Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 14 articles for you...
100
security advisorymoderatearbitrary file overwriteSUSE Linux Micro 6.1 Sed Moderate TOCTOU File Overwrite Risk 2026-21448-1
An update that solves one vulnerability can now be installed.. # Security update for sed Announcement ID: SUSE-SU-2026:21448-1 Release Date: 2026-04-27T17:14:51Z Rating: moderate References: * bsc#1262144 Cross-References: * CVE-2026-5958 CVSS scores: * CVE-2026-5958 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:L/VA:N/SC:H/SI:H/SA:N * CVE-2026-5958 ( SUSE ): 6.9 CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:N * CVE-2026-5958 ( NVD ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for sed fixes the following issue: * CVE-2026-5958: TOCTOU race allows write of user-controlled content to unintended files and can lead to arbitrary file overwrite (bsc#1262144). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-513=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * sed-4.9-slfo.1.1_2.1 * sed-debugsource-4.9-slfo.1.1_2.1 * sed-debuginfo-4.9-slfo.1.1_2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5958.html * https://bugzilla.suse.com/show_bug.cgi?id=1262144 . Update for SUSE Linux Micro addresses a moderate risk from sed vulnerability CVE-2026-5958, enabling potential file overwrite.. SUSE Linux Micro sed CVE-2026-5958 security. . Severity: Important. LinuxSecurity.com Team
May 04, 2026
•Important
SuSE
100
security advisorySuSEprivilege escalationSUSE 2026 20905-1 Busybox Important File Overwrite Risk Fix
An update that solves two vulnerabilities and contains one feature can now be installed.. # Security update for busybox Announcement ID: SUSE-SU-2026:20905-1 Release Date: 2026-03-18T15:29:19Z Rating: important References: * bsc#1258163 * bsc#1258167 * jsc#PED-13039 Cross-References: * CVE-2026-26157 * CVE-2026-26158 CVSS scores: * CVE-2026-26157 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-26157 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26157 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26158 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-26158 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26158 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server - BCI 16.0 An update that solves two vulnerabilities and contains one feature can now be installed. ## Description: This update for busybox fixes the following issues: Changes in busybox: * CVE-2026-26157: Fixed arbitrary file overwrite and potential code execution via incomplete path sanitization. (bsc#1258163) * CVE-2026-26158: Fixed arbitrary file modification and privilege escalation via unvalidated tar archive entries. (bsc#1258167) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server - BCI 16.0 zypper in -t patch SUSE-SLES-16.0-405=1 ## Package List: * SUSE Linux Enterprise Server - BCI 16.0 (aarch64 ppc64le s390x x86_64) * busybox-static-1.37.0-160000.5.1 * busybox-debugsource-1.37.0-160000.5.1 * busybox-static-debuginfo-1.37.0-160000.5.1 * busybox-1.37.0-160000.5.1 * busybox-debuginfo-1.37.0-160000.5.1 * SUSE Linux Enterprise Server - BCI 16.0(aarch64 x86_64) * busybox-warewulf3-debuginfo-1.37.0-160000.5.1 * busybox-warewulf3-1.37.0-160000.5.1 ## References: * https://www.suse.com/security/cve/CVE-2026-26157.html * https://www.suse.com/security/cve/CVE-2026-26158.html * https://bugzilla.suse.com/show_bug.cgi?id=1258163 * https://bugzilla.suse.com/show_bug.cgi?id=1258167 * https://jira.suse.com/browse/PED-13039 . Critical update for Busybox on SUSE; fixes arbitrary file overwrite and privilege escalation vulnerabilities.. SUSE busybox update important security fix privilege escalation. . Severity: Important. LinuxSecurity.com Team
Apr 01, 2026
•Important
SuSE
100
security advisorymoderateSuSESUSE Linux Micro 6.0 Freetype2 Security Update for Various Vulnerabilities
An update that solves nine vulnerabilities and has one fix can now be installed.. # Security update for freetype2 Announcement ID: SUSE-SU-2026:20726-1 Release Date: 2026-03-16T09:25:28Z Rating: moderate References: * bsc#1192869 * bsc#1217580 * bsc#1217584 * bsc#1217585 * bsc#1241661 * bsc#1252148 * bsc#1253245 * bsc#1258163 * bsc#1258167 * bsc#1259118 Cross-References: * CVE-2021-42380 * CVE-2023-42363 * CVE-2023-42364 * CVE-2023-42365 * CVE-2025-46394 * CVE-2025-60876 * CVE-2026-23865 * CVE-2026-26157 * CVE-2026-26158 CVSS scores: * CVE-2021-42380 ( SUSE ): 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-42380 ( NVD ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2021-42380 ( NVD ): 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-42363 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42363 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42364 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2023-42364 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42364 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42364 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42365 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-42365 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-46394 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:N/SI:H/SA:N * CVE-2025-46394 ( SUSE ): 6.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N * CVE-2025-46394 ( NVD ): 3.2 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N * CVE-2025-46394 ( NVD ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N * CVE-2025-60876 ( SUSE ): 8.8 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:L/SC:H/SI:H/SA:N * CVE-2025-60876 ( SUSE ): 8.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N * CVE-2025-60876 ( NVD ): 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N * CVE-2026-23865 ( SUSE ): 4.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-23865 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-23865 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L * CVE-2026-26157 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-26157 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26157 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26158 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-26158 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26158 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 * SUSE Linux Micro 6.1 An update that solves nine vulnerabilities and has one fix can now be installed. ## Security update for freetype2 ### Description: This update for freetype2 fixes the following issue: Update to freetype2 2.14.2: * CVE-2026-23865: Integer overflow in the tt_var_load_item_variation_store function (bsc#1259118). Changelog: * Several changes related to LCD filtering are implemented to achieve better performance and encourage sound practices. * Instead of blanket LCD filtering over the entire bitmap, it is now applied only to non-zero spans using direct rendering. This speeds up the ClearType- like rendering by more than 40% at sizes above 32 ppem. * Setting the filter weights with FT_Face_Properties is no longer supported. The default and light filters are optimized to work with any face. * The legacy libXft LCD filter algorithm is no longer provided. * A bunch of potential security problems have been found (bsc#1259118, CVE-2026-23865). All users should update. * The italic angle in `PS_FontInfo` is now stored as a fixed-point value in degrees for all Type 1 fonts and theirderivatives, consistent with CFF fonts and common practices. The broken underline position and thickness values are fixed for CFF fonts. * The `x` field in the `FT_Span` structure is now unsigned. * Demo program `ftgrid` got an option `-m` to select a start character to display. * Similarly, demo program `ftmulti` got an option `-m` to select a text string for rendering. * Option `-d` in the demo program `ttdebug` is now called `-a`, expecting a comma-separated list of axis values. The user interface is also slightly improved. * The `ftinspect` demo program can now be compiled with Qt6, too. * The auto-hinter got new abilities. It can now better separate diacritic glyphs from base glyphs at small sizes by artificially moving diacritics up (or down) if necessary * Tilde accent glyphs get vertically stretched at small sizes so that they don't degenerate to horizontal lines. * Diacritics directly attached to a base glyph (like the ogonek in character '\u0119') no longer distort the shape of the base glyph * The TrueType instruction interpreter was optimized to produce a 15% gain in the glyph loading speed. * Handling of Variation Fonts is now considerably faster * TrueType and CFF glyph loading speed has been improved by 5-10% on modern 64-bit platforms as a result of better handling of fixed-point multiplication. * The BDF driver now loads fonts 75% faster. ## Security update for busybox ### Description: This update for busybox fixes the following issues: * CVE-2023-42363: use-after-free vulnerability in xasprintf function in xfuncs_printf.c (bsc#1217580). * CVE-2023-42364: use-after-free in the awk.c evaluate function (bsc#1217584). * CVE-2023-42365: use-after-free in the awk.c copyvar function (bsc#1217585). * CVE-2025-46394: files in a TAR archive can have their filenames hidden from a listing if terminal escape sequences are used when naming other files included in the archive (bsc#1241661). * CVE-2025-60876:request line incorrectly neutralized mat lead to header injection (bsc#1253245). * CVE-2026-26157: Arbitrary file overwrite and potential code execution via incomplete path sanitization (bsc#1258163). * CVE-2026-26158: Arbitrary file modification and privilege escalation via unvalidated tar archive entries (bsc#1258167). * CVE-2021-42380: Additional fix for use-after-realloc in awk (bsc#1192869). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-619=1 * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-442=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * busybox-1.36.1-3.1 * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * libfreetype6-2.14.2-slfo.1.1_1.1 * libfreetype6-debuginfo-2.14.2-slfo.1.1_1.1 * freetype2-debugsource-2.14.2-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2021-42380.html * https://www.suse.com/security/cve/CVE-2023-42363.html * https://www.suse.com/security/cve/CVE-2023-42364.html * https://www.suse.com/security/cve/CVE-2023-42365.html * https://www.suse.com/security/cve/CVE-2025-46394.html * https://www.suse.com/security/cve/CVE-2025-60876.html * https://www.suse.com/security/cve/CVE-2026-23865.html * https://www.suse.com/security/cve/CVE-2026-26157.html * https://www.suse.com/security/cve/CVE-2026-26158.html * https://bugzilla.suse.com/show_bug.cgi?id=1192869 * https://bugzilla.suse.com/show_bug.cgi?id=1217580 * https://bugzilla.suse.com/show_bug.cgi?id=1217584 * https://bugzilla.suse.com/show_bug.cgi?id=1217585 * https://bugzilla.suse.com/show_bug.cgi?id=1241661 * https://bugzilla.suse.com/show_bug.cgi?id=1252148 * https://bugzilla.suse.com/show_bug.cgi?id=1253245 * https://bugzilla.suse.com/show_bug.cgi?id=1258163 *https://bugzilla.suse.com/show_bug.cgi?id=1258167 * https://bugzilla.suse.com/show_bug.cgi?id=1259118 . An important SUSE freetype2 update addressing nine issues and crucial fixes. Update your systems for enhanced security.. Linux Security Update, freetype2 vulnerabilities, SUSE Update, Security Patch Instruction. . LinuxSecurity.com Team
Mar 23, 2026
SuSE
100
security advisorySuSEprivilege escalationSUSE 2026-0758-1 Important Busybox Security Issues Fixed
An update that solves two vulnerabilities can now be installed.. # Security update for busybox Announcement ID: SUSE-SU-2026:0758-1 Release Date: 2026-03-03T12:16:21Z Rating: important References: * bsc#1258163 * bsc#1258167 Cross-References: * CVE-2026-26157 * CVE-2026-26158 CVSS scores: * CVE-2026-26157 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-26157 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26157 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26158 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-26158 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-26158 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for busybox fixes the following issues: * CVE-2026-26157: Arbitrary file overwrite and potential code execution via incomplete path sanitization (bsc#1258163). * CVE-2026-26158: Arbitrary file modification and privilege escalation via unvalidated tar archive entries (bsc#1258167). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patchSUSE-2026-758=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2026-758=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-758=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-758=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-758=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-758=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-758=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-758=1 ## Package List: * openSUSE Leap 15.5 (noarch) * busybox-policycoreutils-1.37.0-150500.7.11.1 * busybox-vi-1.37.0-150500.7.11.1 * busybox-psmisc-1.37.0-150500.7.11.1 * busybox-attr-1.37.0-150500.7.11.1 * busybox-telnet-1.37.0-150500.7.11.1 * busybox-cpio-1.37.0-150500.7.11.1 * busybox-dos2unix-1.37.0-150500.7.11.1 * busybox-ed-1.37.0-150500.7.11.1 * busybox-sendmail-1.37.0-150500.7.11.1 * busybox-vlan-1.37.0-150500.7.11.1 * busybox-misc-1.37.0-150500.7.11.1 * busybox-coreutils-1.37.0-150500.7.11.1 * busybox-sed-1.37.0-150500.7.11.1 * busybox-traceroute-1.37.0-150500.7.11.1 * busybox-diffutils-1.37.0-150500.7.11.1 * busybox-unzip-1.37.0-150500.7.11.1 * busybox-bzip2-1.37.0-150500.7.11.1 * busybox-sharutils-1.37.0-150500.7.11.1 * busybox-links-1.37.0-150500.7.11.1 * busybox-syslogd-1.37.0-150500.7.11.1 * busybox-kbd-1.37.0-150500.7.11.1 * busybox-util-linux-1.37.0-150500.7.11.1 * busybox-tftp-1.37.0-150500.7.11.1 * busybox-wget-1.37.0-150500.7.11.1 * busybox-patch-1.37.0-150500.7.11.1 * busybox-tunctl-1.37.0-150500.7.11.1 * busybox-less-1.37.0-150500.7.11.1 * busybox-hexedit-1.37.0-150500.7.11.1 * busybox-time-1.37.0-150500.7.11.1 * busybox-sha3sum-1.37.0-150500.7.11.1 * busybox-net-tools-1.37.0-150500.7.11.1 * busybox-kmod-1.37.0-150500.7.11.1 * busybox-sh-1.37.0-150500.7.11.1 * busybox-ncurses-utils-1.37.0-150500.7.11.1 * busybox-netcat-1.37.0-150500.7.11.1 * busybox-which-1.37.0-150500.7.11.1 * busybox-tar-1.37.0-150500.7.11.1 * busybox-selinux-tools-1.37.0-150500.7.11.1 * busybox-bc-1.37.0-150500.7.11.1 * busybox-gzip-1.37.0-150500.7.11.1 * busybox-iproute2-1.37.0-150500.7.11.1 * busybox-man-1.37.0-150500.7.11.1 * busybox-whois-1.37.0-150500.7.11.1 * busybox-procps-1.37.0-150500.7.11.1 * busybox-adduser-1.37.0-150500.7.11.1 * busybox-udhcpc-1.37.0-150500.7.11.1 * busybox-hostname-1.37.0-150500.7.11.1 * busybox-xz-1.37.0-150500.7.11.1 * busybox-findutils-1.37.0-150500.7.11.1 * busybox-gawk-1.37.0-150500.7.11.1 * busybox-bind-utils-1.37.0-150500.7.11.1 * busybox-grep-1.37.0-150500.7.11.1 * busybox-iputils-1.37.0-150500.7.11.1 * busybox-sysvinit-tools-1.37.0-150500.7.11.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * busybox-debugsource-1.37.0-150500.10.17.1 * busybox-debuginfo-1.37.0-150500.10.17.1 * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 * busybox-static-debuginfo-1.37.0-150500.10.17.1 * busybox-testsuite-1.37.0-150500.10.17.1 * openSUSE Leap 15.5 (aarch64 x86_64 i586) * busybox-warewulf3-1.37.0-150500.10.17.1 * busybox-warewulf3-debuginfo-1.37.0-150500.10.17.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * busybox-testsuite-1.37.0-150500.10.17.1 * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 * openSUSE Leap 15.6 (noarch) * busybox-policycoreutils-1.37.0-150500.7.11.1 * busybox-vi-1.37.0-150500.7.11.1 * busybox-psmisc-1.37.0-150500.7.11.1 * busybox-attr-1.37.0-150500.7.11.1 * busybox-telnet-1.37.0-150500.7.11.1 *busybox-cpio-1.37.0-150500.7.11.1 * busybox-dos2unix-1.37.0-150500.7.11.1 * busybox-ed-1.37.0-150500.7.11.1 * busybox-sendmail-1.37.0-150500.7.11.1 * busybox-vlan-1.37.0-150500.7.11.1 * busybox-misc-1.37.0-150500.7.11.1 * busybox-coreutils-1.37.0-150500.7.11.1 * busybox-sed-1.37.0-150500.7.11.1 * busybox-traceroute-1.37.0-150500.7.11.1 * busybox-diffutils-1.37.0-150500.7.11.1 * busybox-unzip-1.37.0-150500.7.11.1 * busybox-bzip2-1.37.0-150500.7.11.1 * busybox-sharutils-1.37.0-150500.7.11.1 * busybox-links-1.37.0-150500.7.11.1 * busybox-syslogd-1.37.0-150500.7.11.1 * busybox-kbd-1.37.0-150500.7.11.1 * busybox-util-linux-1.37.0-150500.7.11.1 * busybox-tftp-1.37.0-150500.7.11.1 * busybox-wget-1.37.0-150500.7.11.1 * busybox-patch-1.37.0-150500.7.11.1 * busybox-tunctl-1.37.0-150500.7.11.1 * busybox-less-1.37.0-150500.7.11.1 * busybox-hexedit-1.37.0-150500.7.11.1 * busybox-time-1.37.0-150500.7.11.1 * busybox-sha3sum-1.37.0-150500.7.11.1 * busybox-net-tools-1.37.0-150500.7.11.1 * busybox-kmod-1.37.0-150500.7.11.1 * busybox-sh-1.37.0-150500.7.11.1 * busybox-ncurses-utils-1.37.0-150500.7.11.1 * busybox-netcat-1.37.0-150500.7.11.1 * busybox-which-1.37.0-150500.7.11.1 * busybox-tar-1.37.0-150500.7.11.1 * busybox-selinux-tools-1.37.0-150500.7.11.1 * busybox-bc-1.37.0-150500.7.11.1 * busybox-gzip-1.37.0-150500.7.11.1 * busybox-iproute2-1.37.0-150500.7.11.1 * busybox-man-1.37.0-150500.7.11.1 * busybox-whois-1.37.0-150500.7.11.1 * busybox-procps-1.37.0-150500.7.11.1 * busybox-adduser-1.37.0-150500.7.11.1 * busybox-udhcpc-1.37.0-150500.7.11.1 * busybox-hostname-1.37.0-150500.7.11.1 * busybox-xz-1.37.0-150500.7.11.1 * busybox-findutils-1.37.0-150500.7.11.1 * busybox-gawk-1.37.0-150500.7.11.1 * busybox-bind-utils-1.37.0-150500.7.11.1 * busybox-grep-1.37.0-150500.7.11.1 * busybox-iputils-1.37.0-150500.7.11.1 *busybox-sysvinit-tools-1.37.0-150500.7.11.1 * openSUSE Leap 15.6 (aarch64 x86_64) * busybox-warewulf3-1.37.0-150500.10.17.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * busybox-static-1.37.0-150500.10.17.1 * busybox-1.37.0-150500.10.17.1 ## References: * https://www.suse.com/security/cve/CVE-2026-26157.html * https://www.suse.com/security/cve/CVE-2026-26158.html * https://bugzilla.suse.com/show_bug.cgi?id=1258163 * https://bugzilla.suse.com/show_bug.cgi?id=1258167 . This important update addresses two vulnerabilities in busybox, detailing potential risks like file overwrite and privilege escalation.. busybox security patch, SUSE Linux vulnerabilities, Linux software update. . Severity: Important. LinuxSecurity.com Team
Mar 03, 2026
•Important
SuSE
202
security advisoryimportantrsyncopenSUSE 15.5: 2025:0122-2 critical: rsync data leak, file overwrite
An update that solves four vulnerabilities can now be installed.. # Security update for rsync Announcement ID: SUSE-SU-2025:0122-2 Release Date: 2025-01-15T14:55:54Z Rating: important References: * bsc#1234101 * bsc#1234102 * bsc#1234103 * bsc#1234104 Cross-References: * CVE-2024-12085 * CVE-2024-12086 * CVE-2024-12087 * CVE-2024-12088 CVSS scores: * CVE-2024-12085 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-12085 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2024-12085 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-12086 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-12086 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2024-12086 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N * CVE-2024-12087 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-12087 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-12087 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N * CVE-2024-12088 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2024-12088 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N * CVE-2024-12088 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP4 LTSS * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves four vulnerabilities can now be installed. ## Description: This update for rsync fixes the following issues: NOTE: This update was retracted as one of the fixes was broken. A new update will be issued. * CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. (bsc#1234101) * CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. (bsc#1234102) * CVE-2024-12087: arbitrary file overwrite possible on clients when symlink syncing is enabled. (bsc#1234103) * CVE-2024-12088: bypass of the --safe-links flag may allow the placement of unsafe symlinks in a client. (bsc#1234104) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2025-122=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-122=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-122=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2025-122=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-122=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patchSUSE-SLE-Product-SLES_SAP-15-SP4-2025-122=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-122=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-122=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-122=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-122=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2025-122=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2025-122=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-122=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-122=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-122=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-122=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-122=1 ## Package List: * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS (x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 *rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Manager Proxy 4.3 (x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 ## References: * https://www.suse.com/security/cve/CVE-2024-12085.html * https://www.suse.com/security/cve/CVE-2024-12086.html * https://www.suse.com/security/cve/CVE-2024-12087.html * https://www.suse.com/security/cve/CVE-2024-12088.html * https://bugzilla.suse.com/show_bug.cgi?id=1234101 * https://bugzilla.suse.com/show_bug.cgi?id=1234102 * https://bugzilla.suse.com/show_bug.cgi?id=1234103 * https://bugzilla.suse.com/show_bug.cgi?id=1234104 . Important rsync patch for openSUSE tackling various security vulnerabilities. Key installation guidelines provided.. openSUSE Security Update, rsync Security Fix, Data Leak Mitigation, Arbitrary File Overwrite. . Severity: Critical. LinuxSecurity.com Team
Jan 15, 2025
•Critical
OpenSUSE
202
security advisoryimportantrsyncopenSUSE: 2025:0122-1 important: rsync critical security update
An update that solves four vulnerabilities can now be installed.. # Security update for rsync Announcement ID: SUSE-SU-2025:0122-1 Release Date: 2025-01-15T09:09:53Z Rating: important References: * bsc#1234101 * bsc#1234102 * bsc#1234103 * bsc#1234104 Cross-References: * CVE-2024-12085 * CVE-2024-12086 * CVE-2024-12087 * CVE-2024-12088 CVSS scores: * CVE-2024-12085 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-12085 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N * CVE-2024-12085 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-12086 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-12086 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2024-12086 ( NVD ): 6.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N * CVE-2024-12087 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2024-12087 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2024-12087 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N * CVE-2024-12088 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2024-12088 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N * CVE-2024-12088 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP4 LTSS * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves four vulnerabilities can now be installed. ## Description: This update for rsync fixes the following issues: * CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. (bsc#1234101) * CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. (bsc#1234102) * CVE-2024-12087: arbitrary file overwrite possible on clients when symlink syncing is enabled. (bsc#1234103) * CVE-2024-12088: bypass of the --safe-links flag may allow the placement of unsafe symlinks in a client. (bsc#1234104) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2025-122=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-122=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-122=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2025-122=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-122=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-122=1 * SUSE Manager Proxy 4.3 zypper in -tpatch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-122=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-122=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-122=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-122=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2025-122=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2025-122=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-122=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-122=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-122=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-122=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-122=1 ## Package List: * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS (x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4(ppc64le x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Manager Proxy 4.3 (x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 * rsync-debugsource-3.2.3-150400.3.12.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * rsync-3.2.3-150400.3.12.1 * rsync-debuginfo-3.2.3-150400.3.12.1 *rsync-debugsource-3.2.3-150400.3.12.1 ## References: * https://www.suse.com/security/cve/CVE-2024-12085.html * https://www.suse.com/security/cve/CVE-2024-12086.html * https://www.suse.com/security/cve/CVE-2024-12087.html * https://www.suse.com/security/cve/CVE-2024-12088.html * https://bugzilla.suse.com/show_bug.cgi?id=1234101 * https://bugzilla.suse.com/show_bug.cgi?id=1234102 * https://bugzilla.suse.com/show_bug.cgi?id=1234103 * https://bugzilla.suse.com/show_bug.cgi?id=1234104 . Essential security enhancement for rsync on openSUSE tackles vulnerabilities linked to data exposure and the risk of unauthorized overwrites.. rsync security advisory, openSUSE rsync update, arbitrary file overwrite issue. . Severity: Important. LinuxSecurity.com Team
Jan 15, 2025
•Important
OpenSUSE
100
security advisorysoftware updatemoderate severitySUSE 15 SP5: 2024:4302-1 moderate: socat arbitrary file overwrite
* bsc#1225462 Cross-References: * CVE-2024-54661 . # Security update for socat Announcement ID: SUSE-SU-2024:4302-1 Release Date: 2024-12-12T08:51:18Z Rating: moderate References: * bsc#1225462 Cross-References: * CVE-2024-54661 CVSS scores: * CVE-2024-54661 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-54661 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for socat fixes the following issues: * CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory (bsc#1225462) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-4302=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-4302=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-4302=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-4302=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-4302=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-4302=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patchSUSE-SLE-Micro-5.4-2024-4302=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-4302=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-4302=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * socat-extra-1.8.0.0-150400.14.6.1 * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-54661.html *https://bugzilla.suse.com/show_bug.cgi?id=1225462 . A security update emphasizes the resolution of socat vulnerabilities related to unauthorized file overwrites, affecting several versions of SUSE distributions.. SUSE Linux, socat fix, security update, software vulnerabilities, Linux patching. . LinuxSecurity.com Team
Dec 12, 2024
SuSE
202
security advisorymoderateupdateopenSUSE: 2024:4302-1 moderate: socat arbitrary file overwrite
An update that solves one vulnerability can now be installed.. # Security update for socat Announcement ID: SUSE-SU-2024:4302-1 Release Date: 2024-12-12T08:51:18Z Rating: moderate References: * bsc#1225462 Cross-References: * CVE-2024-54661 CVSS scores: * CVE-2024-54661 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2024-54661 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for socat fixes the following issues: * CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory (bsc#1225462) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-4302=1 * openSUSE Leap Micro 5.5 zypper in -t patch openSUSE-Leap-Micro-5.5-2024-4302=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-4302=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-4302=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-4302=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-4302=1 * SUSE Linux Enterprise Micro 5.4 zypperin -t patch SUSE-SLE-Micro-5.4-2024-4302=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-4302=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-4302=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * socat-extra-1.8.0.0-150400.14.6.1 * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * openSUSE Leap Micro 5.5 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * socat-1.8.0.0-150400.14.6.1 * socat-debugsource-1.8.0.0-150400.14.6.1 * socat-debuginfo-1.8.0.0-150400.14.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-54661.html *https://bugzilla.suse.com/show_bug.cgi?id=1225462 . Important patch for socat addresses file overwrite vulnerability on openSUSE installations. Apply the update promptly to protect your systems.. socat Security Update, openSUSE Advisory, arbitrary file overwrite, moderate security patch, SUSE Linux Update. . LinuxSecurity.com Team
Dec 12, 2024
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!