Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 524
Alerts This Week
Warning Icon 1 524

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 423 articles for you...
202

openSUSE glibc Moderate Buffer Overflow Out-of-Bounds Fix 2026-3029-1

An update that solves two vulnerabilities can now be installed.. # Security update for glibc Announcement ID: SUSE-SU-2026:3029-1 Release Date: 2026-07-15T09:52:53Z Rating: moderate References: * bsc#1263656 * bsc#1263658 Cross-References: * CVE-2026-5435 * CVE-2026-6238 CVSS scores: * CVE-2026-5435 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-5435 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5435 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-6238 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves two vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues * CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out- of-bounds write (bsc#1263656). * CVE-2026-6238: insufficient RDATAlength validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2026-3029=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-3029=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-3029=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-3029=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-3029=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-3029=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-3029=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-3029=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-3029=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-3029=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-3029=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-3029=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-3029=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-3029=1 ## Package List: * openSUSE Leap 15.3 (aarch64 i586 ppc64le s390x x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 *glibc-utils-debuginfo-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * openSUSE Leap 15.3 (aarch64 i586 i686 ppc64le s390x x86_64) * glibc-locale-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * openSUSE Leap 15.3 (x86_64) * glibc-profile-32bit-2.31-150300.104.1 * glibc-utils-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-utils-32bit-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-devel-static-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * openSUSE Leap 15.3 (noarch) * glibc-html-2.31-150300.104.1 * glibc-lang-2.31-150300.104.1 * glibc-i18ndata-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * openSUSE Leap 15.3 (aarch64_ilp32) * glibc-locale-base-64bit-debuginfo-2.31-150300.104.1 * glibc-64bit-2.31-150300.104.1 * glibc-profile-64bit-2.31-150300.104.1 * glibc-devel-64bit-2.31-150300.104.1 * glibc-64bit-debuginfo-2.31-150300.104.1 * glibc-devel-static-64bit-2.31-150300.104.1 * glibc-devel-64bit-debuginfo-2.31-150300.104.1 * glibc-utils-64bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-64bit-2.31-150300.104.1 * glibc-utils-64bit-2.31-150300.104.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * glibc-lang-2.31-150300.104.1 * glibc-i18ndata-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * glibc-locale-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 *glibc-devel-static-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * glibc-i18ndata-2.31-150300.104.1 * glibc-lang-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * glibc-lang-2.31-150300.104.1 * glibc-i18ndata-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * glibc-i18ndata-2.31-150300.104.1 * glibc-lang-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 *nscd-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * glibc-lang-2.31-150300.104.1 * glibc-i18ndata-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * glibc-lang-2.31-150300.104.1 * glibc-i18ndata-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * glibc-locale-2.31-150300.104.1 *glibc-locale-base-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * glibc-locale-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * glibc-i18ndata-2.31-150300.104.1 * glibc-lang-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5(x86_64) * glibc-devel-32bit-2.31-150300.104.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.104.1 * glibc-devel-32bit-debuginfo-2.31-150300.104.1 * glibc-32bit-debuginfo-2.31-150300.104.1 * glibc-locale-base-32bit-2.31-150300.104.1 * glibc-32bit-2.31-150300.104.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * glibc-utils-src-debugsource-2.31-150300.104.1 * glibc-locale-2.31-150300.104.1 * glibc-utils-debuginfo-2.31-150300.104.1 * glibc-profile-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * nscd-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-utils-2.31-150300.104.1 * glibc-devel-static-2.31-150300.104.1 * glibc-extra-debuginfo-2.31-150300.104.1 * glibc-extra-2.31-150300.104.1 * nscd-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * glibc-i18ndata-2.31-150300.104.1 * glibc-lang-2.31-150300.104.1 * glibc-info-2.31-150300.104.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * glibc-locale-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * glibc-locale-2.31-150300.104.1 * glibc-locale-base-2.31-150300.104.1 * glibc-devel-2.31-150300.104.1 * glibc-locale-base-debuginfo-2.31-150300.104.1 * glibc-2.31-150300.104.1 * glibc-devel-debuginfo-2.31-150300.104.1 * glibc-debugsource-2.31-150300.104.1 * glibc-debuginfo-2.31-150300.104.1 ## References: *https://www.suse.com/security/cve/CVE-2026-5435.html * https://www.suse.com/security/cve/CVE-2026-6238.html * https://bugzilla.suse.com/show_bug.cgi?id=1263656 * https://bugzilla.suse.com/show_bug.cgi?id=1263658 . This update for glibc addresses moderate vulnerabilities including buffer issues and application crashes.. openSUSE glibc vulnerabilities patching application crash buffer overflow. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 15, 2026 moderate OpenSUSE
202

openSUSE glibc Moderate Buffer Overflow Issues 2026-3030-1

An update that solves two vulnerabilities can now be installed.. # Security update for glibc Announcement ID: SUSE-SU-2026:3030-1 Release Date: 2026-07-15T09:53:19Z Rating: moderate References: * bsc#1263656 * bsc#1263658 Cross-References: * CVE-2026-5435 * CVE-2026-6238 CVSS scores: * CVE-2026-5435 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-5435 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5435 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-6238 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * Basesystem Module 15-SP7 * Development Tools Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves two vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues * CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out- of-bounds write (bsc#1263656). * CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-3030=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patchSUSE-SLE-Product-SLES-15-SP6-LTSS-2026-3030=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-3030=1 * Development Tools Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-3030=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-3030=1 ## Package List: * SUSE Linux Enterprise Server 15 SP6 LTSS (x86_64) * libnsl1-32bit-2.38-150600.14.52.1 * glibc-32bit-2.38-150600.14.52.1 * glibc-locale-base-32bit-2.38-150600.14.52.1 * libnsl1-32bit-debuginfo-2.38-150600.14.52.1 * glibc-32bit-debuginfo-2.38-150600.14.52.1 * glibc-devel-32bit-debuginfo-2.38-150600.14.52.1 * glibc-devel-32bit-2.38-150600.14.52.1 * glibc-locale-base-32bit-debuginfo-2.38-150600.14.52.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * glibc-extra-2.38-150600.14.52.1 * glibc-locale-base-debuginfo-2.38-150600.14.52.1 * glibc-utils-2.38-150600.14.52.1 * libnsl1-2.38-150600.14.52.1 * glibc-extra-debuginfo-2.38-150600.14.52.1 * nscd-2.38-150600.14.52.1 * glibc-devel-debuginfo-2.38-150600.14.52.1 * glibc-debugsource-2.38-150600.14.52.1 * glibc-2.38-150600.14.52.1 * glibc-devel-static-2.38-150600.14.52.1 * glibc-locale-base-2.38-150600.14.52.1 * glibc-devel-2.38-150600.14.52.1 * glibc-profile-2.38-150600.14.52.1 * glibc-locale-2.38-150600.14.52.1 * libnsl1-debuginfo-2.38-150600.14.52.1 * glibc-debuginfo-2.38-150600.14.52.1 * nscd-debuginfo-2.38-150600.14.52.1 * glibc-utils-src-debugsource-2.38-150600.14.52.1 * glibc-utils-debuginfo-2.38-150600.14.52.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (noarch) * glibc-lang-2.38-150600.14.52.1 * glibc-i18ndata-2.38-150600.14.52.1 * glibc-info-2.38-150600.14.52.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * glibc-devel-2.38-150600.14.52.1 * glibc-profile-2.38-150600.14.52.1 * nscd-2.38-150600.14.52.1 *glibc-extra-2.38-150600.14.52.1 * glibc-locale-2.38-150600.14.52.1 * glibc-devel-debuginfo-2.38-150600.14.52.1 * glibc-debugsource-2.38-150600.14.52.1 * libnsl1-debuginfo-2.38-150600.14.52.1 * glibc-locale-base-debuginfo-2.38-150600.14.52.1 * glibc-2.38-150600.14.52.1 * glibc-debuginfo-2.38-150600.14.52.1 * glibc-locale-base-2.38-150600.14.52.1 * libnsl1-2.38-150600.14.52.1 * glibc-extra-debuginfo-2.38-150600.14.52.1 * nscd-debuginfo-2.38-150600.14.52.1 * Basesystem Module 15-SP7 (noarch) * glibc-lang-2.38-150600.14.52.1 * glibc-i18ndata-2.38-150600.14.52.1 * glibc-info-2.38-150600.14.52.1 * Basesystem Module 15-SP7 (x86_64) * libnsl1-32bit-2.38-150600.14.52.1 * glibc-32bit-2.38-150600.14.52.1 * glibc-locale-base-32bit-2.38-150600.14.52.1 * libnsl1-32bit-debuginfo-2.38-150600.14.52.1 * glibc-32bit-debuginfo-2.38-150600.14.52.1 * glibc-locale-base-32bit-debuginfo-2.38-150600.14.52.1 * openSUSE Leap 15.6 (aarch64 i586 i686 ppc64le s390x x86_64) * glibc-devel-2.38-150600.14.52.1 * glibc-profile-2.38-150600.14.52.1 * glibc-locale-2.38-150600.14.52.1 * glibc-devel-debuginfo-2.38-150600.14.52.1 * glibc-debugsource-2.38-150600.14.52.1 * libnsl1-debuginfo-2.38-150600.14.52.1 * glibc-locale-base-debuginfo-2.38-150600.14.52.1 * glibc-2.38-150600.14.52.1 * glibc-debuginfo-2.38-150600.14.52.1 * glibc-devel-static-2.38-150600.14.52.1 * glibc-locale-base-2.38-150600.14.52.1 * libnsl1-2.38-150600.14.52.1 * openSUSE Leap 15.6 (x86_64) * libnsl1-32bit-2.38-150600.14.52.1 * glibc-32bit-2.38-150600.14.52.1 * glibc-locale-base-32bit-2.38-150600.14.52.1 * libnsl1-32bit-debuginfo-2.38-150600.14.52.1 * glibc-32bit-debuginfo-2.38-150600.14.52.1 * glibc-utils-32bit-2.38-150600.14.52.1 * glibc-devel-32bit-debuginfo-2.38-150600.14.52.1 * glibc-profile-32bit-2.38-150600.14.52.1 * glibc-locale-base-32bit-debuginfo-2.38-150600.14.52.1 *glibc-devel-32bit-2.38-150600.14.52.1 * glibc-devel-static-32bit-2.38-150600.14.52.1 * glibc-utils-32bit-debuginfo-2.38-150600.14.52.1 * openSUSE Leap 15.6 (aarch64 i586 ppc64le s390x x86_64) * glibc-utils-src-debugsource-2.38-150600.14.52.1 * nscd-2.38-150600.14.52.1 * glibc-extra-2.38-150600.14.52.1 * glibc-utils-debuginfo-2.38-150600.14.52.1 * glibc-utils-2.38-150600.14.52.1 * glibc-extra-debuginfo-2.38-150600.14.52.1 * nscd-debuginfo-2.38-150600.14.52.1 * openSUSE Leap 15.6 (aarch64_ilp32) * glibc-locale-base-64bit-debuginfo-2.38-150600.14.52.1 * glibc-utils-64bit-debuginfo-2.38-150600.14.52.1 * glibc-devel-static-64bit-2.38-150600.14.52.1 * glibc-64bit-debuginfo-2.38-150600.14.52.1 * libnsl1-64bit-2.38-150600.14.52.1 * glibc-devel-64bit-2.38-150600.14.52.1 * glibc-64bit-2.38-150600.14.52.1 * glibc-profile-64bit-2.38-150600.14.52.1 * glibc-utils-64bit-2.38-150600.14.52.1 * glibc-locale-base-64bit-2.38-150600.14.52.1 * glibc-devel-64bit-debuginfo-2.38-150600.14.52.1 * libnsl1-64bit-debuginfo-2.38-150600.14.52.1 * openSUSE Leap 15.6 (noarch) * glibc-lang-2.38-150600.14.52.1 * glibc-i18ndata-2.38-150600.14.52.1 * glibc-info-2.38-150600.14.52.1 * glibc-html-2.38-150600.14.52.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (x86_64) * libnsl1-32bit-2.38-150600.14.52.1 * glibc-32bit-2.38-150600.14.52.1 * libnsl1-32bit-debuginfo-2.38-150600.14.52.1 * glibc-locale-base-32bit-2.38-150600.14.52.1 * glibc-32bit-debuginfo-2.38-150600.14.52.1 * glibc-devel-32bit-debuginfo-2.38-150600.14.52.1 * glibc-locale-base-32bit-debuginfo-2.38-150600.14.52.1 * glibc-devel-32bit-2.38-150600.14.52.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * glibc-extra-2.38-150600.14.52.1 * glibc-locale-base-debuginfo-2.38-150600.14.52.1 * glibc-utils-2.38-150600.14.52.1 * libnsl1-2.38-150600.14.52.1 * glibc-extra-debuginfo-2.38-150600.14.52.1 * nscd-2.38-150600.14.52.1 * glibc-devel-debuginfo-2.38-150600.14.52.1 * glibc-debugsource-2.38-150600.14.52.1 * glibc-2.38-150600.14.52.1 * glibc-devel-static-2.38-150600.14.52.1 * glibc-locale-base-2.38-150600.14.52.1 * glibc-devel-2.38-150600.14.52.1 * glibc-profile-2.38-150600.14.52.1 * glibc-locale-2.38-150600.14.52.1 * libnsl1-debuginfo-2.38-150600.14.52.1 * glibc-debuginfo-2.38-150600.14.52.1 * nscd-debuginfo-2.38-150600.14.52.1 * glibc-utils-src-debugsource-2.38-150600.14.52.1 * glibc-utils-debuginfo-2.38-150600.14.52.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (noarch) * glibc-lang-2.38-150600.14.52.1 * glibc-i18ndata-2.38-150600.14.52.1 * glibc-info-2.38-150600.14.52.1 * Development Tools Module 15-SP7 (aarch64 ppc64le s390x x86_64) * glibc-utils-src-debugsource-2.38-150600.14.52.1 * glibc-utils-debuginfo-2.38-150600.14.52.1 * glibc-debugsource-2.38-150600.14.52.1 * glibc-utils-2.38-150600.14.52.1 * glibc-debuginfo-2.38-150600.14.52.1 * glibc-devel-static-2.38-150600.14.52.1 * Development Tools Module 15-SP7 (x86_64) * glibc-devel-32bit-debuginfo-2.38-150600.14.52.1 * glibc-32bit-debuginfo-2.38-150600.14.52.1 * glibc-devel-32bit-2.38-150600.14.52.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5435.html * https://www.suse.com/security/cve/CVE-2026-6238.html * https://bugzilla.suse.com/show_bug.cgi?id=1263656 * https://bugzilla.suse.com/show_bug.cgi?id=1263658 . A moderate security update for openSUSE addressing two glibc vulnerabilities that can lead to application crashes or memory disclosure.. SUSE glibc security advisory, openSUSE patch instructions, software vulnerabilities update. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 15, 2026 moderate OpenSUSE
100

SUSE glibc Moderate Out-of-Bounds and Crash Issues Vuln 2026-22538-1

An update that solves two vulnerabilities can now be installed.. # Security update for glibc Announcement ID: SUSE-SU-2026:22538-1 Release Date: 2026-07-03T13:25:46Z Rating: moderate References: * bsc#1263656 * bsc#1263658 Cross-References: * CVE-2026-5435 * CVE-2026-6238 CVSS scores: * CVE-2026-5435 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-5435 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5435 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-6238 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Micro 6.2 * SUSE Linux Micro Extras 6.2 An update that solves two vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues * CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out- of-bounds write (bsc#1263656). * CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro Extras 6.2 zypper in -t patch SUSE-SLE-Micro-Extras-6.2-1157=1 ## Package List: * SUSE Linux Micro Extras 6.2 (aarch64 ppc64le s390x x86_64) * glibc-gconv-modules-extra-2.40-160000.6.1 * glibc-debuginfo-2.40-160000.6.1 * glibc-gconv-modules-extra-debuginfo-2.40-160000.6.1 * glibc-debugsource-2.40-160000.6.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5435.html * https://www.suse.com/security/cve/CVE-2026-6238.html *https://bugzilla.suse.com/show_bug.cgi?id=1263656 * https://bugzilla.suse.com/show_bug.cgi?id=1263658 . SUSE releases security update for glibc addressing multiple vulnerabilities including application crashes and buffer overflows.. SUSE security update, glibc vulnerabilities, package management, Linux OS, system vulnerabilities. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 13, 2026 moderate SuSE
100

SUSE Linux Micro 6.0 experiences Moderate Out-Of-Bounds Write and Crash

An update that solves two vulnerabilities can now be installed.. # Security update for glibc Announcement ID: SUSE-SU-2026:22523-1 Release Date: 2026-07-06T13:14:21Z Rating: moderate References: * bsc#1263656 * bsc#1263658 Cross-References: * CVE-2026-5435 * CVE-2026-6238 CVSS scores: * CVE-2026-5435 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-5435 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5435 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-6238 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Micro 6.0 An update that solves two vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues * CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out- of-bounds write (bsc#1263656). * CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-784=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * glibc-debugsource-2.38-14.1 * glibc-locale-base-2.38-14.1 * glibc-devel-2.38-14.1 * glibc-debuginfo-2.38-14.1 * glibc-locale-2.38-14.1 * glibc-locale-base-debuginfo-2.38-14.1 * glibc-2.38-14.1 * glibc-devel-debuginfo-2.38-14.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5435.html * https://www.suse.com/security/cve/CVE-2026-6238.html *https://bugzilla.suse.com/show_bug.cgi?id=1263656 * https://bugzilla.suse.com/show_bug.cgi?id=1263658 . SUSE Linux Micro 6.0 receives a moderate security update for glibc addressing important issues.. SUSE Linux Micro glibc vulnerabilities security update. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 08, 2026 moderate SuSE
202

openSUSE Leap 16.0 Advisory ID 2026-21228-1 Glibc Moderate Buffer Overflow

An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed.. openSUSE security update: security update for glibc ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21228-1 Rating: moderate References: * bsc#1263656 * bsc#1263658 Cross-References: * CVE-2026-5435 * CVE-2026-6238 CVSS scores: * CVE-2026-5435 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5435 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-6238 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 2 vulnerabilities and has 2 bug fixes can now be installed. Description: This update for glibc fixes the following issues - CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out-of-bounds write (bsc#1263656). - CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). Patch instructions: To install this openSUSE security update use the suse recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-1157=1 Package List: - openSUSE Leap 16.0: cross-aarch64-glibc-devel-2.40-160000.6.1 cross-ppc64le-glibc-devel-2.40-160000.6.1 cross-riscv64-glibc-devel-2.40-160000.6.1 cross-s390x-glibc-devel-2.40-160000.6.1 glibc-2.40-160000.6.1 glibc-devel-2.40-160000.6.1 glibc-devel-static-2.40-160000.6.1 glibc-extra-2.40-160000.6.1 glibc-gconv-modules-extra-2.40-160000.6.1 glibc-html-2.40-160000.6.1 glibc-i18ndata-2.40-160000.6.1 glibc-info-2.40-160000.6.1 glibc-lang-2.40-160000.6.1 glibc-locale-2.40-160000.6.1 glibc-locale-base-2.40-160000.6.1 glibc-profile-2.40-160000.6.1 glibc-utils-2.40-160000.6.1 References: * https://www.suse.com/security/cve/CVE-2026-5435.html * https://www.suse.com/security/cve/CVE-2026-6238.html . An important update for openSUSE Leap that addresses moderate risks in glibc affecting application stability and memory.. glibc buffer overflow application crash openSUSE security update. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 04, 2026 moderate OpenSUSE
100

SUSE glibc Moderate Buffer Overflow Crash Fix 2026-22453-1

An update that solves two vulnerabilities can now be installed.. # Security update for glibc Announcement ID: SUSE-SU-2026:22453-1 Release Date: 2026-06-30T09:54:13Z Rating: moderate References: * bsc#1263656 * bsc#1263658 Cross-References: * CVE-2026-5435 * CVE-2026-6238 CVSS scores: * CVE-2026-5435 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-5435 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5435 ( NVD ): 7.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-6238 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2026-6238 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Micro 6.1 An update that solves two vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues * CVE-2026-5435: unchecked buffer writing in TSIG handling can lead to an out- of-bounds write (bsc#1263656). * CVE-2026-6238: insufficient RDATA length validation can lead to application crashes or uninitialized memory disclosure (bsc#1263658). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-601=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * glibc-locale-base-2.38-slfo.1.1_9.1 * glibc-devel-2.38-slfo.1.1_9.1 * glibc-2.38-slfo.1.1_9.1 * glibc-debuginfo-2.38-slfo.1.1_9.1 * glibc-debugsource-2.38-slfo.1.1_9.1 * glibc-locale-base-debuginfo-2.38-slfo.1.1_9.1 * glibc-locale-2.38-slfo.1.1_9.1 * glibc-devel-debuginfo-2.38-slfo.1.1_9.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5435.html *https://www.suse.com/security/cve/CVE-2026-6238.html * https://bugzilla.suse.com/show_bug.cgi?id=1263656 * https://bugzilla.suse.com/show_bug.cgi?id=1263658 . Upgrade glibc on SUSE Linux Micro 6.1 to mitigate moderate vulnerabilities affecting system stability and security.. SUSE Linux Micro, glibc update, moderate security issue. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jul 03, 2026 moderate SuSE
197

Debian 11 jq Important Heap Corruption DoS Vulnerabilities DLA-4661-1

It was found that jq, a lightweight and flexible command-line JSON parser, was vulnerable to multiple memory corruption attacks, which could lead to application crashes, denial-of-service conditions, and potentially arbitrary code execution through heap corruption when parsing untrusted input. For Debian 11 bullseye, these problems have been fixed in version. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4661-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Andreas Henriksson July 01, 2026 https://wiki.debian.org/LTS ------------------------------------------------------------------------- Package : jq Version : 1.6-2.1+deb11u3 CVE ID : CVE-2026-43894 CVE-2026-47770 CVE-2026-49839 CVE-2026-54679 Debian Bug : 1136445 It was found that jq, a lightweight and flexible command-line JSON parser, was vulnerable to multiple memory corruption attacks, which could lead to application crashes, denial-of-service conditions, and potentially arbitrary code execution through heap corruption when parsing untrusted input. For Debian 11 bullseye, these problems have been fixed in version 1.6-2.1+deb11u3. We recommend that you upgrade your jq packages. For the detailed security status of jq please refer to its security tracker page at: https://security-tracker.debian.org/tracker/jq Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Multiple security flaws in jq command-line JSON parser lead to application crashes and heap corruption risks. Upgrade recommended.. jq security update, memory corruption, Debian LTS advisory. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jul 01, 2026 Important Debian LTS
100

openSUSE avahi Moderate Security Issue Crash Advisory 2026-2311-1

An update that solves two vulnerabilities can now be installed.. # Security update for avahi Announcement ID: SUSE-SU-2026:2311-1 Release Date: 2026-06-09T11:05:49Z Rating: moderate References: * bsc#1257235 * bsc#1261546 Cross-References: * CVE-2026-24401 * CVE-2026-34933 CVSS scores: * CVE-2026-24401 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-24401 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-34933 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2026-34933 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves two vulnerabilities can now be installed. ## Description: This update for avahi fixes the following issue: * CVE-2026-24401: uncontrolled recursion in `lookup_handle_cname` can crash the `avahi-daemon` (bsc#1257235). * CVE-2026-34933: reachable assertion in `transport_flags_from_domain` can crash the `avahi-daemon` (bsc#1261546). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-2311=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2311=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2311=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2311=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2311=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2311=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * avahi-0.8-150400.7.31.2 * avahi-glib2-debugsource-0.8-150400.7.31.2 * libavahi-glib-devel-0.8-150400.7.31.2 * typelib-1_0-Avahi-0_6-0.8-150400.7.31.2 * avahi-compat-mDNSResponder-devel-0.8-150400.7.31.2 * libavahi-core7-debuginfo-0.8-150400.7.31.2 * libavahi-client3-debuginfo-0.8-150400.7.31.2 * libhowl0-0.8-150400.7.31.2 * python3-avahi-gtk-0.8-150400.7.31.2 * avahi-utils-0.8-150400.7.31.2 * libavahi-libevent1-0.8-150400.7.31.2 * libavahi-gobject-devel-0.8-150400.7.31.2 * libavahi-qt5-1-debuginfo-0.8-150400.7.31.2 * avahi-qt5-debugsource-0.8-150400.7.31.2 * avahi-compat-howl-devel-0.8-150400.7.31.2 * avahi-debugsource-0.8-150400.7.31.2 * libavahi-ui-gtk3-0-debuginfo-0.8-150400.7.31.2 * avahi-autoipd-0.8-150400.7.31.2 * avahi-debuginfo-0.8-150400.7.31.2 * libavahi-common3-0.8-150400.7.31.2 * libavahi-common3-debuginfo-0.8-150400.7.31.2 * libavahi-glib1-debuginfo-0.8-150400.7.31.2 * libhowl0-debuginfo-0.8-150400.7.31.2 * libavahi-ui-gtk3-0-0.8-150400.7.31.2 * libavahi-qt5-devel-0.8-150400.7.31.2 * libdns_sd-0.8-150400.7.31.2 * avahi-utils-gtk-0.8-150400.7.31.2 * libavahi-glib1-0.8-150400.7.31.2 * avahi-utils-gtk-debuginfo-0.8-150400.7.31.2 * libavahi-gobject0-debuginfo-0.8-150400.7.31.2 * avahi-autoipd-debuginfo-0.8-150400.7.31.2 * libavahi-qt5-1-0.8-150400.7.31.2 * libavahi-gobject0-0.8-150400.7.31.2 * libavahi-libevent1-debuginfo-0.8-150400.7.31.2 * python3-avahi-0.8-150400.7.31.2 * libavahi-devel-0.8-150400.7.31.2 * libdns_sd-debuginfo-0.8-150400.7.31.2 * avahi-utils-debuginfo-0.8-150400.7.31.2 * libavahi-client3-0.8-150400.7.31.2 * libavahi-core7-0.8-150400.7.31.2 * openSUSE Leap 15.4 (x86_64) * libavahi-client3-32bit-0.8-150400.7.31.2 * libavahi-client3-32bit-debuginfo-0.8-150400.7.31.2 *libavahi-common3-32bit-0.8-150400.7.31.2 * libdns_sd-32bit-debuginfo-0.8-150400.7.31.2 * avahi-32bit-debuginfo-0.8-150400.7.31.2 * libavahi-glib1-32bit-0.8-150400.7.31.2 * libdns_sd-32bit-0.8-150400.7.31.2 * libavahi-glib1-32bit-debuginfo-0.8-150400.7.31.2 * libavahi-common3-32bit-debuginfo-0.8-150400.7.31.2 * openSUSE Leap 15.4 (noarch) * avahi-lang-0.8-150400.7.31.2 * openSUSE Leap 15.4 (aarch64_ilp32) * avahi-64bit-debuginfo-0.8-150400.7.31.2 * libavahi-client3-64bit-0.8-150400.7.31.2 * libdns_sd-64bit-0.8-150400.7.31.2 * libavahi-glib1-64bit-debuginfo-0.8-150400.7.31.2 * libavahi-client3-64bit-debuginfo-0.8-150400.7.31.2 * libdns_sd-64bit-debuginfo-0.8-150400.7.31.2 * libavahi-common3-64bit-0.8-150400.7.31.2 * libavahi-common3-64bit-debuginfo-0.8-150400.7.31.2 * libavahi-glib1-64bit-0.8-150400.7.31.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * avahi-0.8-150400.7.31.2 * avahi-debugsource-0.8-150400.7.31.2 * libavahi-core7-debuginfo-0.8-150400.7.31.2 * libavahi-client3-debuginfo-0.8-150400.7.31.2 * avahi-debuginfo-0.8-150400.7.31.2 * libavahi-common3-0.8-150400.7.31.2 * libavahi-common3-debuginfo-0.8-150400.7.31.2 * libavahi-client3-0.8-150400.7.31.2 * libavahi-core7-0.8-150400.7.31.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * avahi-0.8-150400.7.31.2 * avahi-debugsource-0.8-150400.7.31.2 * libavahi-core7-debuginfo-0.8-150400.7.31.2 * libavahi-client3-debuginfo-0.8-150400.7.31.2 * avahi-debuginfo-0.8-150400.7.31.2 * libavahi-common3-0.8-150400.7.31.2 * libavahi-common3-debuginfo-0.8-150400.7.31.2 * libavahi-client3-0.8-150400.7.31.2 * libavahi-core7-0.8-150400.7.31.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * avahi-0.8-150400.7.31.2 * avahi-debugsource-0.8-150400.7.31.2 * libavahi-core7-debuginfo-0.8-150400.7.31.2 * libavahi-client3-debuginfo-0.8-150400.7.31.2 *avahi-debuginfo-0.8-150400.7.31.2 * libavahi-common3-0.8-150400.7.31.2 * libavahi-common3-debuginfo-0.8-150400.7.31.2 * libavahi-client3-0.8-150400.7.31.2 * libavahi-core7-0.8-150400.7.31.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * avahi-0.8-150400.7.31.2 * avahi-debugsource-0.8-150400.7.31.2 * libavahi-core7-debuginfo-0.8-150400.7.31.2 * libavahi-client3-debuginfo-0.8-150400.7.31.2 * avahi-debuginfo-0.8-150400.7.31.2 * libavahi-common3-0.8-150400.7.31.2 * libavahi-common3-debuginfo-0.8-150400.7.31.2 * libavahi-client3-0.8-150400.7.31.2 * libavahi-core7-0.8-150400.7.31.2 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * avahi-0.8-150400.7.31.2 * avahi-debugsource-0.8-150400.7.31.2 * libavahi-core7-debuginfo-0.8-150400.7.31.2 * libavahi-client3-debuginfo-0.8-150400.7.31.2 * avahi-debuginfo-0.8-150400.7.31.2 * libavahi-common3-0.8-150400.7.31.2 * libavahi-common3-debuginfo-0.8-150400.7.31.2 * libavahi-client3-0.8-150400.7.31.2 * libavahi-core7-0.8-150400.7.31.2 ## References: * https://www.suse.com/security/cve/CVE-2026-24401.html * https://www.suse.com/security/cve/CVE-2026-34933.html * https://bugzilla.suse.com/show_bug.cgi?id=1257235 * https://bugzilla.suse.com/show_bug.cgi?id=1261546 . Update resolves two issues in avahi impacting openSUSE with moderate risk. Ensure timely patch installation for safety.. openSUSE security, avahi update, moderate risk resolution, application vulnerabilities. . Severity: moderate. LinuxSecurity.com Team

Calendar%202 Jun 09, 2026 moderate SuSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200