Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 11 articles for you...
202
security advisoryimportantkernelopenSUSE Kernel Vital Security Update for CVE-2026-23191 and CVE-2026-23268
An update that solves two vulnerabilities can now be installed.. # Security update for the Linux Kernel (Live Patch 47 for SUSE Linux Enterprise 15 SP4) Announcement ID: SUSE-SU-2026:1584-1 Release Date: 2026-04-24T06:34:01Z Rating: important References: * bsc#1258396 * bsc#1259859 Cross-References: * CVE-2026-23191 * CVE-2026-23268 CVSS scores: * CVE-2026-23191 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-23191 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H * CVE-2026-23191 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23191 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( SUSE ): 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N * CVE-2026-23268 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2026-23268 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Live Patching 12-SP5 * SUSE Linux Enterprise Live Patching 15-SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 An update that solves two vulnerabilities can now be installed. ## Description: This update for the SUSE Linux Enterprise Kernel 5.14.21-150400.24.187 fixes various security issues The following security issues were fixed: * CVE-2026-23191: ALSA: aloop: Fix racy access at PCM trigger (bsc#1258396). * CVE-2026-23268: apparmor: fix unprivileged local user can do privileged policy management (bsc#1259859). ## Patch Instructions: To install this SUSE update use the SUSErecommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Live Patching 12-SP5 zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2026-1584=1 SUSE-SLE-Live- Patching-12-SP5-2026-1585=1 SUSE-SLE-Live-Patching-12-SP5-2026-1586=1 SUSE-SLE- Live-Patching-12-SP5-2026-1587=1 SUSE-SLE-Live-Patching-12-SP5-2026-1588=1 SUSE- SLE-Live-Patching-12-SP5-2026-1589=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2026-1591=1 * SUSE Linux Enterprise Live Patching 15-SP4 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2026-1591=1 ## Package List: * SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64) * kgraft-patch-4_12_14-122_290-default-5-2.1 * kgraft-patch-4_12_14-122_275-default-7-2.1 * kgraft-patch-4_12_14-122_283-default-5-2.1 * kgraft-patch-4_12_14-122_293-default-4-2.1 * kgraft-patch-4_12_14-122_272-default-9-2.1 * kgraft-patch-4_12_14-122_280-default-5-2.1 * openSUSE Leap 15.4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_187-default-debuginfo-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_187-default-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_47-debugsource-5-150400.2.1 * SUSE Linux Enterprise Live Patching 15-SP4 (ppc64le s390x x86_64) * kernel-livepatch-5_14_21-150400_24_187-default-debuginfo-5-150400.2.1 * kernel-livepatch-5_14_21-150400_24_187-default-5-150400.2.1 * kernel-livepatch-SLE15-SP4_Update_47-debugsource-5-150400.2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-23191.html * https://www.suse.com/security/cve/CVE-2026-23268.html * https://bugzilla.suse.com/show_bug.cgi?id=1258396 * https://bugzilla.suse.com/show_bug.cgi?id=1259859 . Critical update for openSUSE kernel fixes significant security issues and risks; timely installation recommended.. openSUSE kernel security patch, important Linux update, system vulnerabilities fix. . Severity: Important.LinuxSecurity.com Team
Apr 24, 2026
•Important
OpenSUSE
89
security advisoryfedoraimportantFedora 43 rsync 3.4.1 Important Fix for CVE-2025-10158 Buffer Access Issue
Fix for CVE-2025-10158. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-77de001ef5 2026-02-17 00:55:36.783755+00:00 -------------------------------------------------------------------------------- Name : rsync Product : Fedora 43 Version : 3.4.1 Release : 5.fc43 URL : https://rsync.samba.org/ Summary : A program for synchronizing files over a network Description : Rsync uses a reliable algorithm to bring remote and host files into sync very quickly. Rsync is fast because it just sends the differences in the files over the network instead of sending the complete files. Rsync is often used as a very powerful mirroring process or just as a more capable replacement for the rcp command. A technical report which describes the rsync algorithm is included in this package. -------------------------------------------------------------------------------- Update Information: Fix for CVE-2025-10158 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 13 2026 Michal Ruprich - 3.4.1-5 - Fix for CVE-2025-10158 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2415718 - CVE-2025-10158 rsync: Rsync: Out of bounds array access via negative index [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2415718 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-77de001ef5' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Feb 17, 2026
•Important
Fedora
202
security advisorylowcrashopenSUSE: cairo Low NULL Pointer Access Issue 2025:03280-1
An update that solves one vulnerability can now be installed.. # Security update for cairo Announcement ID: SUSE-SU-2025:03280-1 Release Date: 2025-09-19T17:43:22Z Rating: low References: * bsc#1247589 Cross-References: * CVE-2025-50422 CVSS scores: * CVE-2025-50422 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2025-50422 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N * CVE-2025-50422 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 An update that solves one vulnerability can now be installed. ## Description: This update for cairo fixes the following issues: * CVE-2025-50422: NULL pointer access in `active_edges_to_traps()` can lead to crash in Poppler (bsc#1247589). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-3280=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3280=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3280=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3280=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3280=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-3280=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libcairo-script-interpreter2-debuginfo-1.16.0-150400.11.9.1 * libcairo2-debuginfo-1.16.0-150400.11.9.1 * cairo-devel-1.16.0-150400.11.9.1 *cairo-tools-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-debuginfo-1.16.0-150400.11.9.1 * cairo-tools-1.16.0-150400.11.9.1 * libcairo-gobject2-1.16.0-150400.11.9.1 * libcairo2-1.16.0-150400.11.9.1 * cairo-debugsource-1.16.0-150400.11.9.1 * libcairo-script-interpreter2-1.16.0-150400.11.9.1 * openSUSE Leap 15.4 (x86_64) * libcairo-gobject2-32bit-1.16.0-150400.11.9.1 * cairo-devel-32bit-1.16.0-150400.11.9.1 * libcairo-gobject2-32bit-debuginfo-1.16.0-150400.11.9.1 * libcairo-script-interpreter2-32bit-debuginfo-1.16.0-150400.11.9.1 * libcairo2-32bit-debuginfo-1.16.0-150400.11.9.1 * libcairo-script-interpreter2-32bit-1.16.0-150400.11.9.1 * libcairo2-32bit-1.16.0-150400.11.9.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libcairo2-64bit-1.16.0-150400.11.9.1 * libcairo-script-interpreter2-64bit-debuginfo-1.16.0-150400.11.9.1 * libcairo-script-interpreter2-64bit-1.16.0-150400.11.9.1 * libcairo-gobject2-64bit-1.16.0-150400.11.9.1 * libcairo-gobject2-64bit-debuginfo-1.16.0-150400.11.9.1 * libcairo2-64bit-debuginfo-1.16.0-150400.11.9.1 * cairo-devel-64bit-1.16.0-150400.11.9.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * libcairo2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-1.16.0-150400.11.9.1 * libcairo2-1.16.0-150400.11.9.1 * cairo-debugsource-1.16.0-150400.11.9.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * libcairo2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-1.16.0-150400.11.9.1 * libcairo2-1.16.0-150400.11.9.1 * cairo-debugsource-1.16.0-150400.11.9.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * libcairo2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-1.16.0-150400.11.9.1 * libcairo2-1.16.0-150400.11.9.1 *cairo-debugsource-1.16.0-150400.11.9.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * libcairo2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-1.16.0-150400.11.9.1 * libcairo2-1.16.0-150400.11.9.1 * cairo-debugsource-1.16.0-150400.11.9.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * libcairo2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-debuginfo-1.16.0-150400.11.9.1 * libcairo-gobject2-1.16.0-150400.11.9.1 * libcairo2-1.16.0-150400.11.9.1 * cairo-debugsource-1.16.0-150400.11.9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-50422.html * https://bugzilla.suse.com/show_bug.cgi?id=1247589 . This notification outlines a minor patch for cairo that resolves a NULL pointer problem impacting openSUSE.. cairo security patch, openSUSE updates, SUSE vulnerability. . Severity: Low. LinuxSecurity.com Team
Sep 19, 2025
•Low
OpenSUSE
89
security advisoryfedoraimportantFedora 42: darktable 5.2.0 critical: buffer access and input validation
5.2.0 release. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-a2b4be7d9b 2025-07-04 00:49:39.484091+00:00 -------------------------------------------------------------------------------- Name : darktable Product : Fedora 42 Version : 5.2.0 Release : 1.fc42 URL : http://www.darktable.org/ Summary : Utility to organize and develop raw images Description : darktable manages your camera raw files and images in a database, lets you view them through lighttable mode and develop/enhance them in darkroom mode. -------------------------------------------------------------------------------- Update Information: 5.2.0 release -------------------------------------------------------------------------------- ChangeLog: * Sun Jun 22 2025 Germano Massullo - 5.2.0-1 - 5.2.0 release * Mon Apr 28 2025 Germano Massullo - 5.0.1-2 - rebuilt - Updated description -------------------------------------------------------------------------------- References: [ 1 ] Bug #2361345 - CVE-2025-43963 darktable: out-of-buffer access [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361345 [ 2 ] Bug #2361363 - CVE-2025-43964 darktable: Improper Validation of Specified Quantity in Input in LibRaw [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361363 [ 3 ] Bug #2361381 - CVE-2025-43962 darktable: Out-of-Bounds Read in LibRaw's phase_one_correct Function [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361381 [ 4 ] Bug #2361408 - CVE-2025-43961 darktable: Out-of-Bounds Read in Fujifilm 0xf00c Tag Parser in LibRaw [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361408 [ 5 ] Bug #2362561 - undefined symbol error in rawdenoise module while running darktable-cltest https://bugzilla.redhat.com/show_bug.cgi?id=2362561 -------------------------------------------------------------------------------- This update can beinstalled with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-a2b4be7d9b' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Jul 04, 2025
•Critical
Fedora
100
security advisorymoderateSUSESUSE: 2025:01569-1 moderate: libraw multiple buffer access fixes
* bsc#1241584 * bsc#1241585 * bsc#1241642 * bsc#1241643 . # Security update for libraw Announcement ID: SUSE-SU-2025:01569-1 Release Date: 2025-06-06T13:12:50Z Rating: moderate References: * bsc#1241584 * bsc#1241585 * bsc#1241642 * bsc#1241643 Cross-References: * CVE-2025-43961 * CVE-2025-43962 * CVE-2025-43963 * CVE-2025-43964 CVSS scores: * CVE-2025-43961 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-43961 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43961 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43961 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2025-43962 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-43962 ( SUSE ): 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-43962 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2025-43962 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43963 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43963 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2025-43963 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43964 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-43964 ( SUSE ): 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-43964 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43964 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Linux Enterprise Workstation Extension 15 SP7 An update that solves four vulnerabilities can now be installed. ## Description: This update for libraw fixes the following issues: * CVE-2025-43961: Fixed out-of-bounds read in theFujifilm 0xf00c tag parser in metadata/tiff.cpp (bsc#1241643) * CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phase_one_correct function (bsc#1241585) * CVE-2025-43963: Fixed out-of-buffer access during phase_one_correct in decoders/load_mfbacks.cpp (bsc#1241642) * CVE-2025-43964: Fixed tag 0x412 processing in phase_one_correct does not enforce minimum w0 and w1 values (bsc#1241584) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Workstation Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-WE-15-SP7-2025-1569=1 ## Package List: * SUSE Linux Enterprise Workstation Extension 15 SP7 (x86_64) * libraw16-debuginfo-0.18.9-150000.3.30.1 * libraw-debugsource-0.18.9-150000.3.30.1 * libraw-debuginfo-0.18.9-150000.3.30.1 * libraw16-0.18.9-150000.3.30.1 ## References: * https://www.suse.com/security/cve/CVE-2025-43961.html * https://www.suse.com/security/cve/CVE-2025-43962.html * https://www.suse.com/security/cve/CVE-2025-43963.html * https://www.suse.com/security/cve/CVE-2025-43964.html * https://bugzilla.suse.com/show_bug.cgi?id=1241584 * https://bugzilla.suse.com/show_bug.cgi?id=1241585 * https://bugzilla.suse.com/show_bug.cgi?id=1241642 * https://bugzilla.suse.com/show_bug.cgi?id=1241643 . This Debian security notice highlights significant patches for imagemagick concerning various critical vulnerabilities.. SUSE Security Update, libraw Out-of-Bounds, Linux Patch Instructions. . LinuxSecurity.com Team
Jun 06, 2025
SuSE
202
security advisorymoderateout-of-boundsopenSUSE Security Update: Moderate Vulnerability in libraw 2025:1568-1
An update that solves four vulnerabilities can now be installed.. # Security update for libraw Announcement ID: SUSE-SU-2025:1568-1 Release Date: 2025-05-16T13:42:53Z Rating: moderate References: * bsc#1241584 * bsc#1241585 * bsc#1241642 * bsc#1241643 Cross-References: * CVE-2025-43961 * CVE-2025-43962 * CVE-2025-43963 * CVE-2025-43964 CVSS scores: * CVE-2025-43961 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-43961 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43961 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43961 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2025-43962 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-43962 ( SUSE ): 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-43962 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2025-43962 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43963 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43963 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H * CVE-2025-43963 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43964 ( SUSE ): 2.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-43964 ( SUSE ): 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2025-43964 ( NVD ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-43964 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.4 An update that solves four vulnerabilities can now be installed. ## Description: This update for libraw fixes the following issues: * CVE-2025-43961: Fixed out-of-bounds read in the Fujifilm 0xf00c tag parser in metadata/tiff.cpp (bsc#1241643) * CVE-2025-43962: Fixed out-of-bounds read when tag 0x412 processing in phase_one_correct function(bsc#1241585) * CVE-2025-43963: Fixed out-of-buffer access during phase_one_correct in decoders/load_mfbacks.cpp (bsc#1241642) * CVE-2025-43964: Fixed tag 0x412 processing in phase_one_correct does not enforce minimum w0 and w1 values (bsc#1241584) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-1568=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * libraw-tools-0.20.2-150400.3.16.1 * libraw-devel-static-0.20.2-150400.3.16.1 * libraw20-0.20.2-150400.3.16.1 * libraw-debugsource-0.20.2-150400.3.16.1 * libraw-tools-debuginfo-0.20.2-150400.3.16.1 * libraw-devel-0.20.2-150400.3.16.1 * libraw20-debuginfo-0.20.2-150400.3.16.1 * openSUSE Leap 15.4 (x86_64) * libraw20-32bit-debuginfo-0.20.2-150400.3.16.1 * libraw20-32bit-0.20.2-150400.3.16.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libraw20-64bit-debuginfo-0.20.2-150400.3.16.1 * libraw20-64bit-0.20.2-150400.3.16.1 ## References: * https://www.suse.com/security/cve/CVE-2025-43961.html * https://www.suse.com/security/cve/CVE-2025-43962.html * https://www.suse.com/security/cve/CVE-2025-43963.html * https://www.suse.com/security/cve/CVE-2025-43964.html * https://bugzilla.suse.com/show_bug.cgi?id=1241584 * https://bugzilla.suse.com/show_bug.cgi?id=1241585 * https://bugzilla.suse.com/show_bug.cgi?id=1241642 * https://bugzilla.suse.com/show_bug.cgi?id=1241643 . A patch for libjpeg resolves significant vulnerabilities in Fedora, offering guidance to enhance protection.. openSUSE Security Update, libraw issues, security advisory, buffer overflow fixes. . LinuxSecurity.com Team
May 16, 2025
OpenSUSE
89
security advisoryupdateFedoraFedora 41: 2025-e7dea91428 moderate: mingw-LibRaw buffer access
Update to LibRaw 0.21.4.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-e7dea91428 2025-04-30 01:36:38.945390+00:00 -------------------------------------------------------------------------------- Name : mingw-LibRaw Product : Fedora 41 Version : 0.21.4 Release : 1.fc41 URL : http://www.libraw.org Summary : Library for reading RAW files obtained from digital photo cameras Description : MinGW Windows LibRaw library. -------------------------------------------------------------------------------- Update Information: Update to LibRaw 0.21.4. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 16 2025 Sandro Mani - 0.21.4-1 - Update to 0.21.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2361338 - CVE-2025-43963 mingw-LibRaw: out-of-buffer access [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361338 [ 2 ] Bug #2361343 - CVE-2025-43963 mingw-LibRaw: out-of-buffer access [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2361343 [ 3 ] Bug #2361348 - CVE-2025-43963 mingw-LibRaw: out-of-buffer access [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361348 [ 4 ] Bug #2361356 - CVE-2025-43964 mingw-LibRaw: Improper Validation of Specified Quantity in Input in LibRaw [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361356 [ 5 ] Bug #2361361 - CVE-2025-43964 mingw-LibRaw: Improper Validation of Specified Quantity in Input in LibRaw [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2361361 [ 6 ] Bug #2361366 - CVE-2025-43964 mingw-LibRaw: Improper Validation of Specified Quantity in Input in LibRaw [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361366 [ 7 ] Bug #2361374 - CVE-2025-43962 mingw-LibRaw: Out-of-Bounds Read in LibRaw's phase_one_correct Function[fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361374 [ 8 ] Bug #2361379 - CVE-2025-43962 mingw-LibRaw: Out-of-Bounds Read in LibRaw's phase_one_correct Function [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2361379 [ 9 ] Bug #2361384 - CVE-2025-43962 mingw-LibRaw: Out-of-Bounds Read in LibRaw's phase_one_correct Function [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361384 [ 10 ] Bug #2361401 - CVE-2025-43961 mingw-LibRaw: Out-of-Bounds Read in Fujifilm 0xf00c Tag Parser in LibRaw [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2361401 [ 11 ] Bug #2361406 - CVE-2025-43961 mingw-LibRaw: Out-of-Bounds Read in Fujifilm 0xf00c Tag Parser in LibRaw [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2361406 [ 12 ] Bug #2361411 - CVE-2025-43961 mingw-LibRaw: Out-of-Bounds Read in Fujifilm 0xf00c Tag Parser in LibRaw [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2361411 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-e7dea91428' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Apr 30, 2025
•Important
Fedora
202
security advisorynull pointerproftpdopenSUSE: 2025:1028-1 important: proftpd Advisory Security Update
An update that solves two vulnerabilities can now be installed.. # Security update for proftpd Announcement ID: SUSE-SU-2025:1028-1 Release Date: 2025-03-26T12:50:12Z Rating: important References: * bsc#1238141 * bsc#1238143 Cross-References: * CVE-2024-48651 * CVE-2024-57392 CVSS scores: * CVE-2024-48651 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2024-48651 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-48651 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2024-57392 ( SUSE ): 5.7 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2024-57392 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-57392 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.6 * Server Applications Module 15-SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for proftpd fixes the following issues: * CVE-2024-57392: Fixed null pointer dereference vulnerability by sending a maliciously crafted message (bsc#1238143). * CVE-2024-48651: Fixed supplemental group inheritance granting unintended access to GID 0 (bsc#1238141). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-1028=1 openSUSE-SLE-15.6-2025-1028=1 * Server Applications Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-1028=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * proftpd-sqlite-1.3.8b-150600.13.6.1 * proftpd-devel-1.3.8b-150600.13.6.1 *proftpd-radius-debuginfo-1.3.8b-150600.13.6.1 * proftpd-doc-1.3.8b-150600.13.6.1 * proftpd-sqlite-debuginfo-1.3.8b-150600.13.6.1 * proftpd-pgsql-debuginfo-1.3.8b-150600.13.6.1 * proftpd-pgsql-1.3.8b-150600.13.6.1 * proftpd-debugsource-1.3.8b-150600.13.6.1 * proftpd-ldap-debuginfo-1.3.8b-150600.13.6.1 * proftpd-mysql-1.3.8b-150600.13.6.1 * proftpd-mysql-debuginfo-1.3.8b-150600.13.6.1 * proftpd-ldap-1.3.8b-150600.13.6.1 * proftpd-1.3.8b-150600.13.6.1 * proftpd-radius-1.3.8b-150600.13.6.1 * proftpd-debuginfo-1.3.8b-150600.13.6.1 * openSUSE Leap 15.6 (noarch) * proftpd-lang-1.3.8b-150600.13.6.1 * Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64) * proftpd-sqlite-1.3.8b-150600.13.6.1 * proftpd-devel-1.3.8b-150600.13.6.1 * proftpd-radius-debuginfo-1.3.8b-150600.13.6.1 * proftpd-doc-1.3.8b-150600.13.6.1 * proftpd-sqlite-debuginfo-1.3.8b-150600.13.6.1 * proftpd-pgsql-debuginfo-1.3.8b-150600.13.6.1 * proftpd-pgsql-1.3.8b-150600.13.6.1 * proftpd-debugsource-1.3.8b-150600.13.6.1 * proftpd-ldap-debuginfo-1.3.8b-150600.13.6.1 * proftpd-mysql-1.3.8b-150600.13.6.1 * proftpd-mysql-debuginfo-1.3.8b-150600.13.6.1 * proftpd-ldap-1.3.8b-150600.13.6.1 * proftpd-1.3.8b-150600.13.6.1 * proftpd-radius-1.3.8b-150600.13.6.1 * proftpd-debuginfo-1.3.8b-150600.13.6.1 * Server Applications Module 15-SP6 (noarch) * proftpd-lang-1.3.8b-150600.13.6.1 ## References: * https://www.suse.com/security/cve/CVE-2024-48651.html * https://www.suse.com/security/cve/CVE-2024-57392.html * https://bugzilla.suse.com/show_bug.cgi?id=1238141 * https://bugzilla.suse.com/show_bug.cgi?id=1238143 . ProFTPD receives an important security update fixing two critical issues in openSUSE Leap 15.6. Protect your systems now!. update, solves, vulnerabilities, installed, security, proftpd, announ. . Severity: Important. LinuxSecurity.com Team
Mar 26, 2025
•Important
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!