Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 19 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE: coreutils Moderate Heap Buffer Overflow Vuln 2025:20660-1

* bsc#1243767 Cross-References: * CVE-2025-5278 . # Security update for coreutils Announcement ID: SUSE-SU-2025:20660-1 Release Date: 2025-08-28T15:15:06Z Rating: moderate References: * bsc#1243767 Cross-References: * CVE-2025-5278 CVSS scores: * CVE-2025-5278 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-5278 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2025-5278 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for coreutils fixes the following issues: * CVE-2025-5278: Sort with key character offsets of SIZE_MAX, could induce a read of 1 byte before an allocated heap buffer (bsc#1243767). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-238=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * coreutils-debugsource-9.4-slfo.1.1_2.1 * coreutils-debuginfo-9.4-slfo.1.1_2.1 * coreutils-9.4-slfo.1.1_2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-5278.html * https://bugzilla.suse.com/show_bug.cgi?id=1243767 . Security patch for coreutils targeting CVE-2025-5278 resolves a heap overflow vulnerability in SUSE Linux Micro 6.1.. Coreutils Update, Linux Security Patch, SUSE Micro Update. . LinuxSecurity.com Team

Calendar 2 Sep 10, 2025 SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE Linux 6.0: Coreutils Moderate Heap Buffer Under-Read CVE-2025-5278

* bsc#1243767 Cross-References: * CVE-2025-5278 . # Security update for coreutils Announcement ID: SUSE-SU-2025:20523-1 Release Date: 2025-07-31T09:44:31Z Rating: moderate References: * bsc#1243767 Cross-References: * CVE-2025-5278 CVSS scores: * CVE-2025-5278 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-5278 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2025-5278 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for coreutils fixes the following issues: * CVE-2025-5278: Fixed heap buffer under-read ledaing to a crash or leak sensitive data (bsc#1243767) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-405=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * coreutils-debugsource-9.4-5.1 * coreutils-9.4-5.1 * coreutils-debuginfo-9.4-5.1 ## References: * https://www.suse.com/security/cve/CVE-2025-5278.html * https://bugzilla.suse.com/show_bug.cgi?id=1243767 . A recent security advisory from SUSE regarding Coreutils highlights vulnerabilities of moderate severity that could potentially result in unauthorized access to sensitive information.. SUSE Security Patch, Coreutils Update, Heap Buffer Issue. . LinuxSecurity.com Team

Calendar 2 Aug 04, 2025 SuSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE: Coreutils Moderate Heap Buffer Under-read CVE-2025-5278 Advisory

* bsc#1243767 Cross-References: * CVE-2025-5278 . # Security update for coreutils Announcement ID: SUSE-SU-2025:02362-1 Release Date: 2025-07-18T09:08:22Z Rating: moderate References: * bsc#1243767 Cross-References: * CVE-2025-5278 CVSS scores: * CVE-2025-5278 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-5278 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2025-5278 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerabilitycan now be installed. ## Description: This update for coreutils fixes the following issues: * CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data (bsc#1243767) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-2362=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2362=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2362=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-2362=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-2362=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-2362=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-2362=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-2362=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-2362=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-2362=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-2362=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2362=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-2362=1 * SUSE Manager Server 4.3 zypper in -t patchSUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2362=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-2362=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-2362=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2362=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2362=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2362=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2362=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * Basesystem Module 15-SP6 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * Basesystem Module 15-SP7 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4(noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE LinuxEnterprise Server for SAP Applications 15 SP5 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Manager Proxy 4.3 (x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Manager Proxy 4.3 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Manager Server 4.3 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-single-8.32-150400.9.9.1 * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * coreutils-single-debuginfo-8.32-150400.9.9.1 * coreutils-testsuite-8.32-150400.9.9.1 * coreutils-single-debugsource-8.32-150400.9.9.1 * openSUSE Leap 15.4 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-single-8.32-150400.9.9.1 * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * coreutils-single-debuginfo-8.32-150400.9.9.1 * coreutils-testsuite-8.32-150400.9.9.1 * coreutils-single-debugsource-8.32-150400.9.9.1 * openSUSE Leap 15.6 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) *coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-5278.html * https://bugzilla.suse.com/show_bug.cgi?id=1243767 . CVE-2025-5280 in bash impacts Debian systems, creating potential security flaws demanding critical patches. Verify your installation.. SUSE coreutils update, moderate severity patch, SUSE security advisory, heap buffer under-read, data leak risk. . LinuxSecurity.com Team

Calendar 2 Jul 18, 2025 SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatecoreutils

openSUSE Coreutils Advisory 2025:02362-1 Reports CVE-2025-5278 Risk

An update that solves one vulnerability can now be installed.. # Security update for coreutils Announcement ID: SUSE-SU-2025:02362-1 Release Date: 2025-07-18T09:08:22Z Rating: moderate References: * bsc#1243767 Cross-References: * CVE-2025-5278 CVSS scores: * CVE-2025-5278 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-5278 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2025-5278 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * Basesystem Module 15-SP6 * Basesystem Module 15-SP7 * openSUSE Leap 15.4 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves onevulnerability can now be installed. ## Description: This update for coreutils fixes the following issues: * CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data (bsc#1243767) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-2362=1 * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-2362=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2025-2362=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-2362=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-2362=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-2362=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-2362=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-2362=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-2362=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-2362=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-2362=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-2362=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2025-2362=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-2362=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2025-2362=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-2362=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2362=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-2362=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2362=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-2362=1 ## Package List: * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * Basesystem Module 15-SP6 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * Basesystem Module 15-SP7 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance ComputingLTSS 15 SP4 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSELinux Enterprise Server for SAP Applications 15 SP5 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Manager Proxy 4.3 (x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Manager Proxy 4.3 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Manager Server 4.3 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-single-8.32-150400.9.9.1 * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * coreutils-single-debuginfo-8.32-150400.9.9.1 * coreutils-testsuite-8.32-150400.9.9.1 * coreutils-single-debugsource-8.32-150400.9.9.1 * openSUSE Leap 15.4 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-single-8.32-150400.9.9.1 * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * coreutils-single-debuginfo-8.32-150400.9.9.1 * coreutils-testsuite-8.32-150400.9.9.1 * coreutils-single-debugsource-8.32-150400.9.9.1 * openSUSE Leap 15.6 (noarch) * coreutils-doc-8.32-150400.9.9.1 * coreutils-lang-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) *coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * coreutils-debuginfo-8.32-150400.9.9.1 * coreutils-debugsource-8.32-150400.9.9.1 * coreutils-8.32-150400.9.9.1 ## References: * https://www.suse.com/security/cve/CVE-2025-5278.html * https://bugzilla.suse.com/show_bug.cgi?id=1243767 . A notice has been released for coreutils within openSUSE addressing a significant vulnerability that may lead to data exposure and system failures.. Linux Security, Coreutils Update, openSUSE Patch. . LinuxSecurity.com Team

Calendar 2 Jul 18, 2025 OpenSUSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE: Coreutils Moderate Heap Buffer Under-Read Advisory 2025:02353-1

* bsc#1243767 Cross-References: * CVE-2025-5278 . # Security update for coreutils Announcement ID: SUSE-SU-2025:02353-1 Release Date: 2025-07-17T12:35:51Z Rating: moderate References: * bsc#1243767 Cross-References: * CVE-2025-5278 CVSS scores: * CVE-2025-5278 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-5278 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2025-5278 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for coreutils fixes the following issues: * CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data (bsc#1243767) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-2025-2353=1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-2353=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS (aarch64 ppc64le s390x x86_64) * coreutils-8.25-13.19.1 * coreutils-debuginfo-8.25-13.19.1 * coreutils-debugsource-8.25-13.19.1 * SUSE Linux Enterprise Server 12 SP5 LTSS (noarch) * coreutils-lang-8.25-13.19.1 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * coreutils-8.25-13.19.1 * coreutils-debuginfo-8.25-13.19.1 * coreutils-debugsource-8.25-13.19.1 * SUSE Linux Enterprise Server 12SP5 LTSS Extended Security (noarch) * coreutils-lang-8.25-13.19.1 ## References: * https://www.suse.com/security/cve/CVE-2025-5278.html * https://bugzilla.suse.com/show_bug.cgi?id=1243767 . Keep updated on a significant concern in coreutils impacting SUSE platforms. Act promptly to reduce potential threats!. SUSE, coreutils update, moderate security issue, buffer under-read, Linux patch. . LinuxSecurity.com Team

Calendar 2 Jul 17, 2025 SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderatesecurity fix

openSUSE Leap 15.3: Coreutils Moderate Heap Buffer Issue SUSE-2025:02354-1

An update that solves one vulnerability and has two security fixes can now be installed.. # Security update for coreutils Announcement ID: SUSE-SU-2025:02354-1 Release Date: 2025-07-17T12:36:17Z Rating: moderate References: * bsc#1219321 * bsc#1221632 * bsc#1243767 Cross-References: * CVE-2025-5278 CVSS scores: * CVE-2025-5278 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-5278 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2025-5278 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for coreutils fixes the following issues: Security fixes: * CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data (bsc#1243767) Other fixes: * ls: avoid triggering automounts (bsc#1221632) * tail: fix tailing sysfs files where PAGE_SIZE > BUFSIZ (bsc#1219321) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-2354=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-2354=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-2354=1 * SUSE LinuxEnterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-2354=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-2354=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-2354=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2354=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2354=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * coreutils-single-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-single-debuginfo-8.32-150300.3.11.1 * coreutils-single-8.32-150300.3.11.1 * coreutils-testsuite-8.32-150300.3.11.1 * openSUSE Leap 15.3 (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * coreutils-lang-8.32-150300.3.11.1 *coreutils-doc-8.32-150300.3.11.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Enterprise Storage 7.1 (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 ## References: * https://www.suse.com/security/cve/CVE-2025-5278.html * https://bugzilla.suse.com/show_bug.cgi?id=1219321 * https://bugzilla.suse.com/show_bug.cgi?id=1221632 * https://bugzilla.suse.com/show_bug.cgi?id=1243767 . The latest coreutils patch for openSUSE mitigates a heap buffer over-read issue, reinforcing system security.. openSUSE Security Update, coreutils patch, moderate security risk, SUSE vulnerability fix. . LinuxSecurity.com Team

Calendar 2 Jul 17, 2025 OpenSUSE
Banner 1 1028x280 1708121660 1771599717
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorymoderateSuSE

SUSE: coreutils Moderate Buffer Under-Read Threat SUSE-SU-2025:02354-1

* bsc#1219321 * bsc#1221632 * bsc#1243767 Cross-References: . # Security update for coreutils Announcement ID: SUSE-SU-2025:02354-1 Release Date: 2025-07-17T12:36:17Z Rating: moderate References: * bsc#1219321 * bsc#1221632 * bsc#1243767 Cross-References: * CVE-2025-5278 CVSS scores: * CVE-2025-5278 ( SUSE ): 2.4 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-5278 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2025-5278 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: * openSUSE Leap 15.3 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP3 An update that solves one vulnerability and has two security fixes can now be installed. ## Description: This update for coreutils fixes the following issues: Security fixes: * CVE-2025-5278: Fixed heap buffer under-read may lead to a crash or leak sensitive data (bsc#1243767) Other fixes: * ls: avoid triggering automounts (bsc#1221632) * tail: fix tailing sysfs files where PAGE_SIZE > BUFSIZ (bsc#1219321) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2025-2354=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-2354=1 * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-2354=1 * SUSE Linux Enterprise Server for SAPApplications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-2354=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-2354=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2025-2354=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2354=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2025-2354=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * coreutils-single-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-single-debuginfo-8.32-150300.3.11.1 * coreutils-single-8.32-150300.3.11.1 * coreutils-testsuite-8.32-150300.3.11.1 * openSUSE Leap 15.3 (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (aarch64 ppc64le s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 *SUSE Enterprise Storage 7.1 (aarch64 x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Enterprise Storage 7.1 (noarch) * coreutils-lang-8.32-150300.3.11.1 * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro 5.1 (noarch) * coreutils-doc-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * coreutils-8.32-150300.3.11.1 * coreutils-debugsource-8.32-150300.3.11.1 * coreutils-debuginfo-8.32-150300.3.11.1 ## References: * https://www.suse.com/security/cve/CVE-2025-5278.html * https://bugzilla.suse.com/show_bug.cgi?id=1219321 * https://bugzilla.suse.com/show_bug.cgi?id=1221632 * https://bugzilla.suse.com/show_bug.cgi?id=1243767 . Coreutils patch issued: moderate urgency, resolves a buffer under-read vulnerability that could result in potential information exposure.. SUSE Linux, coreutils update, moderate severity, data leak, security patch. . LinuxSecurity.com Team

Calendar 2 Jul 17, 2025 SuSE
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryupdateFedora

Fedora 41: FEDORA-2025-f344084b93 critical: coreutils buffer under-read

sort: fix buffer under-read (CVE-2025-5278). -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-f344084b93 2025-06-08 02:30:29.771883+00:00 -------------------------------------------------------------------------------- Name : coreutils Product : Fedora 41 Version : 9.5 Release : 12.fc41 URL : Summary : A set of basic GNU tools commonly used in shell scripts Description : These are the GNU core utilities. This package is the combination of the old GNU fileutils, sh-utils, and textutils packages. -------------------------------------------------------------------------------- Update Information: sort: fix buffer under-read (CVE-2025-5278) -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2025 Lukáš Zaoral - 9.5-12 - sort: fix buffer under-read (CVE-2025-5278) -------------------------------------------------------------------------------- References: [ 1 ] Bug #2368766 - CVE-2025-5278 coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2368766 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-f344084b93' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- . Tackling a buffer over-read in Fedora coreutils, improving system robustness and security for users.. coreutils security, buffer under-read, Fedora core utilities, shell scripts. . Severity: Critical.LinuxSecurity.com Team

Calendar 2 Jun 08, 2025 Critical Fedora
Banner 1 1028x280 1708121660 1771599717
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here