Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 496
Alerts This Week
Warning Icon 1 496

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 23 articles for you...
202

openSUSE 15.4: Advisory 2025:1549-1 moderate: apparmor security fix

An update that solves one vulnerability can now be installed.. # Security update for apparmor Announcement ID: SUSE-SU-2025:1549-1 Release Date: 2025-05-14T09:06:46Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-1549=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-1549=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-1549=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-1549=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-1549=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-1549=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-1549=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-1549=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-1549=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-1549=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-1549=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-1549=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * apparmor-debugsource-3.0.4-150400.5.18.1 * ruby-apparmor-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * ruby-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * openSUSE Leap 15.4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 *apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * openSUSE Leap 15.4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * openSUSE Leap 15.4 (aarch64_ilp32) * pam_apparmor-64bit-3.0.4-150400.5.18.1 * libapparmor1-64bit-3.0.4-150400.5.18.1 * pam_apparmor-64bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-64bit-debuginfo-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) *apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 *perl-apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 *apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Manager Proxy 4.3 (x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 *pam_apparmor-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Manager Proxy 4.3 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 *apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Manager Server 4.3 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Manager Server 4.3 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . A timely security patch for Fedora impacting SELinux, targeting known vulnerabilities to improve overall system integrity.. openSUSE security, apparmor update, Linux patch management, SUSE Linux security. . LinuxSecurity.com Team

Calendar%202 May 14, 2025 OpenSUSE
100

SUSE: 2025:1549-1 moderate: apparmor update and patch instructions

* bsc#1241678 Cross-References: * CVE-2024-10041 . # Security update for apparmor Announcement ID: SUSE-SU-2025:1549-1 Release Date: 2025-05-14T09:06:46Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-1549=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-1549=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-1549=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypperin -t patch SUSE-SLE-Micro-5.4-2025-1549=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-1549=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-1549=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-1549=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-1549=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-1549=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-1549=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-1549=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-1549=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * apparmor-debugsource-3.0.4-150400.5.18.1 * ruby-apparmor-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * ruby-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * openSUSE Leap 15.4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * openSUSE Leap 15.4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * openSUSE Leap 15.4 (aarch64_ilp32) * pam_apparmor-64bit-3.0.4-150400.5.18.1 * libapparmor1-64bit-3.0.4-150400.5.18.1 * pam_apparmor-64bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-64bit-debuginfo-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 *libapparmor-debugsource-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 *perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 *apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * perl-apparmor-3.0.4-150400.5.18.1 * perl-apparmor-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * SUSE Manager Proxy 4.3 (x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 *python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Manager Proxy 4.3 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 *apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * apparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-debugsource-3.0.4-150400.5.18.1 * libapparmor-devel-3.0.4-150400.5.18.1 * pam_apparmor-3.0.4-150400.5.18.1 * python3-apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-debuginfo-3.0.4-150400.5.18.1 * python3-apparmor-3.0.4-150400.5.18.1 * libapparmor1-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-3.0.4-150400.5.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150400.5.18.1 * apache2-mod_apparmor-3.0.4-150400.5.18.1 * pam_apparmor-debuginfo-3.0.4-150400.5.18.1 * apparmor-parser-3.0.4-150400.5.18.1 * SUSE Manager Server 4.3 (noarch) * apparmor-profiles-3.0.4-150400.5.18.1 * apparmor-parser-lang-3.0.4-150400.5.18.1 * apparmor-abstractions-3.0.4-150400.5.18.1 * apparmor-docs-3.0.4-150400.5.18.1 * apparmor-utils-3.0.4-150400.5.18.1 * apparmor-utils-lang-3.0.4-150400.5.18.1 * SUSE Manager Server 4.3 (x86_64) * pam_apparmor-32bit-debuginfo-3.0.4-150400.5.18.1 * libapparmor1-32bit-3.0.4-150400.5.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150400.5.18.1 * pam_apparmor-32bit-3.0.4-150400.5.18.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . Security bulletin for SUSE: 2025:1549-1 report addressing apparmor weaknesses and remedies.. SUSE Security Advisory, apparmor update, SUSE update, system security patching. . LinuxSecurity.com Team

Calendar%202 May 14, 2025 SuSE
202

openSUSE Leap 15.6: Security Notice SUSE-SU-2025:1511-1 moderate: apparmor

An update that solves one vulnerability can now be installed.. # Security update for apparmor Announcement ID: SUSE-SU-2025:1511-1 Release Date: 2025-05-07T19:36:15Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP6 * Development Tools Module 15-SP6 * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-1511=1 SUSE-2025-1511=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-1511=1 * Development Tools Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2025-1511=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1511=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * pam_apparmor-3.1.7-150600.5.9.1 * pam_apparmor-debuginfo-3.1.7-150600.5.9.1 *apache2-mod_apparmor-debuginfo-3.1.7-150600.5.9.1 * apparmor-parser-3.1.7-150600.5.9.1 * python3-apparmor-3.1.7-150600.5.9.1 * apparmor-parser-debuginfo-3.1.7-150600.5.9.1 * apparmor-debugsource-3.1.7-150600.5.9.1 * perl-apparmor-3.1.7-150600.5.9.1 * libapparmor1-debuginfo-3.1.7-150600.5.9.1 * ruby-apparmor-debuginfo-3.1.7-150600.5.9.1 * apache2-mod_apparmor-3.1.7-150600.5.9.1 * ruby-apparmor-3.1.7-150600.5.9.1 * libapparmor-debugsource-3.1.7-150600.5.9.1 * libapparmor1-3.1.7-150600.5.9.1 * libapparmor-devel-3.1.7-150600.5.9.1 * perl-apparmor-debuginfo-3.1.7-150600.5.9.1 * python3-apparmor-debuginfo-3.1.7-150600.5.9.1 * openSUSE Leap 15.6 (noarch) * apparmor-utils-3.1.7-150600.5.9.1 * apparmor-utils-lang-3.1.7-150600.5.9.1 * apparmor-parser-lang-3.1.7-150600.5.9.1 * apparmor-docs-3.1.7-150600.5.9.1 * apparmor-abstractions-3.1.7-150600.5.9.1 * apparmor-profiles-3.1.7-150600.5.9.1 * openSUSE Leap 15.6 (x86_64) * libapparmor1-32bit-3.1.7-150600.5.9.1 * pam_apparmor-32bit-debuginfo-3.1.7-150600.5.9.1 * libapparmor1-32bit-debuginfo-3.1.7-150600.5.9.1 * pam_apparmor-32bit-3.1.7-150600.5.9.1 * openSUSE Leap 15.6 (aarch64_ilp32) * libapparmor1-64bit-debuginfo-3.1.7-150600.5.9.1 * pam_apparmor-64bit-debuginfo-3.1.7-150600.5.9.1 * libapparmor1-64bit-3.1.7-150600.5.9.1 * pam_apparmor-64bit-3.1.7-150600.5.9.1 * Basesystem Module 15-SP6 (noarch) * apparmor-utils-3.1.7-150600.5.9.1 * apparmor-utils-lang-3.1.7-150600.5.9.1 * apparmor-parser-lang-3.1.7-150600.5.9.1 * apparmor-docs-3.1.7-150600.5.9.1 * apparmor-abstractions-3.1.7-150600.5.9.1 * apparmor-profiles-3.1.7-150600.5.9.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * pam_apparmor-3.1.7-150600.5.9.1 * pam_apparmor-debuginfo-3.1.7-150600.5.9.1 * apparmor-parser-3.1.7-150600.5.9.1 * python3-apparmor-3.1.7-150600.5.9.1 * apparmor-parser-debuginfo-3.1.7-150600.5.9.1 *apparmor-debugsource-3.1.7-150600.5.9.1 * libapparmor1-debuginfo-3.1.7-150600.5.9.1 * libapparmor-debugsource-3.1.7-150600.5.9.1 * libapparmor-devel-3.1.7-150600.5.9.1 * libapparmor1-3.1.7-150600.5.9.1 * python3-apparmor-debuginfo-3.1.7-150600.5.9.1 * Basesystem Module 15-SP6 (x86_64) * pam_apparmor-32bit-debuginfo-3.1.7-150600.5.9.1 * libapparmor1-32bit-debuginfo-3.1.7-150600.5.9.1 * pam_apparmor-32bit-3.1.7-150600.5.9.1 * libapparmor1-32bit-3.1.7-150600.5.9.1 * Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64) * perl-apparmor-3.1.7-150600.5.9.1 * apparmor-debugsource-3.1.7-150600.5.9.1 * perl-apparmor-debuginfo-3.1.7-150600.5.9.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * apache2-mod_apparmor-3.1.7-150600.5.9.1 * apparmor-debugsource-3.1.7-150600.5.9.1 * apache2-mod_apparmor-debuginfo-3.1.7-150600.5.9.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . Important apparmor security patch resolves CVE-2024-10041 affecting openSUSE Leap 15.6 and associated modules. Update immediately!. openSUSE Security, apparmor Update, SUSE CVE Fixes, Moderate Security Alert. . LinuxSecurity.com Team

Calendar%202 May 08, 2025 OpenSUSE
100

SUSE: 2025:1512-1 moderate security patch for apparmor issues

* bsc#1241678 Cross-References: * CVE-2024-10041 . # Security update for apparmor Announcement ID: SUSE-SU-2025:1512-1 Release Date: 2025-05-07T19:36:39Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-1512=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-1512=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-1512=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-1512=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-1512=1 *SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-1512=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * pam_apparmor-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * ruby-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * ruby-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * openSUSE Leap 15.5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * openSUSE Leap 15.5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * openSUSE Leap 15.5 (aarch64_ilp32) * pam_apparmor-64bit-debuginfo-3.0.4-150500.11.18.1 * pam_apparmor-64bit-3.0.4-150500.11.18.1 * libapparmor1-64bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-64bit-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * pam_apparmor-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 *pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . Mitigate AppArmor weaknesses in SUSE systems to enhance protection and maintain peak performance.. SUSE AppArmor Security Update, Linux AppArmor Patch,OpenSUSE AppArmor Fix. . LinuxSecurity.com Team

Calendar%202 May 08, 2025 SuSE
202

openSUSE Leap 15.5 moderate: apparmor patch for CVE-2024-10041

An update that solves one vulnerability can now be installed.. # Security update for apparmor Announcement ID: SUSE-SU-2025:1512-1 Release Date: 2025-05-07T19:36:39Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-1512=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-1512=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-1512=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-1512=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patchSUSE-SLE-Product-SLES-15-SP5-LTSS-2025-1512=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-1512=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * pam_apparmor-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * ruby-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * ruby-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * openSUSE Leap 15.5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * openSUSE Leap 15.5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * openSUSE Leap 15.5 (aarch64_ilp32) * pam_apparmor-64bit-debuginfo-3.0.4-150500.11.18.1 * pam_apparmor-64bit-3.0.4-150500.11.18.1 * libapparmor1-64bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-64bit-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * pam_apparmor-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 *libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 *python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 *apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libapparmor1-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-3.0.4-150500.11.18.1 * pam_apparmor-3.0.4-150500.11.18.1 * libapparmor-debugsource-3.0.4-150500.11.18.1 * apparmor-debugsource-3.0.4-150500.11.18.1 * python3-apparmor-3.0.4-150500.11.18.1 * libapparmor1-3.0.4-150500.11.18.1 * pam_apparmor-debuginfo-3.0.4-150500.11.18.1 * python3-apparmor-debuginfo-3.0.4-150500.11.18.1 * libapparmor-devel-3.0.4-150500.11.18.1 * perl-apparmor-3.0.4-150500.11.18.1 * perl-apparmor-debuginfo-3.0.4-150500.11.18.1 * apparmor-parser-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-debuginfo-3.0.4-150500.11.18.1 * apache2-mod_apparmor-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * apparmor-docs-3.0.4-150500.11.18.1 * apparmor-utils-3.0.4-150500.11.18.1 * apparmor-utils-lang-3.0.4-150500.11.18.1 * apparmor-abstractions-3.0.4-150500.11.18.1 * apparmor-parser-lang-3.0.4-150500.11.18.1 * apparmor-profiles-3.0.4-150500.11.18.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * pam_apparmor-32bit-3.0.4-150500.11.18.1 * libapparmor1-32bit-debuginfo-3.0.4-150500.11.18.1 * libapparmor1-32bit-3.0.4-150500.11.18.1 * pam_apparmor-32bit-debuginfo-3.0.4-150500.11.18.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . An update for apparmor solves a security issue affectingopenSUSE Leap 15.5 with moderate severity. Install now.. security, update, apparmor, announcement, suse-su-2025, 1512-1, release, 2025-05-07t19. . LinuxSecurity.com Team

Calendar%202 May 08, 2025 OpenSUSE
100

SUSE Security Update 2025:1517-1: Moderate AppArmor Enhancements Released

* bsc#1241678 Cross-References: * CVE-2024-10041 . # Security update for apparmor Announcement ID: SUSE-SU-2025:1517-1 Release Date: 2025-05-08T19:35:51Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2025-1517=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-1517=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * apache2-mod_apparmor-2.8.2-56.26.1 * apparmor-debugsource-2.8.2-56.26.1 * apparmor-parser-2.8.2-56.26.1 * libapparmor1-2.8.2-56.26.1 * perl-apparmor-2.8.2-56.26.1 * libapparmor1-debuginfo-2.8.2-56.26.1 * perl-apparmor-debuginfo-2.8.2-56.26.1 * apparmor-parser-debuginfo-2.8.2-56.26.1 *pam_apparmor-2.8.2-56.26.1 * apache2-mod_apparmor-debuginfo-2.8.2-56.26.1 * libapparmor-devel-2.8.2-56.26.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (noarch) * apparmor-docs-2.8.2-56.26.1 * apparmor-utils-2.8.2-56.26.1 * apparmor-profiles-2.8.2-56.26.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (ppc64le s390x x86_64) * pam_apparmor-debuginfo-2.8.2-56.26.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (s390x x86_64) * libapparmor1-debuginfo-32bit-2.8.2-56.26.1 * pam_apparmor-32bit-2.8.2-56.26.1 * pam_apparmor-debuginfo-32bit-2.8.2-56.26.1 * libapparmor1-32bit-2.8.2-56.26.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * perl-apparmor-2.8.2-56.26.1 * apache2-mod_apparmor-2.8.2-56.26.1 * pam_apparmor-debuginfo-32bit-2.8.2-56.26.1 * apparmor-debugsource-2.8.2-56.26.1 * libapparmor1-debuginfo-32bit-2.8.2-56.26.1 * apparmor-parser-2.8.2-56.26.1 * libapparmor1-2.8.2-56.26.1 * pam_apparmor-32bit-2.8.2-56.26.1 * libapparmor1-debuginfo-2.8.2-56.26.1 * libapparmor1-32bit-2.8.2-56.26.1 * apparmor-parser-debuginfo-2.8.2-56.26.1 * pam_apparmor-2.8.2-56.26.1 * pam_apparmor-debuginfo-2.8.2-56.26.1 * apache2-mod_apparmor-debuginfo-2.8.2-56.26.1 * libapparmor-devel-2.8.2-56.26.1 * perl-apparmor-debuginfo-2.8.2-56.26.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (noarch) * apparmor-docs-2.8.2-56.26.1 * apparmor-utils-2.8.2-56.26.1 * apparmor-profiles-2.8.2-56.26.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . The recent apparmor enhancement addresses significant vulnerabilities within SUSE Linux. Explore the procedures for installation and products affected.. Apparmor Update, SUSE Security Fix, Linux Vulnerability Management. . LinuxSecurity.com Team

Calendar%202 May 08, 2025 SuSE
100

SUSE Linux Enterprise: 2025:1505-1 moderate: apparmor CVE-2024-10041

* bsc#1241678 Cross-References: * CVE-2024-10041 . # Security update for apparmor Announcement ID: SUSE-SU-2025:1505-1 Release Date: 2025-05-07T12:06:44Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-1505=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-1505=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-1505=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-1505=1 * SUSE Enterprise Storage 7.1 zypper in -tpatch SUSE-Storage-7.1-2025-1505=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-1505=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1505=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1505=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * ruby-apparmor-2.13.6-150300.3.24.1 * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * ruby-apparmor-debuginfo-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * openSUSE Leap 15.3 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * openSUSE Leap 15.3 (x86_64) * libapparmor1-32bit-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * openSUSE Leap 15.3 (aarch64_ilp32) * pam_apparmor-64bit-2.13.6-150300.3.24.1 * pam_apparmor-64bit-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-64bit-2.13.6-150300.3.24.1 * libapparmor1-64bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise High PerformanceComputing LTSS 15 SP3 (aarch64 x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 *apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Enterprise Storage 7.1 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Enterprise Storage 7.1 (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * apparmor-abstractions-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * pam_apparmor-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) *pam_apparmor-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * pam_apparmor-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . The recent update for SUSE's apparmor resolves a moderate vulnerability identified as CVE-2024-10041, improving overall system protection.. SUSE security, apparmor patching, openSUSE updates, high-performance computing security. . LinuxSecurity.com Team

Calendar%202 May 07, 2025 SuSE
202

openSUSE: 2025:1505-1 moderate: apparmor update details

An update that solves one vulnerability can now be installed.. # Security update for apparmor Announcement ID: SUSE-SU-2025:1505-1 Release Date: 2025-05-07T12:06:44Z Rating: moderate References: * bsc#1241678 Cross-References: * CVE-2024-10041 CVSS scores: * CVE-2024-10041 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-10041 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2024-10041 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability can now be installed. ## Description: This update for apparmor fixes the following issues: * Add dac_read_search capability for unix_chkpwd to allow it to read the shadow file even if it has 000 permissions. This is needed after the CVE-2024-10041 fix in PAM. (bsc#1241678) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-1505=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-1505=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-1505=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-1505=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-1505=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-1505=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1505=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-1505=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * ruby-apparmor-2.13.6-150300.3.24.1 * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * ruby-apparmor-debuginfo-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * openSUSE Leap 15.3 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * openSUSE Leap 15.3 (x86_64) * libapparmor1-32bit-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * openSUSE Leap 15.3 (aarch64_ilp32) * pam_apparmor-64bit-2.13.6-150300.3.24.1 * pam_apparmor-64bit-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-64bit-2.13.6-150300.3.24.1 * libapparmor1-64bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise HighPerformance Computing LTSS 15 SP3 (aarch64 x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 *apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * perl-apparmor-debuginfo-2.13.6-150300.3.24.1 * perl-apparmor-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * pam_apparmor-2.13.6-150300.3.24.1 * apache2-mod_apparmor-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * apache2-mod_apparmor-debuginfo-2.13.6-150300.3.24.1 * python3-apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-devel-2.13.6-150300.3.24.1 * SUSE Enterprise Storage 7.1 (noarch) * apparmor-profiles-2.13.6-150300.3.24.1 * apparmor-utils-2.13.6-150300.3.24.1 * apparmor-abstractions-2.13.6-150300.3.24.1 * apparmor-parser-lang-2.13.6-150300.3.24.1 * apparmor-docs-2.13.6-150300.3.24.1 * apparmor-utils-lang-2.13.6-150300.3.24.1 * SUSE Enterprise Storage 7.1 (x86_64) * pam_apparmor-32bit-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-2.13.6-150300.3.24.1 * libapparmor1-32bit-debuginfo-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * apparmor-abstractions-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * pam_apparmor-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) *pam_apparmor-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * pam_apparmor-2.13.6-150300.3.24.1 * apparmor-parser-debuginfo-2.13.6-150300.3.24.1 * apparmor-debugsource-2.13.6-150300.3.24.1 * apparmor-parser-2.13.6-150300.3.24.1 * libapparmor1-debuginfo-2.13.6-150300.3.24.1 * pam_apparmor-debuginfo-2.13.6-150300.3.24.1 * libapparmor-debugsource-2.13.6-150300.3.24.1 * libapparmor1-2.13.6-150300.3.24.1 ## References: * https://www.suse.com/security/cve/CVE-2024-10041.html * https://bugzilla.suse.com/show_bug.cgi?id=1241678 . openSUSE's recent update fixes moderate AppArmor vulnerabilities, featuring thorough installation instructions and detailed information on related security patches. openSUSE apparmor update, security patches, apparmor vulnerabilities, SUSE Linux updates. . LinuxSecurity.com Team

Calendar%202 May 07, 2025 OpenSUSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200