1259176). * CVE-2026-44168: wsrep SST unsafe parameter handling on the donor side (bsc#1266442). * CVE-2026-44170: argument injection in CONNECT REST Xcurl on Windows via unsanitized URL (bsc#1266440). * CVE-2026-44171: path traversal in mbstream (bsc#1266439). * CVE-2026-44172: mysql_real_escape_string() incorrectly handled big5 (bsc#1266438). * CVE-2026-44173: FILE privilege was not checked for subqueries in the FROM clause (bsc#1266437). * CVE-2026-48163: wsrep SST unsafe parameter handling on the donor side (bsc#1266815). * CVE-2026-48165: unsafe usage of `wsrep_sst_receive_address` values on the joiner side (bsc#1266814). * CVE-2026-49261: unsafe parameter handling in `wsrep_notify_cmd` (bsc#1267542). Other fixes: * Update to 10.6.27:https://mariadb.com/docs/release-notes/community- server/10.6/10.6.27 https://mariadb.com/docs/release-notes/community- server/changelogs/10.6/10.6.27 * Update to 10.6.26: https://mariadb.com/docs/release-notes/community- server/10.6/10.6.26 https://mariadb.com/docs/release-notes/community- server/changelogs/10.6/10.6.26 https://mariadb.com/docs/release- notes/community-server/10.6/10.6.25 https://mariadb.com/docs/release- notes/community-server/changelogs/10.6/10.6.25 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2282=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2282=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2282=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2282=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2282=1 * Galera for Ericsson 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-ERICSSON-2026-2282=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2282=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2282=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2282=1 * Galera for Ericsson 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-ERICSSON-2026-2282=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2282=1 ## PackageList: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * mariadb-bench-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-test-debuginfo-10.6.27-150400.3.46.1 * mariadb-bench-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-galera-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * mariadb-rpm-macros-10.6.27-150400.3.46.1 * mariadb-test-10.6.27-150400.3.46.1 * openSUSE Leap 15.4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 *mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * Galera for Ericsson 15 SP4 (x86_64) * mariadb-galera-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 * mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 * Galera for Ericsson 15 SP5 (x86_64) * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-galera-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libmariadbd19-debuginfo-10.6.27-150400.3.46.1 * libmariadbd19-10.6.27-150400.3.46.1 * mariadb-tools-debuginfo-10.6.27-150400.3.46.1 * mariadb-client-10.6.27-150400.3.46.1 * mariadb-client-debuginfo-10.6.27-150400.3.46.1 *mariadb-10.6.27-150400.3.46.1 * mariadb-debugsource-10.6.27-150400.3.46.1 * mariadb-tools-10.6.27-150400.3.46.1 * mariadb-debuginfo-10.6.27-150400.3.46.1 * libmariadbd-devel-10.6.27-150400.3.46.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * mariadb-errormessages-10.6.27-150400.3.46.1 ## References: * https://www.suse.com/security/cve/CVE-2026-3494.html * https://www.suse.com/security/cve/CVE-2026-44168.html * https://www.suse.com/security/cve/CVE-2026-44170.html * https://www.suse.com/security/cve/CVE-2026-44171.html * https://www.suse.com/security/cve/CVE-2026-44172.html * https://www.suse.com/security/cve/CVE-2026-44173.html * https://www.suse.com/security/cve/CVE-2026-48163.html * https://www.suse.com/security/cve/CVE-2026-48165.html * https://www.suse.com/security/cve/CVE-2026-49261.html * https://bugzilla.suse.com/show_bug.cgi?id=1259176 * https://bugzilla.suse.com/show_bug.cgi?id=1266437 * https://bugzilla.suse.com/show_bug.cgi?id=1266438 * https://bugzilla.suse.com/show_bug.cgi?id=1266439 * https://bugzilla.suse.com/show_bug.cgi?id=1266440 * https://bugzilla.suse.com/show_bug.cgi?id=1266442 * https://bugzilla.suse.com/show_bug.cgi?id=1266814 * https://bugzilla.suse.com/show_bug.cgi?id=1266815 * https://bugzilla.suse.com/show_bug.cgi?id=1267542 . Critical security update for MariaDB addresses nine vulnerabilities, enhancing SUSE Linux Enterprise and openSUSE security.. MariaDB Update,Critical Vulnerabilities,SUSE Security Update,OpenSUSE Patch. . Severity: Critical. LinuxSecurity.com Team
Jun 05, 2026
•Critical
SuSE
100
security advisorymoderateSuSESUSE jq Moderate Security Update CVE-2026-33948 Advisory 2026-2283-1
An update that solves one vulnerability can now be installed.. # Security update for jq Announcement ID: SUSE-SU-2026:2283-1 Release Date: 2026-06-05T12:15:29Z Rating: moderate References: * bsc#1262043 Cross-References: * CVE-2026-33948 CVSS scores: * CVE-2026-33948 ( SUSE ): 2.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-33948 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2026-33948 ( NVD ): 2.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-33948 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * Basesystem Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for jq fixes the following issue * CVE-2026-33948: CLI input parsing may allow validation bypass via embedded NUL bytes (bsc#1262043) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2283=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2283=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2283=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2283=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2283=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2283=1 ## Package List: * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * jq-1.6-150000.3.15.1 * libjq-devel-1.6-150000.3.15.1 * libjq1-debuginfo-1.6-150000.3.15.1 * libjq1-1.6-150000.3.15.1 * jq-debugsource-1.6-150000.3.15.1 * jq-debuginfo-1.6-150000.3.15.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * jq-1.6-150000.3.15.1 * libjq1-debuginfo-1.6-150000.3.15.1 * libjq1-1.6-150000.3.15.1 * jq-debugsource-1.6-150000.3.15.1 * jq-debuginfo-1.6-150000.3.15.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * jq-1.6-150000.3.15.1 * libjq1-debuginfo-1.6-150000.3.15.1 * libjq1-1.6-150000.3.15.1 * jq-debugsource-1.6-150000.3.15.1 * jq-debuginfo-1.6-150000.3.15.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * jq-1.6-150000.3.15.1 * libjq1-debuginfo-1.6-150000.3.15.1 * libjq1-1.6-150000.3.15.1 * jq-debugsource-1.6-150000.3.15.1 * jq-debuginfo-1.6-150000.3.15.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * jq-1.6-150000.3.15.1 * libjq1-debuginfo-1.6-150000.3.15.1 * libjq1-1.6-150000.3.15.1 * jq-debugsource-1.6-150000.3.15.1 * jq-debuginfo-1.6-150000.3.15.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * jq-1.6-150000.3.15.1 * libjq1-debuginfo-1.6-150000.3.15.1 * libjq1-1.6-150000.3.15.1 * jq-debugsource-1.6-150000.3.15.1 * jq-debuginfo-1.6-150000.3.15.1 ## References: * https://www.suse.com/security/cve/CVE-2026-33948.html * https://bugzilla.suse.com/show_bug.cgi?id=1262043 . A security update is available for jq with moderate severity, addressing CLI input parsing bypass issues.. SUSE jq update moderatesecurity input parsing. . Severity: moderate. LinuxSecurity.com Team
Jun 05, 2026
•moderate
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!