Stay Vigilant with Timely Linux Security Advisories

security advisorymoderatelocal attack

SUSE: 2025:02675-1 systemd Moderate Local Attack CVE-2025-4598

* bsc#1243935 Cross-References: * CVE-2025-4598 . # Security update for systemd Announcement ID: SUSE-SU-2025:02675-1 Release Date: 2025-08-04T14:00:15Z Rating: moderate References: * bsc#1243935 Cross-References: * CVE-2025-4598 CVSS scores: * CVE-2025-4598 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-4598 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for systemd fixes the following issues: * CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump (bsc#1243935). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patchSUSE-SLE-Product-HPC-15-SP4-LTSS-2025-2675=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-2675=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-2675=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-2675=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-2675=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-2675=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-2675=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2675=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-2675=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2675=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-2675=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2675=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2675=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2675=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2675=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-2675=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-2675=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 *systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux EnterpriseHigh Performance Computing ESPOS 15 SP5 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 *libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4(ppc64le x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) *systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Manager Proxy 4.3 (x86_64) * systemd-debuginfo-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * systemd-32bit-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * SUSE Manager Proxy 4.3 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Manager Retail Branch Server 4.3 (x86_64) * systemd-debuginfo-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 *libsystemd0-32bit-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * systemd-32bit-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * SUSE Manager Retail Branch Server 4.3 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Manager Server 4.3 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Manager Server 4.3 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * systemd-testsuite-debuginfo-249.17-150400.8.49.2 * nss-myhostname-249.17-150400.8.49.2 * systemd-mini-devel-249.17-150400.8.49.1 * systemd-debuginfo-249.17-150400.8.49.2 * systemd-testsuite-249.17-150400.8.49.2 *libudev1-debuginfo-249.17-150400.8.49.2 * systemd-experimental-249.17-150400.8.49.2 * systemd-mini-doc-249.17-150400.8.49.1 * systemd-mini-debugsource-249.17-150400.8.49.1 * udev-mini-249.17-150400.8.49.1 * udev-249.17-150400.8.49.2 * systemd-portable-249.17-150400.8.49.2 * libudev-mini1-249.17-150400.8.49.1 * systemd-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * libudev-mini1-debuginfo-249.17-150400.8.49.1 * systemd-doc-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * nss-systemd-249.17-150400.8.49.2 * systemd-network-249.17-150400.8.49.2 * systemd-mini-container-debuginfo-249.17-150400.8.49.1 * systemd-portable-debuginfo-249.17-150400.8.49.2 * systemd-mini-debuginfo-249.17-150400.8.49.1 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * libsystemd0-mini-debuginfo-249.17-150400.8.49.1 * systemd-coredump-249.17-150400.8.49.2 * systemd-mini-container-249.17-150400.8.49.1 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * nss-myhostname-debuginfo-249.17-150400.8.49.2 * systemd-mini-249.17-150400.8.49.1 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * systemd-mini-sysvinit-249.17-150400.8.49.1 * udev-mini-debuginfo-249.17-150400.8.49.1 * nss-systemd-debuginfo-249.17-150400.8.49.2 * systemd-network-debuginfo-249.17-150400.8.49.2 * systemd-experimental-debuginfo-249.17-150400.8.49.2 * libsystemd0-mini-249.17-150400.8.49.1 * openSUSE Leap 15.4 (x86_64) * nss-myhostname-32bit-debuginfo-249.17-150400.8.49.2 * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 *libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * nss-myhostname-32bit-249.17-150400.8.49.2 * openSUSE Leap 15.4 (noarch) * systemd-lang-249.17-150400.8.49.2 * openSUSE Leap 15.4 (aarch64_ilp32) * libsystemd0-64bit-debuginfo-249.17-150400.8.49.2 * libudev1-64bit-debuginfo-249.17-150400.8.49.2 * nss-myhostname-64bit-249.17-150400.8.49.2 * systemd-64bit-debuginfo-249.17-150400.8.49.2 * nss-myhostname-64bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-64bit-249.17-150400.8.49.2 * systemd-64bit-249.17-150400.8.49.2 * libudev1-64bit-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 *udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 *udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 ## References: * https://www.suse.com/security/cve/CVE-2025-4598.html * https://bugzilla.suse.com/show_bug.cgi?id=1243935 . A new patch for systemd resolves CVE-2025-4598, correcting a timing flaw that permitted unauthorized users to disrupt software functionality.. openSUSE, systemd, CVE-2025-4598, security update, race condition. . LinuxSecurity.com Team

Aug 04, 2025 SuSE

security advisorymoderatelocal attack

openSUSE: systemd Moderate Local Attack Advisory 2025:02675-1

An update that solves one vulnerability can now be installed.. # Security update for systemd Announcement ID: SUSE-SU-2025:02675-1 Release Date: 2025-08-04T14:00:15Z Rating: moderate References: * bsc#1243935 Cross-References: * CVE-2025-4598 CVSS scores: * CVE-2025-4598 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-4598 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for systemd fixes the following issues: * CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump (bsc#1243935). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in-t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-2675=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-2675=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-2675=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-2675=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-2675=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-2675=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-2675=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2675=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-2675=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2675=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-2675=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2675=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2675=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2675=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2675=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-2675=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-2675=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 *systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux EnterpriseHigh Performance Computing ESPOS 15 SP5 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 *libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4(ppc64le x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) *systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * SUSE Manager Proxy 4.3 (x86_64) * systemd-debuginfo-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * systemd-32bit-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * SUSE Manager Proxy 4.3 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Manager Retail Branch Server 4.3 (x86_64) * systemd-debuginfo-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 *libsystemd0-32bit-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * systemd-32bit-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * SUSE Manager Retail Branch Server 4.3 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Manager Server 4.3 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Manager Server 4.3 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * systemd-testsuite-debuginfo-249.17-150400.8.49.2 * nss-myhostname-249.17-150400.8.49.2 * systemd-mini-devel-249.17-150400.8.49.1 * systemd-debuginfo-249.17-150400.8.49.2 * systemd-testsuite-249.17-150400.8.49.2 *libudev1-debuginfo-249.17-150400.8.49.2 * systemd-experimental-249.17-150400.8.49.2 * systemd-mini-doc-249.17-150400.8.49.1 * systemd-mini-debugsource-249.17-150400.8.49.1 * udev-mini-249.17-150400.8.49.1 * udev-249.17-150400.8.49.2 * systemd-portable-249.17-150400.8.49.2 * libudev-mini1-249.17-150400.8.49.1 * systemd-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * libudev-mini1-debuginfo-249.17-150400.8.49.1 * systemd-doc-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * nss-systemd-249.17-150400.8.49.2 * systemd-network-249.17-150400.8.49.2 * systemd-mini-container-debuginfo-249.17-150400.8.49.1 * systemd-portable-debuginfo-249.17-150400.8.49.2 * systemd-mini-debuginfo-249.17-150400.8.49.1 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * libsystemd0-mini-debuginfo-249.17-150400.8.49.1 * systemd-coredump-249.17-150400.8.49.2 * systemd-mini-container-249.17-150400.8.49.1 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * nss-myhostname-debuginfo-249.17-150400.8.49.2 * systemd-mini-249.17-150400.8.49.1 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * systemd-mini-sysvinit-249.17-150400.8.49.1 * udev-mini-debuginfo-249.17-150400.8.49.1 * nss-systemd-debuginfo-249.17-150400.8.49.2 * systemd-network-debuginfo-249.17-150400.8.49.2 * systemd-experimental-debuginfo-249.17-150400.8.49.2 * libsystemd0-mini-249.17-150400.8.49.1 * openSUSE Leap 15.4 (x86_64) * nss-myhostname-32bit-debuginfo-249.17-150400.8.49.2 * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 *libudev1-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 * nss-myhostname-32bit-249.17-150400.8.49.2 * openSUSE Leap 15.4 (noarch) * systemd-lang-249.17-150400.8.49.2 * openSUSE Leap 15.4 (aarch64_ilp32) * libsystemd0-64bit-debuginfo-249.17-150400.8.49.2 * libudev1-64bit-debuginfo-249.17-150400.8.49.2 * nss-myhostname-64bit-249.17-150400.8.49.2 * systemd-64bit-debuginfo-249.17-150400.8.49.2 * nss-myhostname-64bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-64bit-249.17-150400.8.49.2 * systemd-64bit-249.17-150400.8.49.2 * libudev1-64bit-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 *udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * systemd-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-journal-remote-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * systemd-journal-remote-debuginfo-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 *udev-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * systemd-249.17-150400.8.49.2 * systemd-coredump-debuginfo-249.17-150400.8.49.2 * systemd-debuginfo-249.17-150400.8.49.2 * libsystemd0-249.17-150400.8.49.2 * systemd-container-249.17-150400.8.49.2 * libudev1-debuginfo-249.17-150400.8.49.2 * systemd-doc-249.17-150400.8.49.2 * libudev1-249.17-150400.8.49.2 * libsystemd0-debuginfo-249.17-150400.8.49.2 * systemd-debugsource-249.17-150400.8.49.2 * systemd-sysvinit-249.17-150400.8.49.2 * udev-249.17-150400.8.49.2 * systemd-coredump-249.17-150400.8.49.2 * systemd-container-debuginfo-249.17-150400.8.49.2 * systemd-devel-249.17-150400.8.49.2 * udev-debuginfo-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * systemd-lang-249.17-150400.8.49.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * systemd-32bit-249.17-150400.8.49.2 * libsystemd0-32bit-debuginfo-249.17-150400.8.49.2 * libsystemd0-32bit-249.17-150400.8.49.2 * systemd-32bit-debuginfo-249.17-150400.8.49.2 * libudev1-32bit-249.17-150400.8.49.2 * libudev1-32bit-debuginfo-249.17-150400.8.49.2 ## References: * https://www.suse.com/security/cve/CVE-2025-4598.html * https://bugzilla.suse.com/show_bug.cgi?id=1243935 . The latest patch for openSUSE resolves a notable vulnerability in systemd, mitigating risks associated with local hijacking attempts and the exploitation of memory dumps.. openSUSE systemd patch localattack core dump security. . LinuxSecurity.com Team

Aug 04, 2025 OpenSUSE

security advisorymoderateSuSE

SUSE: 2025:02245-2 high: gnome-shell UI rendering vulnerability

* bsc#1242827 * bsc#1243935 Cross-References: * CVE-2025-4598 . # Security update for systemd Announcement ID: SUSE-SU-2025:02244-1 Release Date: 2025-07-08T08:44:27Z Rating: moderate References: * bsc#1242827 * bsc#1243935 Cross-References: * CVE-2025-4598 CVSS scores: * CVE-2025-4598 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-4598 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Package Hub 15 15-SP6 * SUSE Package Hub 15 15-SP7 An update that solves one vulnerability and has one security fix can now be installed. ## Description: This update for systemd fixes the following issues: * CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump (bsc#1243935). Other bugfixes: * logs-show: get timestamp and boot ID only when necessary (bsc#1242827). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-2244=1 openSUSE-SLE-15.6-2025-2244=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2244=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2244=1 * SUSE Package Hub 15 15-SP6 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-2244=1 * SUSE PackageHub 15 15-SP7 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-2244=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * systemd-254.25-150600.4.40.1 * systemd-coredump-254.25-150600.4.40.1 * systemd-portable-254.25-150600.4.40.1 * libudev1-debuginfo-254.25-150600.4.40.1 * libsystemd0-mini-debuginfo-254.25-150600.4.40.1 * systemd-journal-remote-debuginfo-254.25-150600.4.40.1 * systemd-sysvcompat-debuginfo-254.25-150600.4.40.1 * systemd-mini-container-debuginfo-254.25-150600.4.40.1 * systemd-doc-254.25-150600.4.40.1 * systemd-coredump-debuginfo-254.25-150600.4.40.1 * libsystemd0-mini-254.25-150600.4.40.1 * systemd-experimental-254.25-150600.4.40.1 * systemd-mini-debuginfo-254.25-150600.4.40.1 * udev-mini-254.25-150600.4.40.1 * systemd-mini-debugsource-254.25-150600.4.40.1 * udev-254.25-150600.4.40.1 * libsystemd0-254.25-150600.4.40.1 * systemd-debuginfo-254.25-150600.4.40.1 * systemd-homed-debuginfo-254.25-150600.4.40.1 * libudev-mini1-debuginfo-254.25-150600.4.40.1 * systemd-portable-debuginfo-254.25-150600.4.40.1 * systemd-debugsource-254.25-150600.4.40.1 * systemd-container-debuginfo-254.25-150600.4.40.1 * udev-mini-debuginfo-254.25-150600.4.40.1 * systemd-journal-remote-254.25-150600.4.40.1 * systemd-network-debuginfo-254.25-150600.4.40.1 * udev-debuginfo-254.25-150600.4.40.1 * systemd-mini-container-254.25-150600.4.40.1 * systemd-network-254.25-150600.4.40.1 * systemd-sysvcompat-254.25-150600.4.40.1 * systemd-experimental-debuginfo-254.25-150600.4.40.1 * systemd-mini-devel-254.25-150600.4.40.1 * systemd-mini-254.25-150600.4.40.1 * systemd-container-254.25-150600.4.40.1 * systemd-homed-254.25-150600.4.40.1 * systemd-devel-254.25-150600.4.40.1 * systemd-testsuite-254.25-150600.4.40.1 * systemd-testsuite-debuginfo-254.25-150600.4.40.1 * libudev-mini1-254.25-150600.4.40.1 *libudev1-254.25-150600.4.40.1 * libsystemd0-debuginfo-254.25-150600.4.40.1 * openSUSE Leap 15.6 (x86_64) * libsystemd0-32bit-debuginfo-254.25-150600.4.40.1 * libudev1-32bit-debuginfo-254.25-150600.4.40.1 * systemd-devel-32bit-254.25-150600.4.40.1 * systemd-32bit-254.25-150600.4.40.1 * libsystemd0-32bit-254.25-150600.4.40.1 * systemd-32bit-debuginfo-254.25-150600.4.40.1 * libudev1-32bit-254.25-150600.4.40.1 * openSUSE Leap 15.6 (aarch64 x86_64 i586) * systemd-boot-debuginfo-254.25-150600.4.40.1 * systemd-boot-254.25-150600.4.40.1 * openSUSE Leap 15.6 (noarch) * systemd-lang-254.25-150600.4.40.1 * openSUSE Leap 15.6 (aarch64_ilp32) * systemd-64bit-debuginfo-254.25-150600.4.40.1 * libudev1-64bit-debuginfo-254.25-150600.4.40.1 * systemd-devel-64bit-254.25-150600.4.40.1 * libsystemd0-64bit-debuginfo-254.25-150600.4.40.1 * libudev1-64bit-254.25-150600.4.40.1 * libsystemd0-64bit-254.25-150600.4.40.1 * systemd-64bit-254.25-150600.4.40.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * systemd-doc-254.25-150600.4.40.1 * systemd-254.25-150600.4.40.1 * systemd-coredump-debuginfo-254.25-150600.4.40.1 * systemd-debugsource-254.25-150600.4.40.1 * udev-debuginfo-254.25-150600.4.40.1 * systemd-sysvcompat-254.25-150600.4.40.1 * systemd-container-debuginfo-254.25-150600.4.40.1 * systemd-coredump-254.25-150600.4.40.1 * systemd-container-254.25-150600.4.40.1 * libsystemd0-debuginfo-254.25-150600.4.40.1 * libudev1-debuginfo-254.25-150600.4.40.1 * systemd-devel-254.25-150600.4.40.1 * systemd-journal-remote-254.25-150600.4.40.1 * udev-254.25-150600.4.40.1 * libudev1-254.25-150600.4.40.1 * libsystemd0-254.25-150600.4.40.1 * systemd-debuginfo-254.25-150600.4.40.1 * systemd-sysvcompat-debuginfo-254.25-150600.4.40.1 * Basesystem Module 15-SP6 (noarch) * systemd-lang-254.25-150600.4.40.1 * Basesystem Module 15-SP6 (x86_64) *libsystemd0-32bit-debuginfo-254.25-150600.4.40.1 * libudev1-32bit-debuginfo-254.25-150600.4.40.1 * systemd-32bit-254.25-150600.4.40.1 * libsystemd0-32bit-254.25-150600.4.40.1 * systemd-32bit-debuginfo-254.25-150600.4.40.1 * libudev1-32bit-254.25-150600.4.40.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * systemd-doc-254.25-150600.4.40.1 * systemd-254.25-150600.4.40.1 * systemd-coredump-debuginfo-254.25-150600.4.40.1 * systemd-debugsource-254.25-150600.4.40.1 * udev-debuginfo-254.25-150600.4.40.1 * systemd-sysvcompat-254.25-150600.4.40.1 * systemd-container-debuginfo-254.25-150600.4.40.1 * systemd-coredump-254.25-150600.4.40.1 * systemd-container-254.25-150600.4.40.1 * libsystemd0-debuginfo-254.25-150600.4.40.1 * libudev1-debuginfo-254.25-150600.4.40.1 * systemd-devel-254.25-150600.4.40.1 * systemd-journal-remote-254.25-150600.4.40.1 * systemd-journal-remote-debuginfo-254.25-150600.4.40.1 * udev-254.25-150600.4.40.1 * libudev1-254.25-150600.4.40.1 * libsystemd0-254.25-150600.4.40.1 * systemd-debuginfo-254.25-150600.4.40.1 * systemd-sysvcompat-debuginfo-254.25-150600.4.40.1 * Basesystem Module 15-SP7 (noarch) * systemd-lang-254.25-150600.4.40.1 * Basesystem Module 15-SP7 (x86_64) * libsystemd0-32bit-debuginfo-254.25-150600.4.40.1 * libudev1-32bit-debuginfo-254.25-150600.4.40.1 * systemd-32bit-254.25-150600.4.40.1 * libsystemd0-32bit-254.25-150600.4.40.1 * systemd-32bit-debuginfo-254.25-150600.4.40.1 * libudev1-32bit-254.25-150600.4.40.1 * SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64) * systemd-debugsource-254.25-150600.4.40.1 * systemd-debuginfo-254.25-150600.4.40.1 * systemd-network-debuginfo-254.25-150600.4.40.1 * systemd-network-254.25-150600.4.40.1 * SUSE Package Hub 15 15-SP7 (aarch64 ppc64le s390x x86_64) * systemd-debugsource-254.25-150600.4.40.1 * systemd-debuginfo-254.25-150600.4.40.1 *systemd-network-debuginfo-254.25-150600.4.40.1 * systemd-network-254.25-150600.4.40.1 ## References: * https://www.suse.com/security/cve/CVE-2025-4598.html * https://bugzilla.suse.com/show_bug.cgi?id=1242827 * https://bugzilla.suse.com/show_bug.cgi?id=1243935 . An important patch from SUSE addresses a serious vulnerability in systemd, fixing a race condition that could potentially allow local users to gain access to core dumps.. SUSE systemd patch, systemd security fix, race condition issue. . LinuxSecurity.com Team

Jul 08, 2025 SuSE

security advisoryrace conditionlocal attack

Mageia 9: MGASA-2025-0178 critical: systemd-coredump race condition

Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump. (CVE-2025-4598) References: . MGASA-2025-0178 - Updated systemd packages fix security vulnerability Publication date: 08 Jun 2025 URL: https://advisories.mageia.org/MGASA-2025-0178.html Type: security Affected Mageia releases: 9 CVE: CVE-2025-4598 Systemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dump. (CVE-2025-4598) References: - https://bugs.mageia.org/show_bug.cgi?id=34331 - https://openwall.com/lists/oss-security/2025/05/29/3 - https://lists.debian.org/debian-security-announce/2025/msg00095.html - https://www.cve.org/CVERecord?id=CVE-2025-4598 SRPMS: - 9/core/systemd-253.33-1.mga9 . A security notice for Mageia points out a timing vulnerability in systemd which could enable a local adversary to exploit core dump files.. systemd security flaw, Mageia advisory, race condition exploit, core dump access, local attack vulnerability. . Severity: Critical. LinuxSecurity.com Team

Jun 08, 2025 •Critical Mageia

security advisoryupdateSUSE

SUSE: 2023:3678-1 Critical: Logrotate Error Logging Improvement

An update that contains security fixes can now be installed. . SUSE Security Update: Security update for logrotate ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:2547-1 Rating: important References: #1192449 #1200278 #1200802 Affected Products: SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Enterprise Storage 7 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP 15 SUSE Linux Enterprise Server for SAP 15-SP1 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSEManager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2 openSUSE Leap 15.3 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for logrotate fixes the following issues: Security issues fixed: - Improved coredump handing for SUID binaries (bsc#1192449). Non-security issues fixed: - Fixed "logrotate emits unintended warning: keyword size not properly separated, found 0x3d" (bsc#1200278, bsc#1200802). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-2547=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-2547=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-2547=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-2547=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-2547=1 - SUSE Linux Enterprise Server for SAP 15-SP1: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2022-2547=1 - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2022-2547=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-2547=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-2547=1 - SUSE Linux Enterprise Server 15-SP1-LTSS: zypper in -t patchSUSE-SLE-Product-SLES-15-SP1-LTSS-2022-2547=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2022-2547=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2022-2547=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-2547=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-2547=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-2547=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-2547=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-2547=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-2547=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-2547=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-2547=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-2547=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-2547=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2022-2547=1 - SUSE CaaS Platform 4.0: To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE ManagerServer 4.1 (ppc64le s390x x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Manager Retail Branch Server 4.1 (x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Manager Proxy 4.1 (x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Enterprise Storage 7 (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE Enterprise Storage 6 (aarch64 x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 - SUSE CaaS Platform 4.0 (x86_64): logrotate-3.13.0-150000.4.7.1 logrotate-debuginfo-3.13.0-150000.4.7.1 logrotate-debugsource-3.13.0-150000.4.7.1 References: https://bugzilla.suse.com/1192449 https://bugzilla.suse.com/1200278 https://bugzilla.suse.com/1200802 . Discover significant enhancements in the recent SUSE update for logrotate, which focuses on improving core dump management and resolving various non-security related bugs.. Logrotate Update, SUSE Security Fixes, Patch Management, Risk Mitigation, Enterprise Storage. . Severity: Important. LinuxSecurity.com Team

Jul 25, 2022 •Important SuSE

security advisoryFedoraphp

Fedora 28: 2019-efa799fd16 Critical: PHP Core Dump and Access Issues

**PHP version 7.2.16** (07 Mar 2019) **Core:** * Fixed bug php#77589 (Core dump using parse_ini_string with numeric sections). (Laruence) * Fixed bug php#77630 (rename() across the device may allow unwanted access during processing). (Stas) **EXIF:** * Fixed bug php#77509 (Uninitialized read in exif_process_IFD_in_TIFF). (Stas) * Fixed bug php#77540 (Invalid Read on. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2019-efa799fd16 2019-03-15 03:34:44.754261 --------------------------------------------------------------------------------Name : php Product : Fedora 28 Version : 7.2.16 Release : 1.fc28 URL : https://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The php package contains the module (often referred to as mod_php) which adds support for the PHP language to Apache HTTP Server. --------------------------------------------------------------------------------Update Information: **PHP version 7.2.16** (07 Mar 2019) **Core:** * Fixed bug php#77589 (Core dump using parse_ini_string with numeric sections). (Laruence) * Fixed bug php#77630 (rename() across the device may allow unwanted access during processing). (Stas) **EXIF:** * Fixed bug php#77509 (Uninitialized read in exif_process_IFD_in_TIFF). (Stas) * Fixed bug php#77540 (Invalid Read on exif_process_SOFn). (Stas) * Fixed bug php#77563 (Uninitialized read in exif_process_IFD_in_MAKERNOTE). (Stas) * Fixed bug php#77659 (Uninitialized read in exif_process_IFD_in_MAKERNOTE). (Stas) **PHAR:** *Fixed bug php#77396 (Null Pointer Dereference in phar_create_or_parse_filename). (bishop) **SPL:** * Fixed bug php#51068 (DirectoryIterator glob:// don't support current path relative queries). (Ahmed Abdou) * Fixed bug php#77431 (openFile() silently truncates after a null byte). (cmb) **Standard:** * Fixed bug php#77552 (Unintialized php_stream_statbuf in stat functions). (John Stevenson) **MySQL** * Disabled LOCAL INFILE by default, can be enabled using php.ini directive mysqli.allow_local_infile for mysqli, or PDO::MYSQL_ATTR_LOCAL_INFILE attribute for pdo_mysql. (Darek Slusarczyk) --------------------------------------------------------------------------------ChangeLog: * Wed Mar 6 2019 Remi Collet - 7.2.16-1 - Update to 7.2.16 - https://www.php.net/releases/7_2_16.php - add upstream patch for OpenSSL 1.1.1b - adapt systzdata patch (v17) * Wed Feb 6 2019 Remi Collet - 7.2.15-1 - Update to 7.2.15 - https://www.php.net/releases/7_2_15.php * Tue Jan 8 2019 Remi Collet - 7.2.14-1 - Update to 7.2.14 - https://www.php.net/releases/7_2_14.php * Sat Dec 8 2018 Remi Collet - 7.2.13-2 - Fix null pointer dereference in imap_mail CVE-2018-19935 * Wed Dec 5 2018 Remi Collet - 7.2.13-1 - Update to 7.2.13 - https://www.php.net/releases/7_2_13.php * Tue Nov 6 2018 Remi Collet - 7.2.12-1 - Update to 7.2.12 - https://www.php.net/releases/7_2_12.php * Wed Oct 10 2018 Remi Collet - 7.2.11-1 - Update to 7.2.11 - https://www.php.net/releases/7_2_11.php * Tue Sep 11 2018 Remi Collet - 7.2.10-1 - Update to 7.2.10 - https://www.php.net/releases/7_2_10.php * Thu Aug 16 2018 Remi Collet - 7.2.9-1 - Update to 7.2.9 - https://www.php.net/releases/7_2_9.php * Tue Jul 17 2018 Remi Collet - 7.2.8-1 - Update to 7.2.8 - https://www.php.net/releases/7_2_8.php - FPM: add getallheaders, backported from 7.3 * Wed Jun 20 2018 Remi Collet - 7.2.7-1 - Update to 7.2.7 - https://www.php.net/releases/7_2_7.php * Wed May 23 2018 Remi Collet - 7.2.6-1 - Update to 7.2.6 -https://www.php.net/releases/7_2_6.php * Tue Apr 24 2018 Remi Collet - 7.2.5-1 - Update to 7.2.5 - https://www.php.net/releases/7_2_5.php * Wed Apr 11 2018 Remi Collet - 7.2.5~RC1-1 - update to 7.2.5RC1 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2019-efa799fd16' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Essential security patches for PHP 7.2.16 tackling various vulnerabilities, such as memory leaks and unauthorized entry.. PHP Security, Fedora Update, Core Dumps, EXIF Issues. . Severity: Critical. LinuxSecurity.com Team

Mar 15, 2019 •Critical Fedora

security advisorymoderateinformation exposure

Scientific Linux: SLSA-2015:2505-1 Moderate: ABRT Core Dump Issue

Moderate: abrt and libreport security update. Date: Mon, 21 Dec 2015 23:16:40 +0000 Reply-To: scientific-linux-users@ Sender: Security Errata for Scientific Linux From: Pat Riehecky Subject: Security ERRATA Moderate: abrt and libreport on SL7.x x86_64 MIME-Version: 1.0 Message-ID: Synopsis: Moderate: abrt and libreport security update Advisory ID: SLSA-2015:2505-1 Issue Date: 2015-11-23 CVE Numbers: CVE-2015-5302 CVE-2015-5273 CVE-2015-5287 -- It was found that the ABRT debug information installer (abrt-action- install-debuginfo-to-abrt-cache) did not use temporary directories in a secure way. A local attacker could use the flaw to create symbolic links and files at arbitrary locations as the abrt user. (CVE-2015-5273) It was discovered that the kernel-invoked coredump processor provided by ABRT did not handle symbolic links correctly when writing core dumps of ABRT programs to the ABRT dump directory (/var/spool/abrt). A local attacker with write access to an ABRT problem directory could use this flaw to escalate their privileges. (CVE-2015-5287) It was found that ABRT may have exposed unintended information to Red Hat Bugzilla during crash reporting. A bug in the libreport library caused changes made by a user in files included in a crash report to be discarded. As a result, Red Hat Bugzilla attachments may contain data that was not intended to be made public, including host names, IP addresses, or command line options. (CVE-2015-5302) This flaw did not affect default installations of ABRT on Scientific Linux as they do not post data to Red Hat Bugzilla. This feature can however be enabled, potentially impacting modified ABRT instances. With this update Scientific Linux will no longer publish the rhel-autoreport tools. -- SL7 x86_64 abrt-2.1.11-35.el7.x86_64.rpm abrt-addon-ccpp-2.1.11-35.el7.x86_64.rpm abrt-addon-kerneloops-2.1.11-35.el7.x86_64.rpm abrt-addon-pstoreoops-2.1.11-35.el7.x86_64.rpm abrt-addon-python-2.1.11-35.el7.x86_64.rpm abrt-addon-vmcore-2.1.11-35.el7.x86_64.rpm abrt-addon-xorg-2.1.11-35.el7.x86_64.rpm abrt-cli-2.1.11-35.el7.x86_64.rpm abrt-console-notification-2.1.11-35.el7.x86_64.rpm abrt-dbus-2.1.11-35.el7.x86_64.rpm abrt-debuginfo-2.1.11-35.el7.i686.rpm abrt-debuginfo-2.1.11-35.el7.x86_64.rpm abrt-desktop-2.1.11-35.el7.x86_64.rpm abrt-gui-2.1.11-35.el7.x86_64.rpm abrt-gui-libs-2.1.11-35.el7.i686.rpm abrt-gui-libs-2.1.11-35.el7.x86_64.rpm abrt-libs-2.1.11-35.el7.i686.rpm abrt-libs-2.1.11-35.el7.x86_64.rpm abrt-python-2.1.11-35.el7.x86_64.rpm abrt-tui-2.1.11-35.el7.x86_64.rpm libreport-2.1.11-31.el7.i686.rpm libreport-2.1.11-31.el7.x86_64.rpm libreport-anaconda-2.1.11-31.el7.x86_64.rpm libreport-cli-2.1.11-31.el7.x86_64.rpm libreport-debuginfo-2.1.11-31.el7.i686.rpm libreport-debuginfo-2.1.11-31.el7.x86_64.rpm libreport-filesystem-2.1.11-31.el7.x86_64.rpm libreport-gtk-2.1.11-31.el7.i686.rpm libreport-gtk-2.1.11-31.el7.x86_64.rpm libreport-plugin-bugzilla-2.1.11-31.el7.x86_64.rpm libreport-plugin-mailx-2.1.11-31.el7.x86_64.rpm libreport-plugin-reportuploader-2.1.11-31.el7.x86_64.rpm libreport-plugin-rhtsupport-2.1.11-31.el7.x86_64.rpm libreport-plugin-ureport-2.1.11-31.el7.x86_64.rpm libreport-python-2.1.11-31.el7.x86_64.rpm libreport-rhel-2.1.11-31.el7.x86_64.rpm libreport-rhel-anaconda-bugzilla-2.1.11-31.el7.x86_64.rpm libreport-web-2.1.11-31.el7.i686.rpm libreport-web-2.1.11-31.el7.x86_64.rpm abrt-addon-upload-watch-2.1.11-35.el7.x86_64.rpm abrt-devel-2.1.11-35.el7.i686.rpm abrt-devel-2.1.11-35.el7.x86_64.rpm abrt-gui-devel-2.1.11-35.el7.i686.rpm abrt-gui-devel-2.1.11-35.el7.x86_64.rpm abrt-retrace-client-2.1.11-35.el7.x86_64.rpm libreport-compat-2.1.11-31.el7.x86_64.rpm libreport-devel-2.1.11-31.el7.i686.rpm libreport-devel-2.1.11-31.el7.x86_64.rpm libreport-gtk-devel-2.1.11-31.el7.i686.rpm libreport-gtk-devel-2.1.11-31.el7.x86_64.rpm libreport-newt-2.1.11-31.el7.x86_64.rpm libreport-plugin-kerneloops-2.1.11-31.el7.x86_64.rpm libreport-plugin-logger-2.1.11-31.el7.x86_64.rpm libreport-rhel-bugzilla-2.1.11-31.el7.x86_64.rpm libreport-web-devel-2.1.11-31.el7.i686.rpm libreport-web-devel-2.1.11-31.el7.x86_64.rpm noarch abrt-python-doc-2.1.11-35.el7.noarch.rpm - Scientific Linux Development Team . Significant patch rollout for ABRT and libreport on Scientific Linux improves management of core dumps and mitigates information leakage.. ABRT Security Update, Scientific Linux Update, libreport Vulnerability. . Severity: Important. LinuxSecurity.com Team

Dec 21, 2015 •Important Scientific Linux

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

SUSE: 2025:02675-1 systemd Moderate Local Attack CVE-2025-4598

openSUSE: systemd Moderate Local Attack Advisory 2025:02675-1

SUSE: 2025:02245-2 high: gnome-shell UI rendering vulnerability

Mageia 9: MGASA-2025-0178 critical: systemd-coredump race condition

SUSE: 2023:3678-1 Critical: Logrotate Error Logging Improvement

Fedora 28: 2019-efa799fd16 Critical: PHP Core Dump and Access Issues

Scientific Linux: SLSA-2015:2505-1 Moderate: ABRT Core Dump Issue

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!