Explore top 10 tips to secure your open-source projects now. Read More
×An update that solves three vulnerabilities can now be installed.. # Security update for glibc Announcement ID: SUSE-SU-2026:2333-1 Release Date: 2026-06-10T08:42:34Z Rating: important References: * bsc#1261206 * bsc#1262464 * bsc#1262465 Cross-References: * CVE-2026-4046 * CVE-2026-5450 * CVE-2026-5928 CVSS scores: * CVE-2026-4046 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-4046 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-4046 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5450 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2026-5450 ( SUSE ): 5.9 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L * CVE-2026-5450 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-5928 ( SUSE ): 5.9 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-5928 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H * CVE-2026-5928 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues * CVE-2026-4046: assertion failure when converting inputs may be used to remotely crash an application (bsc#1261206). * CVE-2026-5450: stdio-common: scanf %mc pattern will cause heap overflow when width > 1024 (bsc#1262465). * CVE-2026-5928: libio: ungetwc could be used to leak data on special conditions (bsc#1262464). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2026-2333=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2333=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-2333=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2333=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-2333=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-2333=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2333=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2333=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2333=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2333=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2333=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2333=1 * SUSE Linux EnterpriseServer for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2333=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2333=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586 i686) * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * glibc-utils-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * nscd-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * openSUSE Leap 15.3 (noarch) * glibc-html-2.31-150300.101.1 * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * openSUSE Leap 15.3 (x86_64) * glibc-devel-static-32bit-2.31-150300.101.1 * glibc-profile-32bit-2.31-150300.101.1 * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-utils-32bit-debuginfo-2.31-150300.101.1 * glibc-utils-32bit-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * openSUSE Leap 15.3 (aarch64_ilp32) * glibc-64bit-debuginfo-2.31-150300.101.1 * glibc-64bit-2.31-150300.101.1 * glibc-devel-64bit-debuginfo-2.31-150300.101.1 * glibc-devel-64bit-2.31-150300.101.1 * glibc-locale-base-64bit-debuginfo-2.31-150300.101.1 *glibc-utils-64bit-debuginfo-2.31-150300.101.1 * glibc-profile-64bit-2.31-150300.101.1 * glibc-devel-static-64bit-2.31-150300.101.1 * glibc-utils-64bit-2.31-150300.101.1 * glibc-locale-base-64bit-2.31-150300.101.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 *glibc-devel-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * glibc-utils-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * glibc-utils-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 *nscd-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * glibc-utils-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * glibc-utils-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * glibc-utils-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 *glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * glibc-utils-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * glibc-utils-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 *glibc-utils-src-debugsource-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 * glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * glibc-utils-2.31-150300.101.1 * glibc-debuginfo-2.31-150300.101.1 * glibc-devel-2.31-150300.101.1 * glibc-utils-src-debugsource-2.31-150300.101.1 * glibc-locale-base-2.31-150300.101.1 * nscd-2.31-150300.101.1 * glibc-utils-debuginfo-2.31-150300.101.1 * glibc-locale-2.31-150300.101.1 * glibc-extra-debuginfo-2.31-150300.101.1 * glibc-devel-debuginfo-2.31-150300.101.1 * glibc-profile-2.31-150300.101.1 * nscd-debuginfo-2.31-150300.101.1 * glibc-debugsource-2.31-150300.101.1 * glibc-devel-static-2.31-150300.101.1 * glibc-2.31-150300.101.1 * glibc-locale-base-debuginfo-2.31-150300.101.1 * glibc-extra-2.31-150300.101.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * glibc-info-2.31-150300.101.1 * glibc-lang-2.31-150300.101.1 *glibc-i18ndata-2.31-150300.101.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * glibc-devel-32bit-debuginfo-2.31-150300.101.1 * glibc-32bit-2.31-150300.101.1 * glibc-devel-32bit-2.31-150300.101.1 * glibc-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.101.1 * glibc-locale-base-32bit-2.31-150300.101.1 ## References: * https://www.suse.com/security/cve/CVE-2026-4046.html * https://www.suse.com/security/cve/CVE-2026-5450.html * https://www.suse.com/security/cve/CVE-2026-5928.html * https://bugzilla.suse.com/show_bug.cgi?id=1261206 * https://bugzilla.suse.com/show_bug.cgi?id=1262464 * https://bugzilla.suse.com/show_bug.cgi?id=1262465 . Update for glibc addresses important vulnerabilities with chances of data leaks and application crashes.. SUSE Linux, glibc security, important security updates, openSUSE vulnerabilities. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability and has three fixes can now be installed.. # Security update for ucode-intel Announcement ID: SUSE-SU-2026:21897-1 Release Date: 2026-05-22T09:37:17Z Rating: moderate References: * bsc#1230400 * bsc#1249138 * bsc#1253319 * bsc#1265189 Cross-References: * CVE-2025-35979 CVSS scores: * CVE-2025-35979 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-35979 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-35979 ( NVD ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability and has three fixes can now be installed. ## Description: This update for ucode-intel fixes the following issues Security issue: * CVE-2025-35979: data leaks fixed in 20260512 release (bsc#1265189). Non security issues: * TW 20250826 Kernel 6.16.3 tainted with value of 4 after reboot. (bsc#1249138). * Intel CPU Microcode was updated to the 20260512 release (bsc#1265189) ### New Platforms | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | PTL 404 | A1 | 06-cc-03/90 | | 0000011b | Intel Core Ultra Processor (Series 3) | PTL-H 484/12Xe | A0/B0 | 06-cc-02/90 | | 0000011b | Intel Core Ultra Processor (Series 3) ### Updated Platforms | ARL-H | A1 | 06-c5-02/82 | 0000011b | 00000121 | Core Ultra Processor (Series 2) | ARL-S/HX (8P) | B0 | 06-c6-02/82 | 0000011b | 00000121 | Core Ultra Processor (Series 2) | EMR- SP | A1 | 06-cf-02/87 | 210002d3 | 210002e0 | Xeon Scalable Gen5 | GNR-AP/SP | Bx/Hx/Lx | 06-ad-01/95 | 01000405 | 01000423 |Xeon 6900/6700/6500 Series Processors with P-Cores | GNR-D | B0/B1 | 06-ae-01/97 | 01000303 | 01000307 | Xeon 6700P-B/6500P-B Series SoC with P-Cores | GNR-SP R1S | Bx/Hx/Lx | 06-ad-01/20 | 0a000133 | 0a000142 | Xeon 6700/6500-Series Processors with P-Cores | LNL | B0 | 06-bd-01/80 | 00000125 | 00000126 | Core Ultra 200 V Series Processor | SPR-SP | E4/S2 | 06-8f-07/87 | 2b000661 | 2b000670 | Xeon Scalable Gen4 | SPR-SP | E5/S3 | 06-8f-08/87 | 2b000661 | 2b000670 | Xeon Scalable Gen4 | SRF-AP/SP | C0 | 06-af-03/01 | 03000382 | 030003a3 | Xeon 6900/6700-Series Processors with E-Cores ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-545=1 ## Package List: * SUSE Linux Micro 6.1 (x86_64) * ucode-intel-20260512-slfo.1.1_1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-35979.html * https://bugzilla.suse.com/show_bug.cgi?id=1230400 * https://bugzilla.suse.com/show_bug.cgi?id=1249138 * https://bugzilla.suse.com/show_bug.cgi?id=1253319 * https://bugzilla.suse.com/show_bug.cgi?id=1265189 . Update for SUSE solves a data leak issue in ucode-intel. Installed fixes enhance security and must be patched.. SUSE security update, microcode patches, Linux security fixes. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability and has three fixes can now be installed.. # Security update for ucode-intel Announcement ID: SUSE-SU-2026:21725-1 Release Date: 2026-05-21T09:27:26Z Rating: moderate References: * bsc#1230400 * bsc#1249138 * bsc#1253319 * bsc#1265189 Cross-References: * CVE-2025-35979 CVSS scores: * CVE-2025-35979 ( SUSE ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2025-35979 ( SUSE ): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N * CVE-2025-35979 ( NVD ): 6.8 CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability and has three fixes can now be installed. ## Description: This update for ucode-intel fixes the following issues Security issue: * CVE-2025-35979: data leaks fixed in 20260512 release (bsc#1265189). Non security issues: * TW 20250826 Kernel 6.16.3 tainted with value of 4 after reboot. (bsc#1249138). * Intel CPU Microcode was updated to the 20260512 release (bsc#1265189) ### New Platforms | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | PTL 404 | A1 | 06-cc-03/90 | | 0000011b | Intel Core Ultra Processor (Series 3) | PTL-H 484/12Xe | A0/B0 | 06-cc-02/90 | | 0000011b | Intel Core Ultra Processor (Series 3) ### Updated Platforms | ARL-H | A1 | 06-c5-02/82 | 0000011b | 00000121 | Core Ultra Processor (Series 2) | ARL-S/HX (8P) | B0 | 06-c6-02/82 | 0000011b | 00000121 | Core Ultra Processor (Series 2) | EMR- SP | A1 | 06-cf-02/87 | 210002d3 | 210002e0 | Xeon Scalable Gen5 | GNR-AP/SP | Bx/Hx/Lx | 06-ad-01/95 | 01000405 | 01000423 |Xeon 6900/6700/6500 Series Processors with P-Cores | GNR-D | B0/B1 | 06-ae-01/97 | 01000303 | 01000307 | Xeon 6700P-B/6500P-B Series SoC with P-Cores | GNR-SP R1S | Bx/Hx/Lx | 06-ad-01/20 | 0a000133 | 0a000142 | Xeon 6700/6500-Series Processors with P-Cores | LNL | B0 | 06-bd-01/80 | 00000125 | 00000126 | Core Ultra 200 V Series Processor | SPR-SP | E4/S2 | 06-8f-07/87 | 2b000661 | 2b000670 | Xeon Scalable Gen4 | SPR-SP | E5/S3 | 06-8f-08/87 | 2b000661 | 2b000670 | Xeon Scalable Gen4 | SRF-AP/SP | C0 | 06-af-03/01 | 03000382 | 030003a3 | Xeon 6900/6700-Series Processors with E-Cores ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-719=1 ## Package List: * SUSE Linux Micro 6.0 (x86_64) * ucode-intel-20260512-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-35979.html * https://bugzilla.suse.com/show_bug.cgi?id=1230400 * https://bugzilla.suse.com/show_bug.cgi?id=1249138 * https://bugzilla.suse.com/show_bug.cgi?id=1253319 * https://bugzilla.suse.com/show_bug.cgi?id=1265189 . An update is available for SUSE Linux Micro 6.0 to resolve a moderate risk data leak with ucode-intel and apply necessary fixes.. SUSE update, ucode-intel, data leak, microcode update, security fix. . LinuxSecurity.com Team
An update that solves 4 vulnerabilities can now be installed.. # log4j-2.20.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10544-1 Rating: moderate Cross-References: * CVE-2026-34477 * CVE-2026-34479 * CVE-2026-34480 * CVE-2026-34481 CVSS scores: * CVE-2026-34477 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N * CVE-2026-34479 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-34480 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L * CVE-2026-34481 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * openSUSE Tumbleweed An update that solves 4 vulnerabilities can now be installed. ## Description: These are all security issues fixed in the log4j-2.20.0-2.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * log4j 2.20.0-2.1 * log4j-bom 2.20.0-2.1 * log4j-javadoc 2.20.0-2.1 * log4j-jcl 2.20.0-2.1 * log4j-jmx-gui 2.20.0-2.1 * log4j-nosql 2.20.0-2.1 * log4j-slf4j 2.20.0-2.1 * log4j-taglib 2.20.0-2.1 * log4j-web 2.20.0-2.1 ## References: * https://www.suse.com/security/cve/CVE-2026-34477.html * https://www.suse.com/security/cve/CVE-2026-34479.html * https://www.suse.com/security/cve/CVE-2026-34480.html * https://www.suse.com/security/cve/CVE-2026-34481.html . This advisory details the moderate vulnerabilities fixed in log4j-2.20.0-2.1 package for openSUSE Tumbleweed.. openSUSE security, log4j update, system vulnerabilities, software patching, Linux security. . LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # regclient-0.11.2-1.1 on GA media Announcement ID: openSUSE-SU-2026:10256-1 Rating: moderate Cross-References: * CVE-2025-68121 CVSS scores: * CVE-2025-68121 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2025-68121 ( SUSE ): 7.6 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the regclient-0.11.2-1.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * regclient 0.11.2-1.1 * regclient-bash-completion 0.11.2-1.1 * regclient-fish-completion 0.11.2-1.1 * regclient-zsh-completion 0.11.2-1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-68121.html . This update for regclient on openSUSE addresses a moderate security issue affecting the system. Learn more.. openSUSE regclient security update Tumbleweed CVE-2025-68121. . LinuxSecurity.com Team
An update that solves four vulnerabilities, contains two features and has one security fix can now be installed.. # Security update 5.1.1.1 for Multi-Linux Manager Client Tools Announcement ID: SUSE-SU-2025:4444-1 Release Date: 2025-12-18T08:49:36Z Rating: important References: * bsc#1249434 * bsc#1250616 * bsc#1251454 * bsc#1251657 * bsc#1254113 * jsc#MSQA-1038 * jsc#PED-14178 Cross-References: * CVE-2025-11065 * CVE-2025-47911 * CVE-2025-58190 * CVE-2025-64751 CVSS scores: * CVE-2025-11065 ( SUSE ): 5.7 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-11065 ( SUSE ): 4.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N * CVE-2025-47911 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58190 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58190 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-64751 ( SUSE ): 5.3 CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N * CVE-2025-64751 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N * CVE-2025-64751 ( NVD ): 5.8 CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X Affected Products: * SUSE Multi-Linux Manager Client Tools for SLE 12 An update that solves four vulnerabilities, contains two features and has one security fix can now be installed. ## Description: This update fixes the following issues: grafana was updated from version 11.5.7 to 11.5.10: * Security issues fixed: * CVE-2025-64751: Drop experimental implementation of authorization Zanzana server/client (version 11.5.10) (bsc#1254113) * CVE-2025-47911: Fixed parsing HTML documents (version 11.5.10) (bsc#1251454) * CVE-2025-58190: Fixed excessivememory consumption (version 11.5.10) (bsc#1251657) * CVE-2025-11065: Fixed sensitive information leak in logs (version 11.5.9) (bsc#1250616) * Other changes, new features and bugs fixed: * Version 11.5.10: * Use forked wire from Grafana repository instead of external package (jsc#PED-14178) * Auth: Fix render user OAuth passthrough. * LDAP Authentication: Fix URL to propagate username context as parameter. * Plugins: Dependencies do not inherit parent URL for preinstall. * Version 11.5.9: * Auditing: Document new options for recording datasource query request/response body. * Login: Fixed redirection after login when Grafana is served from subpath. * Update to version 11.5.8: * No relevant changes uyuni-tools: * version 5.1.23-0 * Update the default tag to 5.1.1.1 * version 5.1.22-0 * Fix cobbler config migration to standalone files * Fix generated DB certificate subject alternate names * version 5.1.21-0 * Remove extraneous quotes when getting the running image (bsc#1249434) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Multi-Linux Manager Client Tools for SLE 12 zypper in -t patch SUSE-MultiLinuxManagerTools-SLE-12-2025-4444=1 ## Package List: * SUSE Multi-Linux Manager Client Tools for SLE 12 (aarch64 ppc64le s390x x86_64) * Multi-Linux-ManagerTools-SLE-release-12-120002.1.11.1 * Multi-Linux-ManagerTools-SLE-release-POOL-12-120002.1.11.1 * grafana-11.5.10-120002.4.6.1 * grafana-debuginfo-11.5.10-120002.4.6.1 * mgrctl-5.1.23-120002.3.6.1 * SUSE Multi-Linux Manager Client Tools for SLE 12 (noarch) * mgrctl-bash-completion-5.1.23-120002.3.6.1 * mgrctl-lang-5.1.23-120002.3.6.1 * mgrctl-zsh-completion-5.1.23-120002.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11065.html *https://www.suse.com/security/cve/CVE-2025-47911.html * https://www.suse.com/security/cve/CVE-2025-58190.html * https://www.suse.com/security/cve/CVE-2025-64751.html * https://bugzilla.suse.com/show_bug.cgi?id=1249434 * https://bugzilla.suse.com/show_bug.cgi?id=1250616 * https://bugzilla.suse.com/show_bug.cgi?id=1251454 * https://bugzilla.suse.com/show_bug.cgi?id=1251657 * https://bugzilla.suse.com/show_bug.cgi?id=1254113 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=https%3A%2F%2Fjira.suse.com%2Fbrowse%2FMSQA-1038 * https://jira.suse.com/login.jsp?permissionViolation=true&os_destination=https%3A%2F%2Fjira.suse.com%2Fbrowse%2FPED-14178 . This important update addresses multiple vulnerabilities in the Multi-Linux Manager Client Tools, ensuring better security.. SUSE Multi-Linux Manager, Grafana Update, Security Issues, Linux Security Updates. . Severity: Important. LinuxSecurity.com Team
Multiple vulnerabilities have been discovered in Pagure, a Git-centered code hosting system (forge). . ------------------------------------------------------------------------- Debian LTS Advisory DLA-4390-1
* bsc#1252414 * bsc#1252417 * bsc#1252418 * bsc#1252758 . # Security update for java-1_8_0-ibm Announcement ID: SUSE-SU-2025:3965-1 Release Date: 2025-11-06T10:48:06Z Rating: important References: * bsc#1252414 * bsc#1252417 * bsc#1252418 * bsc#1252758 Cross-References: * CVE-2025-53057 * CVE-2025-53066 * CVE-2025-61748 CVSS scores: * CVE-2025-53057 ( SUSE ): 8.2 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2025-53057 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-53057 ( NVD ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N * CVE-2025-53066 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N * CVE-2025-53066 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-53066 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N * CVE-2025-61748 ( SUSE ): 6.3 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N * CVE-2025-61748 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2025-61748 ( NVD ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: * Legacy Module 15-SP6 * Legacy Module 15-SP7 * openSUSE Leap 15.6 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAP Applications 15SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves three vulnerabilities and has one security fix can now be installed. ## Description: This update for java-1_8_0-ibm fixes the following issues: * CVE-2025-53057: Fixed an issue where an unauthenticated attacker can achieve unauthorized creation, deletion or modification access to critical data (bsc#1252414) * CVE-2025-53066: Fixed an issue where an unauthenticated attacker can achieve unauthorized access to critical data or complete access (bsc#1252417) * CVE-2025-61748: Fixed an issue where an unauthenticated attacker can achieve unauthorized update, insert or delete access to some resources (bsc#1252418) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 15 SP3 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-3965=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-3965=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3965=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2025-3965=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2025-3965=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3965=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2025-3965=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2025-3965=1 * Legacy Module 15-SP6 zypper in -t patchSUSE-SLE-Module-Legacy-15-SP6-2025-3965=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2025-3965=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-3965=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-3965=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-3965=1 ## Package List: * SUSE Linux Enterprise Server 15 SP3 LTSS (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP3 LTSS (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc ppc64le x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) *java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc ppc64le x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (nosrc ppc64le x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Enterprise Storage 7.1 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Enterprise Storage 7.1 (x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * openSUSE Leap 15.6 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * openSUSE Leap 15.6 (x86_64) * java-1_8_0-ibm-devel-32bit-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-32bit-1.8.0_sr8.55-150000.3.109.1 * openSUSE Leap 15.6 (ppc64le s390x x86_64) * java-1_8_0-ibm-src-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-demo-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * Legacy Module 15-SP6 (nosrc ppc64le s390xx86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * Legacy Module 15-SP6 (ppc64le s390x x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * Legacy Module 15-SP6 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * Legacy Module 15-SP7 (nosrc ppc64le s390x x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * Legacy Module 15-SP7 (ppc64le s390x x86_64) * java-1_8_0-ibm-src-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-demo-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * Legacy Module 15-SP7 (x86_64) * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (nosrc x86_64) * java-1_8_0-ibm-1.8.0_sr8.55-150000.3.109.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * java-1_8_0-ibm-devel-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-plugin-1.8.0_sr8.55-150000.3.109.1 * java-1_8_0-ibm-alsa-1.8.0_sr8.55-150000.3.109.1 ## References: * https://www.suse.com/security/cve/CVE-2025-53057.html * https://www.suse.com/security/cve/CVE-2025-53066.html *https://www.suse.com/security/cve/CVE-2025-61748.html * https://bugzilla.suse.com/show_bug.cgi?id=1252414 * https://bugzilla.suse.com/show_bug.cgi?id=1252417 * https://bugzilla.suse.com/show_bug.cgi?id=1252418 * https://bugzilla.suse.com/show_bug.cgi?id=1252758 . Critical SUSE security update for Java IBM fixes unauthorized access vulnerabilities. Essential maintenance instructions included.. SUSE Linux, Java IBM, security update, unauthorized access, system vulnerabilities. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.